Last Updated on 20/03/2023 by TheDigitalHacker
A new phone scam is targeting bank customers, using a convincing Twitter quote-tweet as bait. The scam involves fraudsters posing as bank employees, who call customers and trick them into revealing their personal and financial details by claiming to be investigating fraudulent transactions. The fraudsters then direct the customers to a fake website that appears to be their bank’s website and ask them to log in to verify their account details.
The attack is done using a reply, pretending to be a support
The scam is using a Twitter quote-tweet to lend credibility to the scam, with the fraudsters posing as a well-known financial advisor who has tweeted about fraudulent transactions. The fraudsters then call the bank customers, claiming to be from the bank’s fraud department, and tell them that their accounts have been compromised. They then direct the customers to the fake website, where they are asked to enter their account details.
Attack One on HDFC:
The fake website is designed to look like the bank’s website, with the same logos and branding. However, it is hosted on a different domain and is not secure. Once the customers enter their details, the fraudsters can use them to make fraudulent transactions and steal the customers’ money.
Experts are warning bank customers to be cautious of unsolicited calls from people claiming to be from their bank, especially if they are asked to disclose personal and financial information. Customers should also be wary of clicking on links or entering their details on unfamiliar websites.
This latest scam highlights the need for increased awareness of phone scams and the importance of verifying the identity of callers. Customers should always verify the identity of anyone claiming to be from their bank, and should never disclose their personal or financial information unless they are certain of the caller’s identity.
The account has been suspended but there can be many more and scammers will continue to create new one
The account used in the above screenshot has been suspended by twitter but there can be many more and scammers will never miss a chance to create new accounts.
How to know if the account is verified and official?
- Username
- Followers
- past replies
- Bluetick (this can be manipulated)
What to do when you find a suspicious account?
- Tag the official account of the company you are trying to connect
- Tag Twitter support
- Report the tweet anonymously if you are not willing to reveal your identity to a remote account
- Take a screenshot and share on the official bank mail
Resources:
Feature Photo from MixPhotos – Free Royalty Free Photos