Hot
Video
Sports
Cricket
Entertainment
Technology
Health
Lifestyle
Auto
Business
Education
National
World
Politics
Travel
Food
Hackers can now access your bank account without OTP, know here how to be careful?
Siddhi Jain February 23, 2025 06:15 PM

Cybercriminals have now adopted new tricks to steal money. They do not need OTP or ATM PIN. They simply send messages with links that appear to come from banks. As soon as the receiver clicks on the link, money is stolen from his account without the need for OTP.

Scammers often collect personal data from sources where individuals have shared their phone numbers. They use this data to send messages related to recent purchases. If the receiver clicks on the link, his money is stolen immediately.

A 26-year-old woman from New Delhi recently purchased an HP laptop from Croma. A few days later, she received a message from an unknown number claiming that she had won a voucher. The message asked her to share personal details, including bank information, to claim the voucher by clicking on a link.

What raised suspicion was an error in the message - it mentioned both Croma and Vijay Sales, suggesting that she had won a voucher for a purchase made at Vijay Sales. This inconsistency alerted her, which prevented the potential scam.

How to avoid such scams

Be wary of unsolicited calls and messages.

Never share sensitive information with unknown contacts.

Do not click on suspicious links, even if they promise vouchers, discounts or cash rewards.

Avoid installing apps from unverified sources, as they may give scammers access to your device's camera and photo gallery, which are often used for KYC verification.

If you receive an unusual call, confirm the receiver through official channels before taking any action.

Apart from phishing links, fraudsters are also using advanced techniques like call merging, call forwarding, voice mail scams, QR code fraud and screen sharing scams.

How does a call merging scam work?

In this scam, a fraudster calls a person – such as a media professional – pretending to be a known contact and inviting them to cover an event. Simultaneously, the victim receives another call from an unknown number. The fraudster then claims that the second call is from a VIP number and requests the victim to merge the calls.

Once the merge is done, the fraudster captures and listens to the OTP sent through the call from the bank or apps such as WhatsApp and Facebook. This gives them an opportunity to hack accounts or steal money.

APK and RAT malware scams

To dupe users, cybercriminals are also using sophisticated Android application package (APK) files and remote access Trojans (RATs). According to a senior official, RATs and APKs enable hackers to control a user's device remotely, without their knowledge.

On May 21, the DSP of Hassan sub-division reportedly lost Rs 15.98 lakh after he installed an application from a nationalized bank that was sent to him via a text message. The link contained an APK or RAT file that allowed hackers to access his device.

You might like
Congenital Heart Disease: Causes, Symptoms And Preventive Measures
What’s actually getting you sick when it’s cold out: doctor
Store Aloe vera gel like this for a long time, adopt these tips
These 5 fruits will blow stomach fat! Know the secret of losing weight
Tomato cheela best option for breakfast
© Copyright @2025 LIDEA. All Rights Reserved.