RedZei Chinese Scammers Targeting Chinese Students in the U.K.

News

Jan 02, 2023Ravie LakshmananOnline Scam / Cybersecurity

Chinese international students in the U.K. have been targeted by persistent Chinese-speaking scammers for over a year as part of an activity dubbed RedZei (aka RedThief).

“The RedZei fraudsters have chosen their targets carefully, researched them and realized it was a rich victim group that is ripe for exploitation,” cybersecurity researcher Will Thomas (@BushidoToken) said in a write-up published last week.

The most notable aspect about the operation is the steps taken by the threat actors to bypass steps taken by users to prevent scam calls, using a new pay-as-you-go U.K. phone number for each wave so as to render phone number-based blocking ineffective.

Thomas, pointing out the meticulous tradecraft employed by the scammers, said the threat actor alternates between SIMs from several mobile carriers such as Three, O2, EE, Tesco Mobile, and Telia.

Indications are that the lucrative RedZei campaign may have started as far back as August 2019, with a report from The Guardian detailing a visa scam that tricked Chinese students into shelling out huge sums of money to avoid getting deported.

RedZei Chinese Scammers

The modus operandi involves calling potential targets once or twice a month from a unique U.K. phone number and leaving an “unusual” automated voicemail should the calls be left unanswered.

The voicemails impersonate companies like Bank of China and China Mobile as well as the Chinese embassy to social engineer the students into sharing their personal information.

“Other themes exploited by RedZei include the ‘abnormal usage of your NHS number’ and international parcels being delivered from DHL, which are both common concerns for Chinese students studying in the UK,” Thomas noted.

Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.

Products You May Like

Articles You May Like

Amazon MOVEit Leaker Claims to Be Ethical Hacker
North Korean Actor Deploys Novel Malware Campaign Against Crypto Firms
Pro-Russian Hacktivists Target South Korea as North Korea Joins Ukraine War
CISOs Turn to Indemnity Insurance as Breach Pressure Mounts
Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering

Leave a Reply

Your email address will not be published. Required fields are marked *