Skip to main content

Bank fraud Awareness : Be careful about ATM card fraud , Debit card fraud , Credit card fraud

Awareness is necessity

" Be careful whenever you are sharing personal details on the Internet."

"Be careful whenever you are giving permission 'Allow' to applications during installation in your mobile."



As a Cyber volunteer, I have analyzed some case studies of these kinds of frauds.
Let me share one case study with you !!

One person was getting messages continuously in his mobile regarding OTP ( One Time Password). These OTPs automatically shared with someone else by any third-party application installed on his mobile. That someone else can be considered as cybercriminal in this case. And suddenly, money gets debited from his account, and after 7-8 transaction messages, his account statement was empty.

Here are some messages received by the victim.
  • The secret OTP for online purchase is 222343 on card ending XXXX. Valid till HH:MM:SS. Do not share OTP for security reason.
  • Rs. 9999 is Debited to A/c...XXXX on dd-mm-yy HH:MM:SS( Avlbl Bal Rs XXXXX) At POST TID-XXXXXXXXXX,ref-XXXXXXXXXXXX. TollFree XXXXXXXXXXX(24X7).
  • The secret OTP for online purchase is 110109 on card ending XXXX. Valid till HH:MM:SS. Do not share OTP for security reason.
  • Rs. 999 is Debited to A/c...XXXX on dd-mm-yy HH:MM:SS( Avlbl Bal Rs XXXXX) At POST TID-XXXXXXXXXX,ref-XXXXXXXXXXXX. TollFree XXXXXXXXXXX(24X7).

Now the question is, how this happens?


What kind of mistake is done by the victim?


There was one third party payment application in the victim's mobile, and during installation, he gave a text message read permission 'allow.'

We can get a refund within 24 hours in the past years, but cybercriminals became very active nowadays. They use smart ideas such as asking for the wallet to wallet transfer from the victim and then immediately transfer money in bank accounts. It is hard to reach them. Almost all cybercriminals use holidays to execute this kind of online fraud. Because during holidays, banks are closed, and sometimes we can not contact banks by helpline numbers. And your one mistake can spoil your holidays.


" There are several ways by which cybercriminals can reach you. In technical terms, its called 'Social Engineering.'
  1. By Text
  2. By Phone-Calls
  3. By E-mail

Whenever you receive such suspicious calls or messages or e-mails, don't trust these kinds of stuff.

What steps should be taken when bank fraud occur?

  1. Contact cyber cell nearest you or Local crime branch and register a complaint.
  2. The victim should go to the bank and fill up the dispute form within three days. It is very important.

Here I am sharing some useful and essential information.

  1. If any credit card related fraud occurs and you have insurance, there are 100% refund chances.
  2. If you have used net banking or any bank to bank transactions happen in which bank on both the side is same, then the transaction can be stopped by the authorities, and money can be refunded.
  3. In some cases, mistake is made by the bank. Sometime it happens that you are not sharing OTP; still, money is debited from your account; in this case, customers should go to the bank and fill up a dispute form within three days.
  4. When any debit card fraud occurs, there are minimal chances of refund money. So be careful before entering your debit card details on the internet.
  5. When a customer shares any OTP to any fraudster, it is not the bank's responsibility, so we can not blame bank.
Labels:

Comments

  1. Bharuch Cyber cell11 September 2020 at 18:01

    Good information

    ReplyDelete
  2. Aman Dobariya12 September 2020 at 09:00

    Very nicely explained and very useful for common people who don't know about such information

    ReplyDelete
  3. thejadeja12 September 2020 at 10:16

    Great information. Very useful in these times where cybercrime is the prime way for fraud activities.

    ReplyDelete

Post a Comment

Please do not enter any spam link here.

Popular posts from this blog

How to Pass CompTIA Security+ SY0-701 in 2 Months (839 Score Breakdown + Resources)

How I Scored 839/900 on CompTIA Security+ SY0-701 — 2-Month Prep Strategy That Actually Worked Score: 839/900  |  Exam: CompTIA Security+ SY0-701  |  Prep Time: 2 Months  |  Total Questions: 76 (including 3 PBQs) I'm not going to sugarcoat it — CompTIA Security+ is not easy, but it is very passable with the right strategy. I cleared it with an 839 out of 900, and in this post I'll share exactly how I did it, domain by domain, so you can replicate the approach without wasting time. My 2-Month Study Plan Month 1 — Domain-by-domain study: Read, take notes, and build comparison tables and mnemonics for tricky concepts. Month 2 — Heavy practice testing: Full focus on practice tests and PBQ simulations. Time management drills every session. The biggest mistake people make is spending 90% of their time reading and only 10% practicing. I flipped that in month 2 — and it made all the difference. Domain 1 — General Security Concepts What to focu...
Post a Comment
Read more

