Carders pose as employers
Signs of carding
Attackers send messages via email, SMS or instant messengers with attractive working conditions: high pay, part-time work, easy tasks. Often this is work on marketplaces (selling goods and services via the Internet). To clarify the details, a person is asked to follow a link that leads to popular instant messengers. There, “recruitment managers” enter into correspondence with the potential victim. They can ask the client for bank card details and mobile phone number. Then, supposedly, to register and activate an account to work on the marketplace, you need to make an entrance fee - for example, in the amount of 500 rubles. But in reality, this money ends up in the pockets of scammers, and they use the bank card information and phone number to try to hack a person’s personal account on the bank’s website and steal funds from his account.
What to do?
Do not trust mailings with job offers, especially if you are forced to pay for any services, goods, reserve a vacancy or make other payments. Such offers of “guaranteed work” are a popular technique for scammers.
In addition, when receiving such job offers, do not provide your passport details and financial information (card and cardholder details, three-digit code on the back of the card or SMS code).
Notifying a bank client about a personal data leak
Signs of carding
Attackers call citizens and introduce themselves as law enforcement officers. First, the fake policeman informs the person that, on behalf of the Central Bank, he is investigating a case of massive leakage of banking data, which may include information about a citizen. Under this pretext and in order to possibly involve the interlocutor as a victim, the carder invites him to check his bank information with the database of stolen data. Next, the attacker asks the person which bank he uses and asks for card details, including the three-digit code on the back of the card. To convince a potential victim of the plausibility of the story, the carder can send a photo of a fake document about the conduct of operational-search activities via instant messenger or email.
What to do?
If you receive such a phone call, interrupt the conversation.
The Bank of Russia reminds that neither bank employees nor law enforcement officers ever request bank card details (its number, three-digit code on the back, SMS code). Carders need this information.
In addition, neither the Bank of Russia nor representatives of law enforcement agencies send photos of identification cards or any other documents.
False employees of the Bank of Russia
Signs of carding
The Bank of Russia notes another wave of widespread carding schemes in which attackers pose as employees of the Central Bank. First, scammers call a person and report dubious transactions allegedly performed on an account or card, then send him a fake ID of a Bank of Russia employee with a logo and seal via messenger or email. Such documents may contain the names of real employees - attackers can take this information from the regulator’s website. By sending a false ID, they hope to convince a person of the credibility of their dishonest actions in order to subsequently deprive him of money or issue a loan for him.
What to do?
The Bank of Russia reminds that it does not work with individuals as clients, does not maintain their accounts, does not call them, and its employees do not send copies of their documents to anyone. If you receive a phone call from a scammer, immediately interrupt the conversation and block their number if possible. If you have any doubts about the safety of the money in your bank account, call your bank yourself at the number listed on its official website or on the back of your bank card.
They pose as employees of mobile operators
Signs of carding
Attackers call citizens under the guise of support staff from a cellular operator and inform them that the subscriber’s number will soon cease to work. To avoid disconnecting a number, a person is asked to dial a certain combination of numbers on a mobile phone. However, as a result, the subscriber activates the forwarding of calls and text messages, including those with SMS codes from the bank, to the scammers’ numbers. This allows them to access remote control of a bank account and steal money.
In addition, scammers may inform that a citizen needs to renew the contract for the provision of communication services, change the tariff plan to a more profitable one, or disable a paid service. Sometimes attackers report that an application has been received to change the mobile operator while keeping the number.
Regardless of the reason for the call, the goal of the scammers is either to obtain a code from the person to enter his personal account of the mobile operator and set up call forwarding, or to convince the subscriber to activate it himself.
What to do?
If you receive such a phone call, interrupt the conversation. If you continued the conversation and during the conversation you received an SMS code from your personal account, do not tell it to anyone. If you have any questions, call the mobile operator’s support service yourself at the number listed on its official website.
Exchange cashback to rubles
Signs of carding
Attackers call citizens under the guise of bank employees and inform them that cashback and other bonus points accumulated for purchases can be exchanged for rubles. To do this, scammers ask a person for banking information and an SMS code received from the bank, supposedly to confirm the transaction and pay a commission for the service. However, in reality, the attackers, having obtained this information, steal money from the account.
What to do?
If you receive such a phone call, interrupt the conversation. Bank employees never ask for financial data over the phone, including the three-digit code on the back of the card or SMS code.
