Targets: Everyone
The Story:
While you are checking your emails, you realise that there is an email from your bank.
The email states that it require you to verify your data or provide some data for better service and upgrade, in a link provided. Thinking that the bank is doing some upgrade with their system, you quickly click on the link and as expected, the website is that of the bank.
Without suspecting a thing, you "log in" to the system and provide the necessary data.
The Catch:
2 days later, when you go to the bank to withdraw your money, the teller tell you that all your money had been transferred out 2 days ago.
You immediately reprimanded the bank for not keeping your account safe, even after the system upgrade 2 days ago. Only then, you were told that you had been scammed.
The Shield:
Using the above picture as example, we have an email coming from the domain, rhb.com.my. While this looks legit, the "Secure Link" provided is definitely not. The malicious link actually points to http://diploelca.com.ve/images/index.php, a fake RHB Bank login, while the legitimate RHB login page is https://logon.rhb.com.my/.
To stay safe from these online bank verification scam, remember that
1) Bank will never ask for your username or password
2) Link provided will be the same as their legitimate login page
3) Ignore any email from the bank that request for particulars or direct you to a certain address.
4) Always call the bank to verify if you are unsure.
No comments :
Post a Comment