Translation. Region: Russian Federation –
Source: Moscow Government – Moscow Government –
An important disclaimer is at the bottom of this article.
In anticipation of March 8, project experts Call me back yourself Residents were warned about scammers who send links to fake websites with attractive prices for goods, ask for a code from an SMS to confirm the delivery of a gift, and send viral greeting cards to steal personal information and money.
"On the eve of March 8th, scammers traditionally use tactics aimed at distracting people and the excitement surrounding gift-giving: in anticipation of congratulations and pleasant surprises, it's easy to overlook the scam. Moreover, attacks can continue for several weeks after the event. Fraudsters use genuine offers from stores and brands as a basis, trying to trick people into revealing the necessary information through tricks and manipulation. Unfortunately, the reality is that even gifts and cards can be a trap. To help Muscovites protect themselves and their loved ones from fraud, we've reminded them of common scams and prepared simple and clear recommendations. These will help you verify the reliability of an online store or ticket website, distinguish a promotion from a scam from a favorite brand, avoid falling for a bouquet delivery scam, and protect your personal and payment information," noted Valentina Shilina, head of the "Call Me Back" project at the Moscow branch.
Department of Information Technology.
A postcard with an unpleasant surprise
Scammers exploit the holiday to send e-cards that are actually viruses or malware. Downloading the file installs a program on the user's device that can track or block their actions and transmit information to third parties.
It's important to remember that files from strangers often contain potential threats. If the message content is in a suspicious format, doesn't download immediately like a photo, or has an .apk or .ipa extension at the end of the filename, it's best not to interact with it. It's not the message itself that's dangerous, but rather the consent to install it: "trust the sender," "open the file," and other positive responses when unpacking.
A bouquet with a catch
For the second year, scammers have been using a scenario in which women are called and informed that a gift or bouquet has been ordered. After delivery, the courier or delivery service asks for a digital code sent to the recipient's phone for reporting and confirmation of the order's delivery. In reality, the scammers are requesting a one-time password for a bank account or government services website account.
Experts recommend asking clarifying questions and verifying information when you receive a delivery notification call in such situations. For example, learn more about the courier service or flower shop, or call the official phone number listed on the company's website. After delivery, when prompted for a confirmation code, carefully check the sender's identity and whether the SMS contains any warnings about confidentiality.
Sharing personal information with third parties is strictly prohibited, as are the passwords sent to your phone. This confidential information ensures the user's security and confirms their identity. It is precisely this information that attackers seek to obtain.
Brand and store promotions
One common scam involves sending out lucrative offers purportedly from well-known stores or brands. Information about such promotions may appear on social media, in messengers, or via email.
When receiving such a message, it's important to remain vigilant: if the prices are suspiciously low, the conditions for receiving a prize are too simple, or there is manipulation of the promotion's urgency or its limited duration, it's best to examine the offer with particular caution.
The first thing to consider is whether the stated price is realistic. You should also check the website offering the promotion: is its address correct, are there any extra characters or misspelled words, and is the connection secure (is there a lock symbol when viewing the resource information?). Next, examine the content: how detailed and well-written is the information, are there contact information, and are there any errors or empty sections. It's also recommended to find additional information about the resource and read reviews.
If an advertisement requires you to download and install additional software to make a purchase, it's a sign of fraud. Installing such software can lead to loss of control of your device and the theft of personal and banking information.
Dating sites and event tickets
High demand for current events, restaurant trips, and the desire to buy theater tickets or other attractions at bargain prices often lowers citizens' guard. Fraudsters exploit this: emails with great deals on leisure activities can arrive via messaging apps and email.
Fraudsters create fake websites offering tickets to popular concerts, plays, and movie premieres at discounted prices. When users attempt to pay on the fake website, they enter their bank details, after which all funds are debited from their account.
To avoid this, carefully review the website where you purchase tickets and verify it. Experts recommend using only official and verified resources, such as the city service. Mosbilet, portals of large ticket aggregators or official websites of the institutions themselves.
Another ticket scam operates on dating sites and related apps. Fraudsters create fake profiles and establish emotional contact with victims. Once they gain their trust, they ask for photos to blackmail them, or offer to buy tickets or book a restaurant reservation through a fake website. As a result, the user loses personal information and money.
City residents were told at a webinar about how to recognize a scammer and avoid becoming their victim when dating online. Call me back yourselfYou can learn about the rules of communication in dating apps from the memo following the results webinar.
On guard for cybersecurity: the "Call Me Back" project turns three years oldExperts from the "Call Me Back" project revealed new fraudulent schemes.
Call me back yourself
The online information project "Call Back Yourself" was created in 2022 by the Moscow Government in collaboration with the Main Directorate of the Ministry of Internal Affairs of Russia for the City of Moscow. It helps residents protect themselves and their loved ones from telephone and online fraud. The project's website provides information about upcoming in-person and online events, as well as tips and recommendations from experts, and recordings of past events. webinars and other materials. Live streams of past lectures can be viewed on the project's website, as well as on VKontakte and Rutube.
In 2023, "Call Me Back" won the "Golden Site" award for "Best Social Project Website" and was also awarded the Runet Prize in the "Information Security" category. In 2025, the project received an award from the Russian Ministry of Internal Affairs' international "Shield and Pen" competition and the fourth All-Russian "Regional Information Security Cup" competition.
The creation and support of information security tools, as well as countering cyber fraud, are in line with the objectives of the national project "Data Economy and Digital Transformation of the State"More information about Russia's national projects and the capital's contribution can be found atspecial page.
Get the latest news quickly on official Moscow messaging channels. MAX AndTelegram.
Please note: This information is raw content obtained directly from the source. It represents an accurate account of the source's assertions and does not necessarily reflect the position of MIL-OSI or its clients.