State Bank of Vietnam warned of phishing attacks disguised as official emails

DNHN - On August 23, the State Bank of Vietnam (SBV) issued a warning about a recent phishing scam where fraudulent individuals impersonate the SBV by sending fake emails to lure recipients into clicking on malicious links.

The State Bank of Vietnam warned about impersonation scams spreading links containing malware
The State Bank of Vietnam warned about impersonation scams spreading links containing malware.

According to the SBV's warning, the fake emails are sent from the address “[email protected],” containing information that deceives recipients into clicking on two links: one for updating biometric information, with a deadline of August 30, 2024, and another link supposedly containing the full text of Decision No. 2345/QĐ-NHNN.

The email urges recipients to install an application to collect biometric information; however, this is actually a file containing malware or spyware. Once downloaded, this malicious software can collect personal information, giving scammers control over the recipient's personal devices, banking accounts, or even stealing sensitive data to commit further illegal acts.

"The SBV affirms that this is an act of impersonating the SBV to deceive the recipients of the emails into following the instructions of the fraudsters to collect customer information. Specifically, by luring recipients into clicking on the fake link to download and install an application that claims to collect biometric information but in fact downloads a file containing malware, spyware, which exploits customer information to take control of personal devices, bank accounts, or steal information and data from victims to carry out illegal activities," the SBV emphasized.

Currently, the SBV only provides official information to the public through the SBV's electronic portal at the address (https://www.sbv.gov.vn) and does not send emails directly to customers of credit institutions requesting updates on biometric information.

The SBV urges the public and customers of credit institutions to be extremely vigilant, not to click on unfamiliar links sent through chat, SMS, or email; and not to provide personal information on websites of unclear origin.

Do not provide one-time passwords (OTP), e-banking/mobile banking passwords to anyone, including bank employees; be cautious and vigilant when receiving and handling information or requests from unofficial or unclear sources (such as information not from the officially announced channels of government agencies).

Mai Anh

Related news