For any banking questions, including cashback, call the bank yourself at the number indicated on the back of the card or on the credit institution’s website.
They promise to help with compensation for stolen money
Signs of carding
In order to allegedly return the money stolen from him to the victim, scammers create special websites, links to which are sent by email, SMS or instant messengers. Sometimes they call with an offer to issue compensation for stolen funds. In May 2022 alone, the Bank of Russia sent data on 38 Internet resources to law enforcement agencies to block, offering various compensations, as well as the return of money stolen by carders.
The criminals ask gullible citizens to fill out a form with personal and financial data in order to allegedly check the due refund amount and issue it. And then, having received this data, they steal money from the person.
What to do?
A bank client has the right to count on the return of the stolen amount only if he did not independently transfer money to carding accounts and did not disclose his personal and financial data to the criminals.
If the money was written off without your consent, then the only legal mechanism to return it is the following: immediately contact the bank, block the card and, within 24 hours after the incident, write a statement of disagreement with the operation to the bank branch.
They offer to check account data for leaks
Signs of carding
Attackers invite citizens to check whether account or card data has fallen into the hands of third parties. To do this, the person is sent by email or other means a link to a site that supposedly checks for leaks of banking information. As soon as the victim enters his bank details on this site, they end up with the real scammers.
After this, attackers can steal the cardholder’s money or use his data for illegal purposes.
What to do?
There are no sites where you can check the fact of leakage of banking information!
Never enter your account or card details (number, expiration date, verification code on the back of the card) and personal data (passport details, date of birth, residence address, etc.) on dubious sites, and do not follow links from suspicious emails or SMS -messages.
There are reports of a shortage of cash rubles and foreign currency
Signs of carding
Attackers use the current agenda to steal funds from citizens. For example, bank employees allegedly call and report a shortage of both cash rubles and foreign currency.
Next, they offer to transfer money from a card or bank account to a certain “special account”, from which a person can subsequently withdraw funds without hindrance.
To open such an account, attackers request financial data from the citizen - the card number, including the three-digit code on its back, as well as a confirmation SMS code from the bank.
Having learned this information, they gain access to the victim’s account and transfer funds from it to carding accounts.
What to do?
If you receive such a phone call, end the call immediately.
Bank employees never ask for personal and financial information over the phone, including the three-digit code on the back of the card or SMS code.
To clarify your questions, call the bank at the number indicated on the back of the card or on the official website of the credit institution.
They offer to transfer money to a “special account of the Central Bank”
Signs of carding
Recently, attackers often call a person with a message that unknown persons are trying to steal money from his account and for the safety of the funds they need to be transferred to a “special” (“safe”) account at the Central Bank.
In fact, the account whose details are given by the attackers belongs to them.
Carders use the mention of a regulator in the scheme to lull the vigilance of a potential victim.
Sometimes, to gain a person's trust, callers may remind you of security rules - for example, recommend never disclosing financial information.
What to do?
The Bank of Russia does not work with individuals as clients, does not maintain their accounts and does not make calls to citizens.
If you receive such a phone call, end the call immediately.
Convince you to get a loan
Signs of carding
A person receives a call from an alleged credit bureau employee who claims that carders are trying to apply for a loan for him or his close relatives.
After a short time, they call him again and may introduce themselves as employees of the bank’s security service, law enforcement agencies, or the Bank of Russia. The caller confirms that unknown persons are indeed applying for a loan in the name of the citizen or his relatives and, in order to prevent its illegal execution, it is necessary to apply for a “counter” loan yourself online or at the bank office as soon as possible. The loan amount must match the amount applied for by unknown persons using their passport details.
To be convincing, the criminals ask the citizen to act quickly and under no circumstances tell anyone about the loan and its purposes, since a secret operation is being carried out to identify the swindler from among the bank’s employees. They convince the victim that her actions will reveal the criminal, and her credit history will remain clean.
During the conversation, callers find out which banks the victim uses, and in order to gain trust, they ask whether she has lost her identity documents or passed on her passport details to anyone.
What to do?
If you receive such a phone call, end the call immediately.
Neither bank employees nor credit history bureaus inform citizens about changes in their credit history over the phone.
As a rule, only scammers can report an attempt to apply for a loan by phone or in some other way.
