![]() ![]() And now this has become especially important. “ Bank clients always place a high value on ease of access to their accounts and performance of usual financial operations. As a prerequisite for providing the ‘investment service’, the investor asks the potential victim for the code received in a text message or push notification. They call customers offering a quick way to make money by investing in cryptocurrency or shares directly from the client's account, without having to go to a bank branch. This scenario involves fraudsters posing as employees of an investment company, or as investment consultants from a bank. The second example is where cybercriminals act as ‘the investor’. The scammers often introduce themselves as employees of the largest bank in the potential victim's region and use a spoofed caller ID for incoming calls to pose as a real bank. They can also ask a victim to install an application for remote management pretending that it is required for troubleshooting. ![]() The rescuer may ask customers to verify their identity through a code sent in a text message or push-notification, to stop a suspicious transaction or to transfer money to a ‘secure account’. They call bank customers posing as security officers and report suspicious charges or payments and offer their help. ![]() The first tactic sees scammers masquerade as ‘the rescuer’, where they pretend to be security experts and act out scenarios to ‘save’ users. Kaspersky Fraud Prevention team distinguishes that there were two common types of approach used by attackers to obtain access to accounts – both continuations from similar trends noticed in 2019. Share of fraudulent cases detected by Kaspersky Fraud Prevention in 2020 In addition to the rise of successful account takeovers, in 12% of fraudulent incidents, legitimate remote administration tools (RAT) such as TeamViewer were misused in an attempt to gain access to user accounts. That’s why it is especially important both for financial institutions and clients to be aware of typical fraudulent schemes and to be able to protect themselves. Kaspersky experts suggest that, in turn, it caused a spike in social engineering techniques being exploited by cybercriminals. The importance of digital financial services and e-commerce increased in 2020 with people spending more time at home as a result of the pandemic. Two schemes to get access to a bank account – ‘the rescuer’ and ‘the investor’ – remain among the most common since 2019. According to anonymized statistics of events detected by Kaspersky Fraud Prevention from January to December 2020, the share of such incidents increased from 34% in 2019 to 54% in 2020. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |