SBI customers can lose all their money if they click on this update your KYC link

It is being reported that a group of hackers from China are sending fake “update your KYC” messages with malicious links. Do not click on them.

UPDATED: July 9, 2021, 05:43 PM IST

Phishing scams are on a rise again and this time they have targeted SBI customers. If you are an SBI account holder, you really need to think twice before clicking on any suspicious links that you receive as a message. It is being reported that a group of hackers from China are sending fake “update your KYC” messages with a malicious link. If you click on the link, you will end up losing all your money.

SBI account holders are being targeted by a group of hackers reportedly from China. Cybercriminals are asking customers to update their KYC. But the problem is with the link that is attached to the message. Delhi-based think tank CyberPeace Foundation and Autobot Infosec have unearthed the cybercrime being carried out to dupe SBI customers.

When the customers clicked on the link that came along with the update your KYC message, they were redirected to a page that asks them to submit confidential information such as username and password along with a captcha code.

“Following this, it asks for an OTP sent to the user’s mobile number. As soon as the OTP is entered, it redirects the user to another page that asks the users to enter some confidential information again like account holder name, mobile number, date of birth. After entering the data, it redirects the user to an OTP page,” the cyber experts told IANS.

Hackers are also claiming to offer gifts worth Rs 50 lakhs to SBI customers. The only point of commonality in the two messages that are being circulated is the link to the malicious website that can strip a user of his savings. It is important to note that SBI is not offering any such deals. You can check the official website of SBI or the official social media handles of the bank to find out if they are offering any such deals and cash prizes. In most cases, you will either receive such messages on WhatsApp or as an SMS.

The researchers have found out that the campaign is pretending to be by SBI, but it is actually being hosted by a third-party domain. “The URL manipulation showed that the webserver has directory listing enabled and found other links visible which proves that not only the SBI users, IDFC, PNB, IndusInd and Kotak bank users are also targeted by the same type of phishing scam,” the researchers told the news agency. SBI is yet to react to the incident.

READ  Mi 11 Lite 4G India launch next week, how much should it cost?



Show More

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button
%d bloggers like this: