As per the latest report by eScan, it has been found that numerous Maybank customers recently might have fallen into the trap of phishing emails. The emails were sent with an intention to steal the username and passwords of the customers. The phishing site was modulated in such a way that at every step an email containing the customer's data was transmitted to the attacker via email. The email invited users to click on Maybank phishing websites and once the customer filled the phishing form and clicked on submit button, post entering the username and password, the details were immediately sent to the attacker.
In the five step process, attacker himself logs in into the banking site, using the stolen credentials. Meanwhile, the bank sends the Transaction Authorization Code (TAC) to the victim's contact number. The victim provides the TAC to the phishing page, which is received by the attacker via email and is able to complete the online verification process and hence gets complete access of the victim's bank account. The attacker is free to carry ill-legal and fraud activities. In this real-time phishing attack, the victim is left clueless and cyber criminals can sufficiently take away the money.
Cyber frauds can use this information and can even change the banking credentials to steal the money before the customer notices that he was been defrauded.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.