Monday 18 October 2021
- Advertisement -
HomePoliticsIndiaChinese hackers targeting SBI users offer free gifts

Chinese hackers targeting SBI users offer free gifts

Chinese hackers ask users to update their KYC using a particular website link, offering free gifts worth Rs 50 lakh from the bank


In fresh trouble, hackers of Chinese origin are targeting State Bank of India (SBI) users with scams by offering free gifts. A report said that the hackers are asking users to update their KYC using a particular website link and offering free gifts worth Rs 50 lakh from the bank via a WhatsApp message, cyber security researchers warned.

The research wing of New Delhi-based think tank CyberPeace Foundation, along with Autobot Infosec Pvt Ltd, studied two such incidents on the name of that were faced by some smartphone users.

“All the domain names associated with the campaign have the registrant country as China,” the research team said.

In the first case of the text message requesting KYC verification, the landing page that appears resemble with the official online page.

On clicking the “Continue to Login” button, it redirects the user to the full-kyc. Php page, asking confidential information like username, Password and a captcha in order to login to the online banking.

“Following this, it asks for an OTP sent to the user’s mobile number. As soon as the OTP is entered, it redirects the user to another page that asks the users to enter some confidential information again like account holder name, mobile number, date of birth. After entering the data, it redirects the user to an OTP page,” the researchers informed.

The research team came to a conclusion that the campaign is pretended to be launched from State Bank of India but hosted on the third-party domain instead of the official website, which makes it more suspicious.

The overall layout of the web page used in the campaign is kept similar to the official net banking site to lure the users.

However, the was yet to react to the report.

In the second case of luring users to win attractive free gifts, the team found that the WhatsApp message also redirects the user to a link.

“On the landing page, a congratulations message appears with an attractive photo of State Bank of India and asks users to participate in a quick survey to get a free gift of Rs 50 lakh from the State bank of India,” the researchers informed.

At the bottom of the page, a section appears which seems to be a Facebook comment section where many users have commented about how the offer is beneficial.

The Research teams investigated the URLs in a secured sandbox environment where WhatsApp application was not installed.

The researchers recommend that people should avoid opening such messages sent via social platforms.

“The URL manipulation showed that the web server has directory listing enabled and found other links visible which proves that not only the users, IDFC, PNB, IndusInd and Kotak bank users are also targeted by the same type of scam,” the team noted.

In March this year, the same research team had pointed out that several users of the were targeted in a scam where hackers flooded them with suspicious text messages, requesting them to redeem their SBI credit points worth Rs 9,870.

Earlier, in April,  had warn its customers against similar OTP scam in which fraudsters ask users to share their OTP in order to postpone their loan EMIs.

In a post on microblogging site Twitter, the bank said that the fraudsters have found new ways to dupe people. In this new kind of cybercrime, customers get calls from the scamsters to share their OTP in order to postpone their loan EMIs.

Sirf News needs to recruit journalists in large numbers to increase the volume of its reports and articles to at least 100 a day, which will make us mainstream, which is necessary to challenge the anti-India discourse by established media houses. Besides there are monthly liabilities like the subscription fees of news agencies, the cost of a dedicated server, office maintenance, marketing expenses, etc. Donation is our only source of income. Please serve the cause of the nation by donating generously.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

- Advertisment -