Online banking for SMS notification failure? Click on links you have got! -Online banking, pseudo-base stations, SMS-IT information
Banking: online banking will not fail the additional site messages do not open
Bank official message from customer support number, but turned out to be fraudulent text messages! In recent days, many residents reflected to the reporters, said Bank received points for messages from official customer support number, the Advisory after the discovery that is fraudulent, the text message appears in an official capacity, in many cases consumers "continuingly".
To this, Guangzhou police said such modus operandi of fraud messages related to online upgrade, is through the "pseudo-base station" mass, and built-in links to malicious Web sites in your messages, lured the victims to enter bank account information such as passwords, and then install Trojans and viruses in a victim's cell phone, used to steal phone payment verification code to complete the steal the victim's bank card deposits.
Police uncovered
False online bank upgraded fraud
"Recently if your phone receives SMS from a Bank, to a Web site, give you a real retro, upgrades, and so on, we don't open the site operation, otherwise the money on your card may be turned away. "Yesterday, the people in her circle of friends from time to time such a" warning message ". Forwarded by reporter Angela "warning message" see, named "106057095588" of the contact person, "Dear user of ICBC: your electronic device failure the following day, please log into your mobile phone to maintain updated website at WAP.icbcap.com. For the inconvenience, please understand! "Closing" Bank ".
" This is a pseudo base station fraud, once implanted in its phone victim after clicking get bank account, password, and phone number of the Trojans, so as to further implementation of the crime. "The police, last June, the municipal Public Security Bureau Internet police detachment has learned that over a period of time to upgrade online banking to name fraud alert relative prominence . At the time, all victims were receiving 95588, 95533 customer service, such as sending text messages, said its online banking, which expired today, please phone log "WAP.ibagq.com" and other similar sites to upgrade. When the victim was logged on these sites, follow the website instructions to upload their bank card account number, password, mobile number, verification code, and other key information, found a bank card's funds being transferred.
After suspects have been arrested, the use of "pseudo-base station" confessed fraud. "Initial checks the gang involved in 5 cases. "Police say suspect Soviet head of the gang, by provider of Internet domain name registration a number of counterfeit bank of false domain names, site using the domain name, a large number of counterfeit bank, such as" WAP.ibagq.com, WAP.ibbgn.com, WAP.ibbgb.com "and so on. Then, the groups through Internet contact Shang Dr a, let its someone sent "pseudo base station" SMS; Dr a through Internet bought "pseudo base station" equipment, and found Liu a and Shen a, let Liu a, people car rental in Guangzhou Tianhe, and yuexiu district area through "pseudo base station" equipment, to around area sent large of false bank customer service SMS, cheat victim login false Bank website and upload bank card account, and password, and phone,, key information. Suspect in defrauding these victims crucial information, transfer money directly to your bank card in its management.
Not unique
Pretending to be a notice from the Bank Internet banking failure
Holder recently received a text message to Mr LEE, also from "95588", "Dear user of ICBC: failure of your Internet banking today, please log on www.lcdpx.com upgrades, inconvenience to you" Bank "". See this message, Lee thought his 2 years of online banking is not used, will be really expire? In this regard, the Bank's staff, ICBC's online banking do not expire, USB and other electronic banking tools have a certain period, but can apply for an extension on its website. It is understood that other banks online banking will not expire, such messages must be fraud SMS. "Dear user: failure of your mobile banking today, logon to our website Wap.cnxcm.com retro-verified, overdue bank cards obsolete. "In fact, since last year, many citizens receive this type of message. People enter when you log in as prompted bank card number, password and verification code, found the funds in the bank card were transferred to the new account.
Police: "false base station" scams lure is strong
It is understood that the police seized the "pseudo-base station" belongs to the new equipment, with small size, portable and easily concealed, remote control, power and other features. "Pseudo-base stations" only the A4 paper size, maximum transmission power, and can be controlled using the remote control the "pseudo-base station" power switch, and by phone to WIFI network control "false base station" device to edit messages sent to "fake base station" mass.
Ever used "false base station" simple device sending yellow, gambling, invoice or commercial messages to users, related gang counterfeiting 10086, 95588, 95533 customer services, such as sending text messages, fraudulent high fidelity, concealed, more technical, simulated sex, high efficiency, cheating high success rate, range, extensive influence. Many members of the public after receiving the message, also believed it at first glance, so deceived many, and the amount of money involved is huge.
Expert: phishing site references submitted personal information
Cheetah tiejun introduced mobile security experts, means of criminal fraud, "one is a phishing site to defraud online banking or personal information; the second is cheat download ' intercept ' virus; the third is the sale of personal information through the dark industry chain, DART Enterprise intercepts a horse. Three means of deception on the deformation, but basically the same modus operandi. "In other words, fraudsters are phishing sites tricking a user into submitting personal information will be used, and download mobile phone viruses. Due to suspect configuration server vulnerabilities, security officers have successfully logged in, and access to the back-end database, discover thousands of victims to submit detailed personal information and credit card information, including: name, ID number, Bank name, bank card number, your ATM card PIN (credit card validity, CVV code). Currently capture intercepts all Android viruses, but Apple users will be fooled by phishing, if fraudsters are entered on the Web site of the bank card or verification code information will also steal money by fraudsters.
