Tuesday, November 26, 2024
HomeSecurity NewsA Women Shared OTP 28 Times to Fraudsters and Lost Nearly 7...

A Women Shared OTP 28 Times to Fraudsters and Lost Nearly 7 Lakhs

Published on

A 40-year-old Navi Mumbai women lost nearly 7 lakhs after sharing her OTP 28 Times to Fraudsters. She is a state bank of India account holder and she received a call from fraudster masquerading as a manager.

The incident happened between May 17 and 23 and she had around 7.20 lakh in her bank account. Tasneem Mujjakkar Modak, the victim has told the police that the concept of online banking is completely alien to her.

Modak has provided all the details including 16-digit debit card number and the CVV numbers which is to be kept confidential and the fraudster also asked to delete the messages received from the bank.

- Advertisement - SIEM as a Service

Periodic Calls

In total, the fraudster made 28 transactions and the minimum transaction was of Rs.4,000 and the highest Rs.49,999 reports the Hindu.

Police Inspector (Crime) Bhaguji Auti said: “the fraudster said that her card was blocked and asked her to share the card details and pin number, again he called to get the OTP number that she received.”

The first transaction was of Rs.4000 to Oxygen wallet and after realizing the women is not doubtful the fraudster made may calls on the daily basis till May 23 and the payments transferred to the PhonePe wallet in Mumbai.

Also Read Fakebank Malware Variant that Intercepts Android user’s Banking Calls

Modak finally learned that share was cheated on May 30 and went to the bank to update her passbook and “She found that nobody from the bank had called her. She lodged a complaint with us when she learned of the cheating,” a police officer said.

Common Bank Fraud Techniques to steal your information

Vishing

Vishing also knows as Voice Phishing, a social engineering technique used by attackers over the telephone system to gain financial details, by using this method attackers steal payment card details.

Phishing

Commonly carried out via e-mail spoofing and instant messaging, attackers present a fake page posing to be a trusted source and steal your banking credentials.

Smishing

Smishing also knows as SMS phishing that involves in text messaging, the tactics used by attackers to leverage the payment card details and credentials.

Banking Malware

Banking malware is pushed through Social engineering, Phishing and spam emails and security vulnerabilities. They are designed to Steal Money, personal and financial information. Some of the well-known banking malware are Zeus, Spyeye, and Zitmo.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

IBM Workload Scheduler Vulnerability Stores User Credentials in Plain Text

IBM has issued a security bulletin warning customers about a vulnerability in its Workload...

Multiple Flaws With Android & Google Pixel Devices Let Attackers Elevate Privileges

Several high-severity vulnerabilities have been identified in Android and Google Pixel devices, exposing millions...

Threat Actors Exploit Google Docs And Weebly Services For Malware Attacks

Phishing attackers used Google Docs to deliver malicious links, bypassing security measures and redirecting...

Python NodeStealer: Targeting Facebook Business Accounts to Harvest Login Credentials

The Python-based NodeStealer, a sophisticated info-stealer, has evolved to target new information and employ...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Nearest Neighbor Attacks: Russian APT Hack The Target By Exploiting Nearby Wi-Fi Networks

Recent research has revealed that a Russian advanced persistent threat (APT) group, tracked as...

Critical PDF.js & React-PDF Vulnerabilities Threaten Millions Of PDF Users

A new critical vulnerability has been discovered in PDF.js, which could allow a threat...

LayerX Security Raises $26M for its Browser Security Platform, Enabling Employees to Work Securely From Any Browser, Anywhere

LayerX, pioneer of the LayerX Browser Security platform, today announced $24 million in Series...