High-tech fraud alert: Web site defacing, mobile money and on-line jobs fraud in Kampala

It is a fraud that has been going on. Fraudulent persons, with some basic knowledge on website designing developed a website duping the public

It is a fraud that has been going on.

Fraudulent persons, with some basic knowledge on website designing developed a website duping the public that it is a recruitment site for UN jobs.

As at the time of checking on 8th February 2014, the website URL, http://www.unwork.tk/, has the following home page.

1 open opoortunities.fw

Upon setting up the fraudulent website, the fraudsters advertise the site to unsuspecting public especially drivers looking for jobs. To create a sense of urgency, when you visit the site, it indicates that “We Need Only 2 Applications Left.”

On the same home page, any interested candidate for a driving position at UN is given information on how to pay registration fees of Ugx. 50,000 per application.

Although the fraudulent website is not an exact clone of the official UN website, www.un.org, it does contain images and a logo of United Nations.

UN has a specific job portal at https://jobs.un.org/Galaxy/Release3/Vacancy/Vacancy.aspx which has an https indicating ‘secure’; which several fraudulent sites lack. Any job opportunities at UN are advertised only via this site, which also carries a clear warning that:


The unsuspecting job seekers have fallen prey to the fraudsters because many don’t know how the genuine UN job portal looks like.

When an applicant clicks on the links provided for payment to submit a job application, the following information is displayed:

2 online fraud

One is required to pay Ugx. 50,000 which they can pay via MTN mobile money to the telephone number 0771696424, indicating that fraudsters are local.

Cybercrime comes in many schemes and you are encouraged to undertake minimum security training on how to be secure online.

One of the recent cases investigated by Summit Consulting Ltd in July 2013 involved a manager whose Visa Debit card details were copied; and the fraudsters used the card to subscribe to an on-line dating site and paid subscription for three years. Considering the confidential nature of such providers, it was difficult to prove from the service provider of their actual customer. The owner of the Visa card that had been used was subjected to disciplinary action and had no way to protect himself.

Social networks and mobile gadgets are other new developments that have become big security exposures. Cybercriminals open multiple social network profiles on LinkedIn, Skype, Facebook, Twitter, and other popular sites using photos of other people or celebrities.

The common Facebook fraud has been someone opening an account using the details of a celebrity or a senior citizen, and then starting to send save our souls (sos) messages asking for help. The fraudster will pretend to be stranded up country or abroad, and explain that he has an immergence at his home and needs urgent help since he is far. S/he will request you to send money to a specified mobile money number to his daughter or mother who is at hospital. And many people have lost money this way, only to find that it was a lie after expecting a thank you call from the friend they helped in vain.

It is recommended that if you have Internet access, you need to attain basic training in cyber security. At the Institute of Forensics and ICT Security (www.forensicsinstitute), located in Bugolobi, you can enroll on a course called Certified Secure Computer User (CSCU) and help save yourself and your organization potential losses and loss of reputation to cyber criminals.

Don’t allow your children to use your smart phone or mobile gadget without your supervision as they may by mistake install wrong applications or visit bad sites by trial and error.

Stand warned. If someone is asking you for money to give you a job, it is enough warning sign.

Copyright 2014 Mustapha B. Mugisa, CFE. All rights reserved. You are free to share with appropriate attribution.

Leave a Reply

Your email address will not be published.