Recently discovered several types of scam text messages:
1. credit card points. Criminal groups mass text messages, lied about users credit card score expire or can be directly exchanged for cash, few people covet small gains, bank card information fraudulently.
2. system maintenance, online banking failure. Bank Internet banking customer and more gullible. Criminal gangs to banking system maintenance, online banking failures, u shield outdated, such as by providing error Web site user's bank card number passwords.
3. refunds, transfers for no reason. This type of scam text messages seen, most of the so-called "preferential tax refund", the large number of transfers by means of fraud, but many users did have a before and after receiving such a message consumer, transfers and other banking card business operations, so are more likely to cause panic.
4. the winning message, free prizes. Criminal gangs to users have won prizes, bonuses and generous prizes available to meet pie in the sky dream, and then requires the user to check the identifiable information, bank cards or prepaid postage, insurance and so on, these are scams.
Reminder: SMS additional Web site can not point
Mobile phone users on how to raise prevention awareness? Police said that when users find mobile phones in the case of no signal will still receive the promotion, jackpot, banking and other related messages, most likely user area is "false base station" overwritten, carefully screened content authenticity. Don't take any number involving bank accounts and transfer of messages, not to any new account transfers.
Generally, fraud SMS appends a link, looks are deceptive. But even then, is false. It is understood that no matter which Bank, if the sent SMS additional Web sites, must be the official website, such as the industrial and commercial bank "www.ICBC.com.CN" and the text messages received is "WAP-icbcnj.com", despite ICBC's words, but people still find different. This text message because of confused high, easily as genuine. Due to the very low costs for registering a domain name in China, many criminals often use and very similar to the real URL of the domain name, LOGO, icon, its Web site news content are the real ones, such as "1cbc", customers are hard to judge.
Such as suspected fraud received text messages, how to discern it? Bank staff, members of the public if you receive such a message, first of all, don't click on the link and can not, do not let the wallet to pay for curiosity. If there is the need to click, it is best to open the official website and find related content.
短信通知网银失效?点开链接你就中招! - 网银,伪基站,短信 - IT资讯
银行:网银不会失效 附加网站短信勿点开
银行官方客服号码发来的短信,没想到竟然是诈骗短信!连日来,不少市民向本报记者反映,称接连收到以银行官方客服号码发来的积分兑换的短信,咨询后才发现居然是诈骗网站,这类以官方身份出现的短信,很多时候却让消费者“真假难辨”。
