Recently, in Vietnam, there have been forms of fraud with increasingly sophisticated tricks, aiming to steal personal information and confidential information about e-banking (e-banking): login name, login password. Enter Internet Banking, Mobile Banking and OTP authentication code of the Customer (KH), thereby appropriating money in the Customer’s account.
Some typical fraud tricks are as follows:
1. Via Email: Fraudsters impersonating a bank, company, or partner send an email notifying the customer that the customer’s bank account has been locked, requesting to log in again; or announce that the customer has a large bonus, request to pay a fee to receive the bonus. Subjects requiring customers to provide personal and confidential information (Username, password, OTP…)thereby stealing information and making transactions to appropriate money from the customer’s account
2. Via SMS: Fraudsters fake messages from the Bank announcing system upgrades, prize winning announcements, foreign transaction warnings, etc., attaching fake links asking customers to access similar fake links. such as the bank’s official website, enter your username, password, and OTP code for e-banking transactions. After having this information, the subject performs a transaction to appropriate money from the account.
3. Via phone call:
- Fraudsters impersonate bank employees and request to provide login name, access password, and OTP authentication code to handle problems related to customers’ banking transactions. After having this information, the subject transfers money from the customer’s account.
- Fraudsters impersonating network operators contact customers requesting to convert 3G sim to 4G or 4G sim to 5G. The subject then instructed the customer to take steps to fraudulently transfer the customer’s phone number to the subject’s SIM card, thereby obtaining e-banking transaction information, appropriating the transaction account and transferring money.
- Fraudsters impersonating authorities (Police, Procuracy, Court, Social Insurance…) call to pressure and threaten people who are involved in crime rings or owe taxes, owe social insurance fees, and demand Request the customer to provide the e-bank’s password and OTP transaction code. Or request to install a fake CQCN application (this is spyware), when the user installs this application on the phone, the entire phone may be taken over: Information on the phone The user’s phone will be controlled by spyware and secretly transferred to a server managed by the target. Fraudsters can remotely control activities: compose and send SMS messages; unlock mobile devices; turn on and off internet, wifi access; read and write contacts; Read and record call history, make calls without the phone owner’s knowledge.
4. Through fake websites:
- The subject impersonates a relative, friend, or partner and provides a fake link to the WesternUnion international money transfer service, asking the customer to receive a sum of money or receive money for providing goods and services (The subject finds out in advance information about the customer’s need to sell goods/assets). When the customer accesses and enters the e-banking login information, password and service activation OTP (Mobile Banking or SmartOTP) into the fake link, the subject will grasp all the customer’s information and install the Smart OTP themselves to money transfer transaction.
- Fake WesternUnion links/interfaces often look similar to the real website, with only a few characters/images different.
Fraudulent tricks come in a variety of forms but always have something in common Require customers to provide personal information and electronic banking security information (login name, password, OTP code) to access your e-Banking account, usurp control to steal money from customer accounts.
SHB affirms SHB’s consulting and guidance services ARE NOT Ask the customer to provide security information. Customer’s security information is only used to log in and authenticate when using e-Banking services via Mobile Banking application and SHB’s official website with the domain ending being *.shb.com.vn marked with a security padlock on the side.
Therefore, to ensure the safety of your assets, Customers need to pay attention:
ABSOLUTE:
- Are not provide electronic banking security information including Username, Password, Authentication Code (OTP) to anyone;
- Are not access and/or enter security information Electronic banking go to the website/link/app other with SHB’s website/Internet Banking link/Mobile Banking application;
- Are not make any request (access strange links, install strange applications, transfer money, top up cards, withdraw money, …) of subjects when in doubt;
SHOULD BE IMPLEMENTED:
- Access only SHB’s Internet Banking according to SHB’s official website link is *.shb.com.vn marked with a secure lock next to it or use the SHB Mobile Banking application to perform electronic banking transactions.
- Change right user/password or call hotline *6688 to lock up service Ebanking when there is suspicion of fraud;
- Report to local police for assistance;
- Immediately notify the bank when detecting fraud (Call the hotline *6688 or go to the nearest transaction point).
SHB Vietnam:
SHB Laos:
SHB Cambodia:
Customers can refer to the video warning about fraudulent tricks here/.
SHB sincerely thanks our customers for always trusting and accompanying the Bank during the past time!
Best regards!
Saigon – Hanoi Bank
