Numerous American institutions’ websites are distributing Fortnite and “gift card” spam.
Wiki and documentation pages held by colleges such as Stanford, MIT, Berkeley, UMass Amherst, Northeastern, and Caltech, among others, were found to be compromised, according to researchers.
Over a dozen sub-domains associated with well-known American universities have been found to be hosting Fortnite spam this week, according to Twitter user g0njxa.
These websites appear to be powered by either TWiki or MediaWiki, the latter of which is a content management system (CMS) used by Wikipedia and many other Wikimedia websites.
These wiki articles, which are said to have been posted by spammers, entice visitors to fake websites by promising them “free gift cards,” “Fortnite Bucks,” and other digital items.
However, these domains load fake Fortnite pages, which are really phishing forms asking for user credentials.
Even while the malicious effort mostly targeted MediaWiki-based educational websites, it appears that several government websites were also attacked by the same threat actors.
These included microsites run by a state government in Brazil as well as Europa. EU from the European Union.