Splunk in Plain English — A Practical SOC Guide

Imagine you are a detective, and every device on your network — servers, laptops, firewalls, cloud systems — is leaving footprints everywhere. The problem is there are millions of footprints every single day, scattered across thousands of different files. Your job is to find the one set of footprints that does not belong. That is exactly the problem Splunk solves. It is the platform that collects every footprint from every device, puts them in one place, and gives you the tools to find the suspicious ones — fast. In this blog, I will take you through Splunk from absolute scratch — what it is, how it works under the hood, how to write SPL queries like a pro, how to build dashboards and alerts, how to set up a SOC lab, and most importantly, the interview questions you will definitely face if you are going for a SOC analyst role. I have completed the TryHackMe Advanced Splunk rooms including SPL exploration, SOC lab setup, dashboards and reports, data manipula...
Post a Comment
Read more

Every SOC Analyst Must Know These Windows Event IDs — Here's Why

Imagine you are the security guard of a massive office building. Every time someone enters, leaves, opens a cabinet, or tries to break in — it gets recorded in a logbook. Now imagine if that logbook could automatically tell you when something suspicious happened. That is exactly what Windows Event Logs are — the logbook of your Windows system, and for a SOC analyst, it is the single most important source of truth. In this blog, we will break down Windows Event Logs from scratch — what they are, how to read them, how to query them like a pro using PowerShell, and most importantly, which Event IDs you must memorize for your SOC analyst interview. Let's dive in. 1. What Are Windows Event Logs? Windows Event Logs are records that Windows automatically creates whenever something significant happens on the system — a user logs in, a service crashes, a file is accessed, an audit policy changes, a script runs. Think...
Post a Comment
Read more

Customer Care number frauds : Be careful regarding your google search

Awareness is necessity ALERT !! "Careful during searching on google for customer care number regarding online shopping, bank loan or online job search." The number you find on Google need not be real all the time. It can be a fake number. When you are looking for a customer care number, go to that particular site and search for their help centre section or contact us section. Don't search for such help centre numbers on other sites, as it can be fake. Here, I am sharing the latest case study of September 2020 regarding customer care fraud !! A person from Gujarat wanted to buy a mobile and he searched on an online website. Now he wanted to buy a mobile on the EMI installment, but he didn't know what was the procedure for EMI installment. He randomly searched on google for the customer care number of that online website and found a mobile number from some random website. He called that number, and the person on the other s...
Post a Comment
Read more

e-SIM fraud : All you need to know about e-SIM and SIM swapping fraud

Awareness is necessity Ever heard about the place, Jamtara? Many of you must have seen the famous series "Jamtara: Sab ka number ayega" on Netflix. It is located near Jharkhand's capital Ranchi. This place has become a hub for phishing and bank fraud. Recently, Jamtara has come in the limelight because this place's fraudsters have started a new type of crime/ fraud, i.e. e-SIM fraud. Do you know what eSIM is? e-SIM stands for the "Embedded Subscriber Identity Module." You don't need to buy a telecom operator's SIM card separately and insert it into your mobile. e-SIM is a part of your smartphone's hardware. This e-SIM chip comes pre-installed on your smartphone. Its working is the same as our standard SIM, which saves information like IMSI number, some contact details etc. e-SIM is re-writable means previous telecom operator related details can be erased and new information can be written again by a new telecom operator. This type o...
1 comment
Read more

Protecting Yourself from Online UPI Fraud in India

Awareness is necessity As online transactions continue to gain popularity in India, so does the risk of online fraud. One of the widely-used payment systems in the country is Unified Payments Interface (UPI), which enables users to instantly transfer funds between bank accounts. However, with the rise in digital transactions, instances of UPI fraud have also increased. In this blog, we will discuss the various types of UPI frauds, provide tips for mitigation, and highlight the helpline services available to assist victims. Types of UPI Fraud: SIM Card Swapping: Scammers convince telecom service providers to issue a new SIM card linked to the victim's mobile number. This allows them to intercept OTPs (One-Time Passwords) sent during UPI transactions. Phishing: Fraudsters send deceptive emails or messages posing as legitimate institutions, tricking users into revealing their UPI credentials or other sensitive information. Remote Access Fraud: Fraudsters gain unautho...
1 comment
Read more