The main target of cybercriminals using social engineering is usually steal private data from the victim. Especially those referring to bank accounts. Recently the Internet Security Office (OSI), dependent on the National Cybersecurity Institute, has alerted about a new campaign in which hackers pose as entities such as Santander Bank The Bankia to steal the access credentials to the victim’s online banking account.
The attack, which is currently having a medium incidence on the internet, begins with an email whose subject may be “notify you of a new message” or “activate the new security for free as soon as possible …”. “It is not ruled out that there are emails with similar subjects and content that are using the name of any other bank to steal user data,” they point out from OSI.
The cyber scam when Bankia is impersonated
In the cases detected in which the criminals impersonate Bankia, it is stated in the text of the email that some changes in security and that the user must “click” on a link to implement them. “It should be noted that the message tells the user to follow the previous steps, although they are not described in the email in any part, being clear evidence of possible fraud,” they point out from OSI. And it is that the errors in the writing of the emails are one of the most common features in cyber scams of this type.
If the user heeds the message and clicks on the link, they are redirected to a Malicious website that tries to impersonate the official Bankia. There it asks the victim for their access codes to online banking. That is, the NIF and the password. Next, to give more veracity to the scam, and as is usual in this kind of scam, cybercriminals redirect the user to the authentic site of the entity.
“Due to the fact that frauds are becoming more and more professionalized, it is more difficult for users to identify them, in this case, for example, motivated by the perfect imitation of the official websites and because the links from the fake website redirect to the same page that would redirect the legitimate web ”, explains the Internet Security Office.
And to Banco Santander
From OSI they point out that the case that affects Banco Santander is very similar, although it seems somewhat more sophisticated and, in addition, tries to steal even more information. The email also offers an improvement in security and the user is asked to “click” on a link. However, the text is much more complete and better written than in the case in which Bankia is impersonated.
If the victim clicks on the link, they will be redirected to another malicious page that tries to impersonate the official of the entity. After requesting the NIF and the access code, as in the case of Bankia, ask to fill in all the information about the credit card (number, expiration date, CVV and PIN).