Bright Nexus

Published on July 14, 2025

How to Protect from Fake CNN, BBC, and CNBC News Websites Used in Widespread Investment Scam

Severity
Medium

Detail

Cybercriminals have launched a large-scale scam campaign impersonating legitimate news websites such as CNN, BBC, CNBC, ABC News, and News24 to promote fake investment opportunities. These attacks are designed to deceive users through realistic-looking articles, fake celebrity endorsements, and social engineering tactics, resulting in financial loss and identity theft.

To protect individuals and organizations from falling victim to such scams, here are the best practices to follow:

  1. Be Cautious of Sponsored Ads
    • Avoid clicking on ads that make bold or sensational claims.
    • Always verify the legitimacy of the ad source before engaging.
  2. Double-Check Website URLs
    • Look for typosquatting (e.g., cnnn-news.xyz) or unusual domain extensions like .xyz, .shop, .click, or .io.
    • Trusted news sources will use standard domains (e.g., .com, .co.uk) with secure HTTPS encryption.
  3. Verify Celebrity Endorsements
    • Don’t trust financial advice or investment promotions just because a celebrity is mentioned.
    • Confirm endorsements through official websites or verified social media accounts.
  4. Recognize Unrealistic Promises
    • Be skeptical of platforms offering guaranteed or extremely high returns with little to no risk.
    • Investment returns always carry risk—“get rich quick” claims are red flags.
  5. Avoid Sharing Personal Information with Unknown Sources
    • Don’t submit your name, phone number, or email to unfamiliar platforms.
    • Scammers collect this information to manipulate, harass, or resell to other threat actors.
  6. Watch Out for Fake Advisors
    • Be wary of unsolicited calls from supposed financial advisors referencing articles or investment tips.
    • Legitimate financial advisors do not cold-call people to invest.
  7. Use Reliable Security Software
    • Install endpoint protection and browser security tools that block phishing and scam websites.
    • Solutions like Malwarebytes can help prevent access to fraudulent platforms.
  8. Educate Users and Raise Awareness
    • Train employees and family members to identify scam tactics and impersonation sites.
    • Regularly share examples of ongoing scams to build vigilance.
  9. Report Suspicious Content
    • If you encounter fake ads or impersonation sites, report them to the platform (Google, Facebook, etc.) and local authorities.
    • Early reporting can help protect others from falling victim.
  10. Secure Your Digital Identity
    • Enable two-factor authentication (2FA) on all critical accounts.
    • Monitor your credit reports and bank statements for unauthorized activity.
    • If scammed, contact financial institutions and freeze accounts immediately.

Investment scams that impersonate trusted news brands are becoming increasingly sophisticated. By staying informed, questioning what you see, and adopting proactive digital hygiene, you can protect yourself and others from these deceptive campaigns.

Source

https://www.malwarebytes.com/blog/news/2025/07/cnn-bbc-and-cnbc-websites-impersonated-to-scam-people\