Igor Bederov, an expert at the SafeNet Engineering Center of the National Technology Initiative (NTI), told RIA Novosti about the vulnerability he discovered of the Unified Portal of Public Services.
According to him, we are talking about a covert redirect, in which a user can be redirected to any other resource, including fraudulent sites. If such a site contains malicious software, then it will be automatically installed on the device.
The expert warned that most often in this case, the user will be displayed “only the first part of the link pointing to the portal” Gosuslug “, and the redirecting part of the link will be cut off by the social network or messenger itself.” Previously, such secret redirect systems appeared for the social networks VKontakte, Youtube and Instagram, Bederov added.
To protect their devices and data, the specialist recommended that Russians be sure to check the link address before clicking on it. This can be done using antiviruses and hyperlink decryptors. He also advised to update the software in a timely manner. These measures will help protect against vulnerabilities, including before fraudsters have time to take advantage of them, concluded Bederov.
Earlier it became known that scammers began to hack the accounts of Russians on the State Services portal more often. In addition, the number of accounts for sale on the darknet has increased.