Original SIM card but still occupied by others Ms. ATH (in Binh Duong) reflected on 2-3 days, she discovered that her phone displayed a message that could not be called, so she went to VNPT Binh Duong Business Center to ask for a check. Here, the technical staff said that the SIM card is not damaged, still works two-way. On March 4, she went to the center to ask for a new SIM card. After that, the phone works normally. On March 12, Ms. H. logged into her credit card account to check and found that the money in the account had been withdrawn in the form of payment for purchases. Suspecting that her SIM information was exposed during the SIM rework, Ms. H. went to VNPT Binh Duong Business Center to find out. Only now did she know that on 2-3 days there was a transaction to replace her SIM at a VNPT center in Ho Chi Minh City. Ms. H. said that this SIM phone number has been registered by her owner before. Now suddenly my SIM was declared and appropriated by someone else, leading to the loss of her credit card more than 58 million dong. “During the settlement process, the representative of VNPT HCMC (where the SIM exchange happened) said he would support me with a scratch card worth 2 million VND, but I did not accept it. The main reason for losing money is because the network operator re-issued the SIM in the wrong process, not because of me, “- Ms. H. shared. Ms. ATH was upset because someone else took control of her phone SIM, so her credit account lost more than 58 million dong. Photo: DANG LE Another case is Mr. Trieu Duc Khai (in Thai Binh) also said on April 21, he made a complaint to VNPT Center in Thai Thuy district, Thai Binh. The content of the complaint about his VinaPhone SIM, although registered by the owner, was still controlled by others, leading to the loss of 35 million VND in his credit card. Through working with VNPT in Thai Thuy district, it was determined that someone had impersonated him to carry out the procedure to lose the SIM and make a new SIM with the subscriber number that Mr. Khai was using. This person only declared five phone numbers to call out, come to the nearest, and then be given a new SIM. Occupying SIM is a trick to appropriate money Exchange with Ho Chi Minh City Law Vo Do Thang, Director of Athena International Security and Network Administration Training Center, said that through the two cases above, it shows that if anyone reports the loss of SIM and only needs to provide five phone numbers to call. going, calling recently, committing to subscriber owner rights to be re-issued with a new SIM is not good at all. This has created a loophole for crooks to steal other people’s SIMs, to the detriment of genuine SIM users. According to Mr. Thang, most of the victims in the SIM loss cases were taken by fraudsters by making online payments. To pay for online purchases, there are three factors: The first is a mobile phone number. The credit card holder must register this phone number with the bank to authenticate transactions and receive bank notifications. The second is the card number (a series of numbers printed on the front of the credit card). The third is the OTP (one-time password) verification code sent to the phone number registered with the bank. In the working minutes and written responses to Ms. H. and Mr. Khai, the network operator confirmed that re-issuing SIM cards to others was not in accordance with the process. Photo: DANG LE. After hijacking the right to use the SIM, the crooks will take the victim’s credit card number to pay online, then use the newly issued SIM to receive the OTP code and complete the payment. The victim’s credit card number has been stolen by the crooks before, appropriating the phone SIM is only the last step to perform the act of appropriating money. According to Mr. Thang, not everyone who loses their phone SIM will lose money in their credit cards and bank accounts. Only when they have had their credit card or account information exposed before can crooks steal money. The victim’s credit card information may be exposed during previous online transactions. The cause is usually because the victim has filled out information on fraudulent websites, installed malicious code on the phone to steal card information, opened attachments of unknown origin or it can also be due to credit institutions. does not guarantee safety in terms of security,” Thang shared. In the working minutes and written responses to Ms. H. and Mr. Khai, the network operator confirmed that re-issuing SIM cards to others was not in accordance with the process. Photo: DANG LE The network operator did the wrong process In both cases mentioned above, in the process of working with customers, the operator has confirmed that the teller when carrying out the SIM reissuance procedure only requires the customer to provide five outgoing and incoming phone numbers. subscriber ownership is not the correct procedure. In response to the recent complaint of VNPT Center in Thai Thuy district, Thai Binh province against Mr. Trieu Duc Khai, it is clear that because of this unfortunate incident, VNPT Center of Thai Thuy district has apologized to customers. The material damage that the impostor causes to the customer, the center will fix and compensate for the loss. As for the case of Ms. ATH, VNPT HCMC said that it will accompany the customer to provide necessary information to serve the investigation agency.

