Security News / News

Fraudulent bank messages appear again

In the past few days, many users have reported that the situation of fraudulent messages impersonating the bank has returned.

“Your VCB DIGIBANK app has been detected on an unknown device. If you don't activate it, please click https://vietcombank.vn-ms.top to change the device or cancel to avoid losing your property", this is the content of the fraudulent message that a user received.

Tin nhắn lừa đảo giả mạo ngân hàng xuất hiện trở lại - 1
Fake bank messages to cheat to steal login information (Photo: The Anh).

Accordingly, when accessing the link in the message, the user will be redirected to a website with an interface similar to the website of Vietcombank. Here, the website will ask users to log in with their bank account information and password.

In another phishing message impersonating SHB, the scammers also issued fake warnings to intimidate users.

“Your account has registered for the program advertisement on TikTok, a monthly fee of 3,600,000 VND. Please go to https://shb.vn-ibs.xyz to check or cancel”, fraudulent content is sent to customers of SHB bank.

As can be seen, the common point of the above phishing messages is to strike the user's fear. Fraudsters have set up a number of fake websites that have the same look and color as the bank's website. From there, they will steal the victim's login information and bank account.

Currently, these phishing sites have been disabled and cannot be accessed. However, there are many other fake banking websites that still exist.

In fact, this scam is not new and has appeared a lot since 2021. Many people have become victims of this scam and have had assets of hundreds of millions of dong.

Tin nhắn lừa đảo giả mạo ngân hàng xuất hiện trở lại - 2
Website impersonating Vietcombank to trick users into logging in account information (Photo: The Anh).

Scammers can impersonate messages from many different banks such as Vietinbank, Vietcombank, TPbank or ACB. SMS Brandname is a messaging service that displays the names of organizations and businesses, sent to users' mobile subscribers.

However, taking advantage of the vulnerability of this service, fraudsters have impersonated a series of organizations, enterprise to appropriate money in the bank accounts of many users in recent times.

Phishing messages will often contain content that warns users about the status of their personal account being illegally logged in. To check the account status, customers need to log in to the attached link. After following these instructions, users will have their assets taken over and may lose control of their accounts.

To avoid the trap of scammers, users absolutely do not provide personal information, account or password under any circumstances. In the unfortunate event of falling into the trap of scammers, users need to contact the bank they are using as soon as possible to receive support.

From the Internet