(c) https://socchel.ru/tipichnye-moshennicheskie-shemy
Signs of carding
Attackers send messages via email, SMS or instant messengers with attractive working conditions: high pay, part-time work, easy tasks. Often this is work on marketplaces (selling goods and services via the Internet). To clarify the details, a person is asked to follow a link that leads to popular instant messengers. There, “recruitment managers” enter into correspondence with the potential victim. They can ask the client for bank card details and mobile phone number. Then, supposedly, to register and activate an account to work on the marketplace, you need to make an entrance fee - for example, in the amount of 500 rubles. But in reality, this money ends up in the pockets of scammers, and they use the bank card information and phone number to try to hack a person’s personal account on the bank’s website and steal funds from his account.
What to do?
Do not trust mailings with job offers, especially if you are forced to pay for any services, goods, reserve a vacancy or make other payments. Such offers of “guaranteed work” are a popular technique for scammers.
In addition, when receiving such job offers, do not provide your passport details and financial information (card and cardholder details, three-digit code on the back of the card or SMS code).
Notifying a bank client about a personal data leak
Signs of carding
Attackers call citizens and introduce themselves as law enforcement officers. First, the fake policeman informs the person that, on behalf of the Central Bank, he is investigating a case of massive leakage of banking data, which may include information about a citizen. Under this pretext and in order to possibly involve the interlocutor as a victim, the carder invites him to check his bank information with the database of stolen data. Next, the attacker asks the person which bank he uses and asks for card details, including the three-digit code on the back of the card. To convince a potential victim of the plausibility of the story, the carder can send a photo of a fake document about the conduct of operational-search activities via instant messenger or email.
What to do?
If you receive such a phone call, interrupt the conversation.
The Bank of Russia reminds that neither bank employees nor law enforcement officers ever request bank card details (its number, three-digit code on the back, SMS code). Carders need this information.
In addition, neither the Bank of Russia nor representatives of law enforcement agencies send photos of identification cards or any other documents.
False employees of the Bank of Russia
Signs of carding
The Bank of Russia notes another wave of widespread carding schemes in which attackers pose as employees of the Central Bank. First, scammers call a person and report dubious transactions allegedly performed on an account or card, then send him a fake ID of a Bank of Russia employee with a logo and seal via messenger or email. Such documents may contain the names of real employees - attackers can take this information from the regulator’s website. By sending a false ID, they hope to convince a person of the credibility of their dishonest actions in order to subsequently deprive him of money or issue a loan for him.
What to do?
The Bank of Russia reminds that it does not work with individuals as clients, does not maintain their accounts, does not call them, and its employees do not send copies of their documents to anyone. If you receive a phone call from a scammer, immediately interrupt the conversation and block their number if possible. If you have any doubts about the safety of the money in your bank account, call your bank yourself at the number listed on its official website or on the back of your bank card.
They pose as employees of mobile operators
Signs of carding
Attackers call citizens under the guise of support staff from a cellular operator and inform them that the subscriber’s number will soon cease to work. To avoid disconnecting a number, a person is asked to dial a certain combination of numbers on a mobile phone. However, as a result, the subscriber activates the forwarding of calls and text messages, including those with SMS codes from the bank, to the scammers’ numbers. This allows them to access remote control of a bank account and steal money.
In addition, scammers may inform that a citizen needs to renew the contract for the provision of communication services, change the tariff plan to a more profitable one, or disable a paid service. Sometimes attackers report that an application has been received to change the mobile operator while keeping the number.
Regardless of the reason for the call, the goal of the scammers is either to obtain a code from the person to enter his personal account of the mobile operator and set up call forwarding, or to convince the subscriber to activate it himself.
What to do?
If you receive such a phone call, interrupt the conversation. If you continued the conversation and during the conversation you received an SMS code from your personal account, do not tell it to anyone. If you have any questions, call the mobile operator’s support service yourself at the number listed on its official website.
Exchange cashback to rubles
Signs of carding
Attackers call citizens under the guise of bank employees and inform them that cashback and other bonus points accumulated for purchases can be exchanged for rubles. To do this, scammers ask a person for banking information and an SMS code received from the bank, supposedly to confirm the transaction and pay a commission for the service. However, in reality, the attackers, having obtained this information, steal money from the account.
What to do?
If you receive such a phone call, interrupt the conversation. Bank employees never ask for financial data over the phone, including the three-digit code on the back of the card or SMS code.