(Artwork: Presse-citron) Specifically, the Teabot (or Anatsa) malware, which can allow hackers to take over the victim’s Android device completely; steal their banking and other important personal information through tools like keyloggers. The analysis report from Bitdefender researchers said that Teabot malware can perform attacks through Android Accessibility Services, view private messages, steal banking information, steal authentication codes. of Google,… and even take full remote control of the victim’s devices. (Artwork: Unsplash) Distributing malware directly from app stores would be difficult, so hackers use the method of impersonating top-rated apps distributed on third-party websites. . According to research by Bitdefender, fake Android apps include antivirus, media player, health, etc. To deceive users, the fake app’s name and logo will be copied. copy almost or exactly like the real application. (Artwork: Panda Security) Here are 6 malicious apps impersonating famous apps to scam users. If you are using Android devices, please check all the applications on the device. In case your phone has 1 of the 6 applications below, quickly remove them immediately. The main app icon (right) and the fake app (left) have some differences in the 5th and 6th apps. (Image: Bitdefender) Bitdefender emphasizes that the campaign against these malicious applications is still active. For this reason, Android users need to be careful about downloading apps, especially apps from third parties, that aren’t part of the Google app market; Don’t click on strange links and always look carefully at the permission requests of Android apps.

According to Mr. Phan Vinh (Linh Nam, Hanoi), about a week ago, he was constantly tagged (marked) on posts on the social network Facebook. All of these posts have the same content related to an accident. In addition to information about the victim’s name, the article also includes a link for users to verify for themselves. “I know many people with the same name as the victim, the post is not full, so I can’t be sure who it is. Moreover, I didn’t know who the person tagged me, so I ignored those posts,” Vinh said. Users need to be wary of being tagged in Facebook posts by strangers. Photo: Trong Dat Vinh made a correct decision because if he clicked on the link, he would most likely be turned into a victim of scammers. This is not a new trick when many crooks intentionally create a fake website and trick users into accessing it. Once you click on the link attached to the article, you will be asked to log in (usually with a Facebook or Google account) to continue viewing the content. At this time, the bad guys will have their account passwords in hand to use them for impure purposes. In addition to the risk of losing the account, the victim also has the risk of revealing personal information, sensitive images, … Not only that, the bad guy can also cheat through the victim’s account Island borrow money from their friends. Usually, phishing posts have a familiar motif, with content that piqued the user’s curiosity. These posts are often accompanied by a link to another website. This is the first feature that users need to pay attention to. Bad guys often use links impersonating news agencies to trick users into accessing fake websites. Photo: Trong Dat Users also need to be wary of being tagged by strange accounts. If you see a post tagged with a large number of users (usually 99 people), absolutely do not click on the link because it is definitely a scam content. In addition, if you accidentally visit a strange link, users should not log in to their Facebook, Google, bank accounts, etc. when they receive a request, no matter what website. In fact, bad guys often use a fake website with a realistic interface to steal information, especially passwords for Facebook accounts, banks, … Therefore, users should only log in. sensitive accounts when actively accessing the websites of those services themselves. To be more careful, with websites related to financial and banking services, users should star (bookmark) these websites on the bookmarks bar of the browser. When someone asks you to borrow money on Facebook, don’t trust it, call that person directly (or through another app) to verify this information. Only with such vigilance, can users escape the “claw” of online scammers.

Illustration. According to Hai Duong Police, recently, many mobile subscribers have received messages impersonating financial institutions and banks, sending fake and fraudulent content in order to appropriate people’s money. Through verification and evaluation, the authorities found that these fake messages did not come from the systems of financial institutions, banks and telecommunications businesses, but were distributed through transmitters. fake mobile signal. These are devices of foreign origin, which are illegally traded and used by objects for the purpose of carrying out attacks to spread spam messages to deceive users, especially users in remote areas. urban area. Fraudsters often use fake broadcast devices to send spam messages directly to the phone without going through the mobile telecommunications network. These messages are sent by objects that change source information in order to create trust and deceive users. The message content is often advertising, instructions or contains links to fake websites like official websites of financial institutions, banks to lure and steal users’ information such as accounts, password, OTP code. Many users do not recognize the fake website, so they provide personal information to access the bank account such as entering the account name and password. After the user provides the information, the fake website will redirect to another website or notify the user to wait. The subject uses the user’s personal information to log in to the official website of financial institutions and banks to get the OTP authentication code (if necessary).

