- This BTS-Billie Eilish mashup is the most popular tweet of 2019 3 Years Ago
- Michelle Wolf embraces vulgarity in ‘Joke Show’ 3 Years Ago
- Influencer gets 14 years in prison for trying to steal domain name at gunpoint 3 Years Ago
- ‘Three Days of Christmas’ is a delightfully dark holiday alternative to Hallmark Today 3:55 PM
- The way Trump Jr. holds his own book inspires mockery Today 3:47 PM
- Woman facing backlash for no longer wearing hijab in end of the decade photo Today 3:16 PM
- Report: Consulting firm lied about decreasing violence at Rikers Island jail Today 2:36 PM
- TikTok users are sharing things they thought were ‘ghetto’ as kids Today 2:31 PM
- Republicans just blocked a net neutrality vote in the Senate Today 2:24 PM
- ‘Fox & Friends’ host stuck using dad’s account after Twitter suspension Today 1:10 PM
- ‘They’ is Merriam-Webster’s word of the year Today 12:56 PM
- Inside Dolby’s big ‘Star Wars’ retrospective exhibition Today 12:48 PM
- Amazon’s ‘Clifford the Big Red Dog’ reboot isn’t for you—and that’s fine Today 11:50 AM
- Walmart pulls ‘Let it snow’ cocaine sweater, ruining Christmas Today 11:30 AM
- The way Facebook serves political ads could be driving polarization Today 11:10 AM
There’s been no shortage of Pokémon Go related spam since the app sensation launched last month. And much of it, security researchers warn, may be malicious.
According to AdapativeMobile, a leading mobile security company in Ireland, thousands of potential Pokémon Go players in North America were recently targeted by an SMS campaign pushing a malicious web address. The link reportedly led to a “sophisticated phishing site,” which mimicked the real Pokémon Go homepage.
The website, Pokemonpromo.xxx, is no longer active, the firm said.
Phishing scams work by tricking people into handing over sensitive information, like usersnames and passwords or credit card and bank credentials, by using techniques that targets might think are credible.
Another campaign tracked by AdapativeMobile targeting users via SMS offered thousands of Pokecoins, in-game currency, in exchange for “points.” Users are reportedly prompted to share links “with five of their friends.” The same links have also appeared on social media.
One site, called “Pokemon Generator,” apparently tries to phish user credentials by telling them login so Pokecoins can be added to their accounts.
AdapativeMobile is warning users to be cautious when visiting any site containing Pokémon Go content. Users should be particularly wary, the firm says, of unsolicited SMS messages, “particularly if the message contains a URL as this may lead to a phishing website or a site containing malware.”
Dell Cameron was a reporter at the Daily Dot who covered security and politics. In 2015, he revealed the existence of an American hacker on the U.S. government's terrorist watchlist. He is a co-author of the Sabu Files, an award-nominated investigation into the FBI's use of cyber-informants. He became a staff writer at Gizmodo in 2017.