Customers of Revolut, the banking service provider, have been targeted by a series of fraudulent texts and malicious Google ads. The crooks use phishing texts and elaborate advertisements containing false telephone numbers in order to steal data.
According to the British consumer advice site Which?, One victim lost around £ 8,000 as a result of a malicious attack. He said that just last week, five people contacted them after receiving text messages, which had apparently been sent by Revolut, most of them saying “your account has been temporarily locked”.
Those receiving the messages were also asked to click on a link and update their photo ID. Other posts have referred to and asked recipients to visit a web page if they “did not request this code”.
The web addresses used in the links lead unsuspecting users to fake sites, with carefully adjusted URLs such as the example https://revoiut.help on which? website that used an “i” instead of an “l”.
There have been other variations on the theme, with text appearing to come from revolut-supportgb.co, but with another disguised web address behind. Revolut previously warned of scammers posing as helplines in a blog in early January.
The consumer who lost £ 8,000 called a number that appeared on a false Revolut Google ad. After being asked to resubmit his ID following an email informing him that it had expired, he used Google to search for a Revolut phone number to confirm that everything was legitimate.
During interviews with people claiming to be from Revolut, he was told to download a remote access tool called TeamViewer QuickSupport. This gave them access to his cell phone to verify his account, via the Revolut app. As a result, the victim had withdrawn £ 7,938 from his account. Revolut has since fully reimbursed the customer.
A spokesperson for Revolut said which one: “Revolut takes the protection of all our customers very seriously. We are fully aware of the industry-wide risk of clients being duped by organized criminals. Our sophisticated and comprehensive anti-fraud systems have a very good track record in preventing and reporting fraudulent transactions.
To ensure that our customers are aware of the risk of fraud, we regularly send alerts and general security advice via in-app notifications, emails, social media and our blog. We know how stressful these situations can be for clients and we do everything we can to help victims of fraud recover their funds. “
The consumer advisory website emphasizes that you should never be asked to share your login information, one-time password or install anything on your phone. Likewise, if someone claims to be from Revolut by phone, ask them to send you a message in the application to confirm that they are a real agent.
Via: which one?