Posts masked as the fake web app “TumViewer” and “Online Income Solutions” were seen circulating on the popular blogging site Tumblr. Both offer something to Tumblr users, but in reality, they are social engineering lures meant to hook users into another run-of-the-mill survey scams.
TumViewer and Online Income Solutio: Just Another Survey Scams
Several Tumblr posts were seen promoting “TumViewer” web app. This free app supposedly lets users see who viewed their pages, which posts were viewed, and how often they were viewed. “TumViewer” appeared to be a minor hit among certain users, as we also noticed some tweets circulating on Twitter that promote the same app.
Instead of knowing who viewed users’ Tumblr accounts, the said “TumViewer” app only leads to another survey scam, similar to what we previously documented here.
The other post we noticed may be appealing to Tumblr users, specifically those who wish to make a quick buck. These posts promise easy income that users can do online. The link leads to a fake but convincing CBS news item about this work-from-home gig.
Clicking a specific text in the article redirects users to the page “Online Income Solutions”. In an attempt to further convince users to register to this scam, the page also show different logos of popular news organizations. Similar to previous survey scams, users are asked to give out their phone number and email address.
Social Engineering and Profit Drive Scams
“TumViewer” and “Online Income Solution” are just the latest reincarnations of scams that continuously plague other social networking sites like Pinterest, Twitter, and Facebook. We can expect to see similar threats spreading on social networking sites because they are tested money-makers. These scams drive users to ad-tracking sites or affiliate sites. The more visits to these sites, the more profit for the scammers.
As for the survey, the bad guys set up these pages to gather information that they can use in their future schemes such as including the stolen email addresses in their spam distribution list. Users who hand out their phone numbers to such scams are also at risk of being subscribed to certain services without their permission, causing unnecessary charges to their bills.
And let us not forget the main attraction in these scams: social engineering. Free web apps like TumViewer are appealing to users because they offer features that pique curiosity. “TumViewer”, with its promise of giving out details of possible “stalkers”, may be targeted at users who are interested to know who’s viewing their account. Since the app is free and has no apparent dangers to users, they may attempt to test it.
On a more convincing level, the “Online Income Solution” scam offers Tumblr users an opportunity to make easy money online. Tumblr users, in particular stay-at-home moms, students, or users who wish to augment their current income, are certainly the target of this scam.
The bottomline: scammers know what appeals to users and what would likely persuade them to click those links. They can certainly use these against users, in order to generate profit and steal information from unwitting users.
To avoid becoming victims of such scams, users should always think before they click and verify with credible sources if these web apps are legitimate. Social networking sites such as Tumblr typically provide information on the latest news about threats and offer safety tips to their users.
Leave a reply