Information Stolen from 24 Indian Banks

Wallets will be next I am guessing. There is no security in India. Is PM doing something about information security of these bank and wallet sites or we are all going cashless and one day could become truly cash less

Researchers from US-based cyber security company FireEye have claimed discovering malicious phishing websites created by cyber criminals that spoof 26 Indian banks to steal personal information from customers.

FireEye identified a new domain (csecurepay[.]com) that was registered on October 23 this year and appears to be an online payment gateway but actually is a phishing website that leads to the capturing of customer information from 26 banks operating in the country, the company said in a statement on Thursday.

In this phishing attack, victims are asked to enter their account number, mobile number, email address, one time password (OTP) and other details. Once the information is collected, the website displays a fake failed login message to the victim.

The phishing site served fake logins from 26 banks, including HDFC Bank, ICICI Bank, IDBI Bank, State Bank of India, among others.

This is how it works. When navigating to the URL, the domain appears to be a payment gateway and requests that the user enter their bank account number and the amount to be transferred. The victim is allowed to choose their bank from a list.

In the next step, the malicious website requests the victim to enter their valid 10-digit mobile number and email ID which makes the website appear more legitimate.

"The victim will then be redirected to the spoofed online banking page of the bank they selected and are requested to login," FireEye said.

After entering their login credentials, the victim will key in their OTP and once all the sensitive data is gathered, a fake failed login message such as "Some error occurred. Try after some time" will be displayed to the victim.

"Criminals follow the money and as more Indians embrace online banking, criminals followed them online. As the digital economy grows, consumers should be aware of the risks that accompany the convenience," noted Vishak Raman, Senior Director for India and Saarc at FireEye.

Using the registration details of this domain, FireEye security researchers identified a second domain (nsecurepay[.]com) registered by the same attacker in August 2016 and appeared to be created to steal credit and debit card information, including ICICI, Citibank, Visa and MasterCard and SBI debit card details.

"The ease of online payments opens new avenues for criminals to trick consumers into divulging their own sensitive banking information. The growing sophistication of these cyber criminal campaigns makes them harder for consumers to identify and firewalls and antivirus technology do not stop these attacks," Raman added.

FireEye said it has notified the Indian Computer Emergency Response Team (CERT-In), which is under the Ministry of Electronics and Information Technology, about the threat. more  

View all 33 comments Below 33 comments
Thanks all for appreciating more  
Mr.Mittal, Thanks for this early warning. Its surely going to affect us in future transactions. We should initiate a campaign so that the Ministry in GOI could take steps to check it more  
This is helpful more  
online transactions are being encouraged by banks and government too. But no one is telling we are safe with online transactions. some minister was promising that necessary steps will be taken for cyber security.even the computer literates are being cheated. what will happen when uneducated and the under educated also start operating on line transactions. recently some data regarding the debit cards was stolen as per the news reports. Banks advised the customers to take chip cards. when it is responsibility of the banks to provide security, they should replace the old cards with chip cards also. Many customers who are not aware of the news may not even apply for new card. banks are no more service oriented they are business houses now. without having confidence about cyber security it may be risky to go cashless society. our first target be cyber security. more  
Post a Comment

Related Posts

    • GST of 35%

      The proposed increase of the Goods and Services Tax (GST) on 150 items, including quality footwear, shoes, clothing, and more, to 35% requires a reevaluation of consumption patterns. If this policy...

      By Mohit Jain
      /
    • It's me Sutirtha from West Bengal. I want to share my frustrating experience with Reliance Life Insurance, where I was repeatedly misled by their representatives: 1. In August 2024, I bought P...

      By Sutirtha Ghosal
      /
    • Beware of Star Health and Care insurance

      Star and Care stand out in people having horrible claims experience and claim rejection I have seen both these insurers reject claims for illogical reasons. They seem to delay claim...

      By Naina Mittal
      /
    • Inland letter from LIC without any information

      A couple of days back, I received 2 letters from LIC. It started this "Dear Policyholder...". It was an intimation of maturity or survival benefit for the policy. Nowhere was the policy number me...

      By Padmanabhan G
      /
    • Airtel ups their post paid

      Pathetic customer service. My postpaid mobile bill jumped from ₹352 to ₹411. Changed to a new plan of ₹449 without any communication to me or my authorization..called their customer service number....

      By Padmanabhan G
      /
    • High cost of living

      The way cost of living, inflation, rents, layoffs, fear of pink slips, insufficient retirement corpus, over exceeding medical & education costs are increasing, very soon we are going to witness...

      By RN Chopra
      /
    • महंगाई - गेहूं यानी wheat

      गेहूं की महंगाई रहस्यमय हो चली है. मांग और आपूर्त‍ि की गुत्‍थी का सिरा ही गुम है. - नई फसल आने के बाद भी कीमतें न घटीं. अगस्‍त में गेहूं की क़ीमत करीब 100 रुपये/ क्‍व...

      By RN Chopra
      /
    • Media news channels

      Roll of news channels in TRP era. Same participants, Same hot discussion. No conclusion.Smile on anchors face when participants argue and use rough hot words. What should be standard of T...

      By Satyapal Singh
      /
    • Too much tax for buying home

      To buy a house of 1 cr you need to pay 5% GST,Which is 5L lakhs & stamp duty for registration is around 3 Lakhs. To earn 1cr 8 lakhs you have to pay tax of 38.75 Lakhs (30% + 15% sur...

      By Mukul Puri
      /
    • By Sanjit Jha
      /
    • Indexation removal by Govt is bad for property ownership

      Many have no option but to borrow and buy real estate. A loan serviced for say 20 years, significantly increase the amount paid towards the property. Now, they no longer have recourse to adjust for...

      By Reeta Kumar
      /
Share
Enter your email and mobile number and we will send you the instructions

Note - The email can sometime gets delivered to the spam folder, so the instruction will be send to your mobile as well

All My Circles
Invite to
(Maximum 500 email ids allowed.)