Update: All these websites were taken down, you can view the archived versions on archive.org
My mom received this message on WhatsApp, someone forwaded it to her. The message was written in hindi and basically said that users can earn Rs. 60000/- sitting at home and doing nothing and asked them to fill a form on this page -> www.yuva-rozgaar-yojna-register [dot] ga/
About the Site
That site was hosted by Google’s Blogspot service and he used Let’s Encrypt to generate certificate for the domain. He didn’t even buy the domain, anyone can get .ga domain for free.
1st Page
I archived this page, Internet Archive - Site 1. This page wants you to give your Name, Contact number and your location (City). He doesn’t actually wants that data, nothing is sent anywhere instead it takes you to this page -> invite-yuva-rozgaar.blogspot [dot] com/
One more thing, he is using India’s Prime Minister’s Photo everywhere, so as to gain people’s trust. This is how the second page looks.
2nd Page
Now he asks users to share this to their WhatsApp contact in order to increase their salary or whatsoever. People actually beleive it and they share it with their contacts. That brings us to the third page which asks users to download an app -> confirm-order.blogspot [dot] com/. The app is NewsDog on GPlay and the reward is 50Rs for downloading and installing it.
3rd Page
Internet Archive - NewsDog Page
What did he get from this?
If you look closely you’ll notice a banner at the end of every site and that takes us to this blog -> buildmebest [dot] com/
He did this for generating a few clicks to his blog where he is probably using Adsense. I have reported this to google and I hope they take it down and suspend his account.
Prevent Phishing
Here are a few articles that you must read to prevent and detect sites like these.