Listen to the episode
TLDR
The Postal Police reports a new phishing campaign targeting Italian users of the real estate portal idealista.it. Those searching for a home or renting a property receive fraudulent emails that imitate the platform's official...
How it works
The Postal Police reports a new phishing campaign targeting Italian users of the real estate portal idealista.it. Those searching for a home or renting a property receive fraudulent emails that imitate the platform's official...
Red flags
- Urgent pressure to click, pay, or share codes immediately.
- A link or sender that does not match the official organization.
- Requests for card data, passwords, OTPs, wallet signatures, or bank transfers.
What to do
- 1The Postal Police reports a new phishing campaign targeting Italian users of the real estate portal idealista.it.
- 2Red flag: Email with an attached QR code asking to enter banking or personal data on an unknown site Clone site URL slightly different from the official one (altered or abbreviated domain) Urgent tone related to payments, rental contracts, or account verifications What to do: Do not scan QR codes received via email: always access the idealista.it portal directly by typing the address in your browser Carefully verify the site domain before entering any credentials or banking data If in doubt, report the email to the online Commissariato di PS (Police Station) of the Postal Police
Source
polizia-postale
Source reviewed by Mythos Forensic Team
https://www.commissariatodips.it/notizie/articolo/nuova-campagna-di-phishing-diretta-al-portale-online-idealistait/index.htmlFAQ
Is Phishing targeting Idealista customers: email with QR code leading to a fake site a real scam pattern?
Yes. Treat the message, call, or payment request as suspicious until you verify it through an official channel.
What are the first warning signs?
Urgent pressure to click, pay, or share codes immediately.; A link or sender that does not match the official organization.; Requests for card data, passwords, OTPs, wallet signatures, or bank transfers.
What should I do first?
The Postal Police reports a new phishing campaign targeting Italian users of the real estate portal idealista.it.; Red flag: Email with an attached QR code asking to enter banking or personal data on an unknown site Clone site URL slightly different from the official one (altered or abbreviated domain) Urgent tone related to payments, rental contracts, or account verifications What to do: Do not scan QR codes received via email: always access the idealista.it portal directly by typing the address in your browser Carefully verify the site domain before entering any credentials or banking data If in doubt, report the email to the online Commissariato di PS (Police Station) of the Postal Police
Can LegalAudit check my case?
Yes. Start a free chat and paste the message, link, sender, or payment details for triage.