Threat actors have created a convincing fake Avast website that impersonates the legitimate antivirus company's portal to target French-speaking users with a refund scam. The fraudulent site claims victims were wrongly charged €499.99 and pressures them to provide full credit card details-including number, expiry date, and CVV-for a supposed refund process. It employs sophisticated tactics like real-time JavaScript to insert the current date, live chat support via Tawk.to, and urgency warnings about time-limited cancellations to harvest personal and financial information. Security experts from Malwarebytes warn users to always access official sites directly and never enter card details for refunds, as legitimate vendors do not require them this way.