Cybercriminals are exploiting the name of Avast, a globally recognized anti-malware and cybersecurity provider, in a sophisticated phishing campaign designed to steal users’ credit card information. Although Avast itself has not been compromised, the incident has sparked concern and confusion, as attackers have created a highly convincing fake website that closely imitates the company’s official branding and online presence.
The fraudulent campaign has reportedly been circulating across several European countries, with a particular focus on France. Victims are directed to a counterfeit website that appears nearly identical to the legitimate Avast site, complete with matching logos, design elements, and professional formatting. The visual accuracy of the clone makes it difficult for unsuspecting users to distinguish it from the real platform.
The scam operates under the guise of a refund or cashback offer. Visitors to the fake site are told they are eligible to receive a €499 reimbursement, supposedly to be credited back to their bank accounts within a few days. To process this “refund,” users are prompted to enter sensitive financial details, including their credit card number, CVV code, and card expiration date. In reality, no refund exists. Instead, the information is harvested and potentially used for fraudulent transactions.
What makes this phishing operation particularly alarming is the level of professionalism involved. The attackers have incorporated a live chat feature on the fake website to reassure visitors and guide them through the so-called refund process. This interactive element creates a false sense of legitimacy, making victims more likely to trust the page and provide their confidential information. However, the live support system is entirely fraudulent and serves only to facilitate data theft.
Refund and cashback scams are not new, but their methods continue to evolve. Cybercriminals frequently promote such schemes through social media channels and professional networking platforms like LinkedIn, where users may be more inclined to trust business-related communications.
This incident serves as a reminder for consumers to remain vigilant online. Users should verify website URLs carefully, avoid clicking on suspicious promotional links, and never share financial information in response to unsolicited offers. Even when a page appears legitimate, caution and verification remain essential defenses against increasingly sophisticated phishing attacks.
Join our LinkedIn group Information Security Community!
