Hackers have been targeting Pokemon Go players via SMS, prompting them to click on a link to gain access to thousands of Pokecoins and in-game currency, in exchange for points. However, the link would instead lead players to a phishing site called Pokemonpromo.xxx. Dwayne Melancon, CTO and VP, Research and Development at Tripwire commented below.

Dwayne Melancon, CTO and VP, Research and Development at Tripwire:

dwayne-melancon“We’re all attracted by “get Pokemon quick” schemes, aren’t we? This kind of attack seeks to get information from you when your guard is down because you’re focused on the glory of being a Pokemon master. There are some good rules of thumb that will help you, however – don’t provide any information to parties you don’t know or don’t trust; don’t download apps you didn’t specifically go looking for; and (in my opinion) don’t pay to improve your Pokemon Go stats. If you follow these guidelines, you’ll probably come out ahead in the long run.”

Information Security Buzz