DT
PT
Subscribe To Print Edition About The Tribune Code Of Ethics Download App Advertise with us Classifieds
search-icon-img
search-icon-img
Advertisement
PREMIUM India Pakistan News Explainers Defence Photo Gallery IPL 2025
Home / Nation / Cyber security agency warns bank customers of phishing attack

Cyber security agency warns bank customers of phishing attack

article_Author
Tribune News Service
Updated At : 11:16 AM Aug 12, 2021 IST
  • fb
  • twitter
  • whatsapp
  • whatsapp
featured-img featured-img
Advertisement

Tribune News Service

Advertisement

New Delhi, August 11

CERT-In, the country’s top cyber security agency, has warned that scammers have been targeting bank customers in India using “a novel phishing attack” to collect sensitive banking information such as internet banking credentials, mobile number and one time password (OTP).

Advertisement

The agency in its latest advisory said, the malicious activity was being carried out using “the ngrok platform”, a unique web application. “It has been observed that Indian banking customers are being targeted by a new type of phishing attack using ngrok platform,” it said.

In the advisory, which was issued on Tuesday, the Indian Computer Emergency Response Team (CERT-In) said, “The malicious actors have abused the ngrok platform to host phishing websites impersonating internet banking portals of Indian banks.”

Advertisement

Phishing denotes to the fraud when an attacker, masquerading as a trusted entity, tricks a victim into clicking evil links to steal passwords, login credentials and one-time password (OTP).

In the advisory, the agency further elaborated that using these phishing websites, “malicious actors” collect sensitive information of the customers such as internet banking credentials, mobile number and OTP to perform “fraudulent transactions”.

It said, “The phishing attacks have been seen to be triggered through SMSes containing links that end with ngrok.io/xxxbank.”

Explaining this with an example SMS, the agency said, “Dear customer your xxx bank account will be suspended! Please Re KYC Verification Update click here link http://446bdf227fc4.ngrok.io/xxxbank.”

To counter such attack, the agency asked users to “install and maintain updated anti-virus and anti-spyware software, filtering tools (anti-virus and content-based filtering), firewall and filtering services”. It has also asked users to update spam filters with latest spam mail contents.

“Customers should report any unusual activity in their account immediately to the respective bank,” it said and asked them to report it to incident@cert-in.org.in.

Advertisement
Advertisement
Advertisement
Advertisement
Advertisement

The Tribune, now published from Chandigarh, started publication on February 2, 1881, in Lahore (now in Pakistan). It was started by Sardar Dyal Singh Majithia, a public-spirited philanthropist, and is run by a trust comprising five eminent persons as trustees.

The Tribune, the largest selling English daily in North India, publishes news and views without any bias or prejudice of any kind. Restraint and moderation, rather than agitational language and partisanship, are the hallmarks of the newspaper. It is an independent newspaper in the real sense of the term.

The Tribune has two sister publications, Punjabi Tribune (in Punjabi) and Dainik Tribune (in Hindi).

Remembering Sardar Dyal Singh Majithia

Copyright © The Tribune Trust, 2024
Designed and developed by : sortd
tlbr_img1 Classifieds tlbr_img2 Videos tlbr_img3 Premium tlbr_img4 E-Paper tlbr_img5 Shorts