对此,广州警方表示,此类作案手法诈骗短信息内容涉及网银升级,都是通过“伪基站”群发,并在短信中内置恶意网址链接,诱骗事主输入银行账号密码等信息,然后在事主手机中安装木马病毒,用于盗取手机支付验证码,从而完成盗取事主银行卡存款。
警方破获
假称网银升级诈骗案
“最近如果你的手机收到某银行等发来的短信,并发来一个网址,让你进行实名补录、升级等,大家千万别打开网站进行操作,否则你卡上的钱很有可能被别人转走了。”昨日,市民何女士的朋友圈里不时出现这样一条“预警信息”。记者在何女士转发的“预警信息”上看到,名为“106057095588”的联系人称,“尊敬的工行用户:您的电子密码器于次日失效,请速登入手机维护网站wap.icbcap.com进行更新。给您带来不便,敬请谅解!”落款为“工商银行”。
“这属于伪基站诈骗,一旦受害人点击后便在其手机上植入获取银行账号、密码和手机号的木马,从而进一步实施犯罪。”警方介绍,去年6月,市公安局网络警察支队曾了解到,当时一段时间内以网银升级为名进行诈骗的警情相对突出。案发时,事主均收到95588、95533等银行客服号码发来的短信,称其网银将于今日过期,请手机登录“wap.ibagq.com”等类似网站进行升级。当事主登录这些网站,按网站提示上传自己的银行卡账号、密码、手机号、验证码等关键信息后,发现银行卡的资金被转走。
相关嫌疑人相继落网后,对利用“伪基站”进行诈骗的事实供认不讳。“初步核对该团伙涉及案件5宗。”警方称,犯罪嫌疑人苏某为该团伙负责人,通过互联网域名提供商注册了多个仿冒银行的虚假域名,利用这些域名建立大量仿冒的银行虚假网站,如“wap.ibagq.com、wap.ibbgn.com、wap.ibbgb.com”等。然后,该团伙通过互联网联系上杨某,让其找人发“伪基站”短信;杨某通过互联网买来“伪基站”设备,并找到刘某和沈某,让刘某等人租车在广州天河、越秀区一带通过“伪基站”设备,向周边地区发送大量的虚假银行客服短信,欺骗事主登录虚假银行网站并上传银行卡账号、密码、手机号等关键信息。嫌疑人在骗取上述的事主关键信息后,直接将钱转账到其管理的银行卡内。
无独有偶
冒充银行通知网银失效
持卡人李先生最近收到一条短信,同样是来自“95588”,“尊敬的工行用户:您的网银将于今日失效,请及时登录www.lcdpx.com进行升级维护,给您带来不便敬请谅解【工商银行】”。看到这条短信,李先生心想自己的网银的确已经2年没有使用了,会不会是真的过期了?对此,工行工作人员介绍,工行的网银并不会过期,U盾等电子银行工具虽有一定期限,但在官方网站上可以办理延期。据了解,其他银行的网银也不会过期,这样的短信肯定也是诈骗短信。“尊敬的用户:您手机银行将于今日失效,请立即登录我行网址Wap.cnxcm.com重新补录验证,逾期银行卡作废处理。”事实上,从去年至今,不少市民反映收到此类短信。有市民根据提示登录后输入银行卡号、密码和验证码,发现银行卡内资金被转至陌生账号。
警方:“伪基站”诈骗诱骗性强
据了解,警方所缴获的“伪基站”属于新型设备,具备体积小、便携带、易隐蔽、可遥控、功率大等特点。“伪基站”只有A4纸大小,最大发射功率强,可使用遥控器控制“伪基站”电源开关,并通过手机以WIFI方式联网控制“伪基站”设备,将编辑好的短信发送到“伪基站”进行群发。
与以往利用“伪基站”设备简单发送涉黄、赌博、发票或商业广告短信给用户不同,相关团伙仿冒10086、95588、95533等客服号发送短信,诈骗手法仿真度高、隐蔽性强,更具技术性、诱骗性、高效率,欺骗成功率较高,活动范围大,影响面广。不少市民收到短信后,乍一看还信以为真,因此上当受骗者众,涉案金额巨大。
专家:钓鱼网站引用户提交个人信息
猎豹移动安全专家李铁军介绍,犯罪分子诈骗的手段,“一是钓鱼网站骗取网银或个人信息;二是欺骗下载‘拦截马’病毒;三是通过黑色产业链买卖个人信息,定向投放拦截马。三种手段会有骗术上的变形,但作案手法基本一致。”也就是说,诈骗分子会使用钓鱼网站引诱用户提交个人信息,并下载手机病毒。由于犯罪嫌疑人配置的服务器存在安全漏洞,安全人员成功登录,并访问到后台数据库,发现了成千上万名受害者提交的详细个人信息和银行卡信息,包括:姓名、身份证号、开户行、银行卡号、取款密码(信用卡有效期、CVV码)。目前捕获的拦截马全部是安卓病毒,但苹果用户一样会被钓鱼网站欺骗,如果在诈骗分子的网站上输入了银行卡号或验证码等信息,也会被诈骗分子盗取钱财。
近期发现的几种诈骗短信类型:
1.银行卡有积分兑换。犯罪团伙群发短信,谎称用户银行卡积分到期或可以直接兑换现金,利用少数民众贪图小利的心理,骗取银行卡信息。
2.系统维护,网银失效。银行网银使用客户多,也更容易上当受骗。犯罪团伙以银行系统维护、网银失效、U盾过期等为由,通过提供错误网站获取用户银行卡卡号密码。
3.优惠退款,无故转账。这一类的诈骗短信较为多见,大多以所谓的“购置税优惠退款”、大数目转账等手段进行诈骗,而很多用户在收到此类短信前后确实有过消费、转账等银行卡业务操作,所以更容易引起恐慌。
4.中奖消息,免费奖品。犯罪团伙以用户中奖为由,提供巨额奖金和丰厚奖品,满足用户天上掉馅饼的美梦,然后要求用户核对身份信息、银行卡信息或者预付邮费、保险金等,这些都属于诈骗。
提醒:短信附加网站能不点就不点
广大手机用户如何提高防骗意识?办案民警说,当用户发现手机在无信号的情况下仍然会收到推广、中奖、银行等相关短信,很可能用户所在区域被“伪基站”覆盖,请认真仔细甄别短信内容的真实性。不要轻信任何号码发来涉及银行账号和转账的短信,更不可向任何陌生账号转账。
通常来说,诈骗短信都会附加一个链接,看起来极有迷惑性。但即便再像,也是假的。据了解,无论哪家银行,如果发送的短信附加网址,肯定是官网,比如工行是“www.icbc.com.cn”而收到的短信是“wap-icbcnj.com”,尽管都有icbc的字样,但细心的市民还是会发现不同。这样短信由于迷惑性高,很容易被当成真的。由于国内注册域名的费用非常低,很多不法分子往往使用和真实网址非常相似的域名,其网站LOGO、图标、新闻内容都以假乱真,比如“1cbc”,客户确实难以判断。
如收到疑似诈骗短信,该如何辨别真伪呢?工行工作人员介绍,市民如果收到这样的短信,首先不要轻易点击链接,能不点就不点,不要让钱包为好奇心买单。如果真的有点击的必要性,最好是自己打开官网,然后找相关的内容。