How the fake Google Chrome app infiltrates the phone Specifically, the crook will initially send you an SMS and ask to pay a small fee to receive the parcel. When the user clicks on the attached link, the screen will display a message asking to update the Google Chrome browser (actually fake software) and pay 1-2 USD fee to receive the goods via credit card. use. If you do, the crooks will instantly get your credit card information and take your money. In addition, the malware also uses the device to send about 2,000 phishing SMS messages per week to random phone numbers. According to the researchers, the malware’s propagation speed is relatively fast, able to target hundreds of thousands of users in a short time. How to limit? The researchers recommend that users absolutely do not give out credit card information to strangers. Also only update apps directly through Google Play or the App Store, do not click on suspicious links, even if they are sent by friends or relatives.

A mother of five, named Danielle Churchill, from southern Sydney was one of them. Struggling with raising five children, along with the hefty expenses for an autistic child, Churchill tried to apply for support through GoFundMe but was not as satisfactory. In that situation, Churchill received a text message from a person calling himself MacKenzie Scott late last year, offering to assist her every problem. According to the announcement, the ex-wife of the Amazon boss was then deciding to give away half of her fortune, and Churchill was lucky enough to be eligible to receive the money. To verify it, Churchill typed in Scott’s name and the phrase “phishing” on Google. But what she found was that billionaire Scott was actually making the move to spend money on hundreds of nonprofit groups. According to the process, to receive the money, Ms. Churchill must fill out a “membership form” from the charity claiming to be the MacKenzie Scott Foundation, then set up an online account at the Investor Bank and Trust Company. . At that time, a notice said $ 250,000 had been deposited into the account, and asked Churchill to register for a tax identification number and pay a fee to receive the money. Just like that, Churchill was subtly pickpocketed. A series of sites and organizations impersonate former billionaire Jeff Bezos’ wife to make a profit. Photo: Chris Koehler Although Churchill was cautious and actively investigated, the opponent quickly gave convincing evidence to all questions. In fact, throughout 2020, billionaire Scott claims to have charitable with nearly $ 6 billion in his fortune. Her unique dedication model is praised by many for its quickness and directness. However, this makes the female billionaire easy to be impersonated by scammers. Unbeknownst to Churchill then, there was no MacKenzie Scott Foundation. And the Investor Bank and Trust Company, once headquartered in Boston, transformed into the State Street Corporation more than a decade ago. She thought she was dealing with billionaire Scott and his team of assistants, but in reality Churchill was dealing with a sophisticated, adept group of scammers hunting for difficult subjects. In Churchill’s case, the banking channel provided, and Facebook or WhatsApp pages were fake. The use of cryptocurrency applications Bitcoin is also exploited to profit up to about 7,900 USD. This makes the victim unable to get the claim back through the bank or card company as usual. An Israeli-based email security company, Ironscales, said messages impersonating Scott’s billionaire representative were released and sent to more than 190,000 customer email accounts. The incident arose right after the ex-wife of billionaire Jeff Bezos announced the charity amount reached nearly $ 4.2 billion on December 15 last year. As for the victim, it was only after opening a bank account that did not exist did Churchill learn of the other victims. Marti DeLiema, a professor at the School of Social Work at the University of Minnesota, Twin Cities, said scam tricks via text messaging announcing charity payments are being exploited by bad actors. “Scott’s huge fundraiser has created a hole for the bad guys to take advantage of.” Even people who have actually received donations are even using their names to scam. Or the websites of the US Small Business Administration being copied, impersonating the Federal Trade Commission … Websites and facebook impersonating the billionaire philanthropist MacKenzie Scott sprung up to seduce and deceive victims. Photo: NYtimes. In fact, billionaire Scott has donated most of his wealth to organizations, universities, food banks and frontline charities, rather than giving money to individuals. Besides, the former writer also does not have an official Facebook and Instagram social network account, apart from the Medium page and an authenticated Twitter account. And all fees to receive funding are unwarranted. Scott’s representative declined to comment on fraudulent activities on behalf of billionaire ex-wife Jeff Bezos.