Why settle for only the account credentials when you can have so much more? This is the question the phishers behind this “Star Wars: The Old Republic” scheme are probably asking themselves.
It all starts with a webpage that almost perfectly replicates the genuine game website, GFI’s Chris Boyd reports
However, once the email address, the password and the security key code are provided, the victim is taken to another webpage which displays an interesting message.
“Being online can be fun, sociable and inspiring. However, we found that your account has unusual activity. To help you enjoy the time you spend online at our sites and using our services, you need to confirm your security answer,” it reads.
This is when the fun starts. The user is asked to select not one, not two, but five “secret questions” and provide answers for them.
This tactic may be used by the cybercriminals to hack into the victim’s email account.
If you’ve already come across the five question game,
make sure to immediately change your password.