A robot searches for a potential victim and reports that someone is trying to make an international SWIFT transfer and is trying to deduct a large sum from the client’s account. The person is then taken into a conversation with a fictitious bank employee and is asked to install a “service” app, ostensibly for remote diagnosis of mobile banking.
The next step is to ask the “employee” to forward the code to connect to the smartphone. As a result, attackers get all necessary information and full remote access to the device, including SMS messages with a one-time access code.
Experts note that this is a new fraud scheme, which they use to increase the interlocutor’s confidence that during the call, measures were indeed taken to strengthen the account’s security.
According to the senior vice president of the digital business division VTB Nikita Chugunov, scammers deliberately do not ask for personal data “on the forehead”, so as not to arouse suspicion.
“However, real bank employees don’t do that, so if the program description mentions “remote access”, then you’re definitely dealing with scammers,” Chugunov said.
Source: Ferra