For any banking questions, including cashback, call the bank yourself at the number indicated on the back of the card or on the credit institution’s website.
They promise to help with compensation for stolen money
Signs of carding
In order to allegedly return the money stolen from him to the victim, scammers create special websites, links to which are sent by email, SMS or instant messengers. Sometimes they call with an offer to issue compensation for stolen funds. In May 2022 alone, the Bank of Russia sent data on 38 Internet resources to law enforcement agencies to block, offering various compensations, as well as the return of money stolen by carders.
The criminals ask gullible citizens to fill out a form with personal and financial data in order to allegedly check the due refund amount and issue it. And then, having received this data, they steal money from the person.
What to do?
A bank client has the right to count on the return of the stolen amount only if he did not independently transfer money to carding accounts and did not disclose his personal and financial data to the criminals.
If the money was written off without your consent, then the only legal mechanism to return it is the following: immediately contact the bank, block the card and, within 24 hours after the incident, write a statement of disagreement with the operation to the bank branch.
They offer to check account data for leaks
Signs of carding
Attackers invite citizens to check whether account or card data has fallen into the hands of third parties. To do this, the person is sent by email or other means a link to a site that supposedly checks for leaks of banking information. As soon as the victim enters his bank details on this site, they end up with the real scammers.
After this, attackers can steal the cardholder’s money or use his data for illegal purposes.
What to do?
There are no sites where you can check the fact of leakage of banking information!
Never enter your account or card details (number, expiration date, verification code on the back of the card) and personal data (passport details, date of birth, residence address, etc.) on dubious sites, and do not follow links from suspicious emails or SMS -messages.
There are reports of a shortage of cash rubles and foreign currency
Signs of carding
Attackers use the current agenda to steal funds from citizens. For example, bank employees allegedly call and report a shortage of both cash rubles and foreign currency.
Next, they offer to transfer money from a card or bank account to a certain “special account”, from which a person can subsequently withdraw funds without hindrance.
To open such an account, attackers request financial data from the citizen - the card number, including the three-digit code on its back, as well as a confirmation SMS code from the bank.
Having learned this information, they gain access to the victim’s account and transfer funds from it to carding accounts.
What to do?
If you receive such a phone call, end the call immediately.
Bank employees never ask for personal and financial information over the phone, including the three-digit code on the back of the card or SMS code.
To clarify your questions, call the bank at the number indicated on the back of the card or on the official website of the credit institution.
They offer to transfer money to a “special account of the Central Bank”
Signs of carding
Recently, attackers often call a person with a message that unknown persons are trying to steal money from his account and for the safety of the funds they need to be transferred to a “special” (“safe”) account at the Central Bank.
In fact, the account whose details are given by the attackers belongs to them.
Carders use the mention of a regulator in the scheme to lull the vigilance of a potential victim.
Sometimes, to gain a person's trust, callers may remind you of security rules - for example, recommend never disclosing financial information.
What to do?
The Bank of Russia does not work with individuals as clients, does not maintain their accounts and does not make calls to citizens.
If you receive such a phone call, end the call immediately.
Convince you to get a loan
Signs of carding
A person receives a call from an alleged credit bureau employee who claims that carders are trying to apply for a loan for him or his close relatives.
After a short time, they call him again and may introduce themselves as employees of the bank’s security service, law enforcement agencies, or the Bank of Russia. The caller confirms that unknown persons are indeed applying for a loan in the name of the citizen or his relatives and, in order to prevent its illegal execution, it is necessary to apply for a “counter” loan yourself online or at the bank office as soon as possible. The loan amount must match the amount applied for by unknown persons using their passport details.
To be convincing, the criminals ask the citizen to act quickly and under no circumstances tell anyone about the loan and its purposes, since a secret operation is being carried out to identify the swindler from among the bank’s employees. They convince the victim that her actions will reveal the criminal, and her credit history will remain clean.
During the conversation, callers find out which banks the victim uses, and in order to gain trust, they ask whether she has lost her identity documents or passed on her passport details to anyone.
What to do?
If you receive such a phone call, end the call immediately.
Neither bank employees nor credit history bureaus inform citizens about changes in their credit history over the phone.
As a rule, only scammers can report an attempt to apply for a loan by phone or in some other way.
(c) https://socchel.ru/tipichnye-moshennicheskie-shemy
