Cybersecurity knowledge is of utmost importance in the digital world we are living in. However, if this knowledge and skills are steered in the wrong direction it will lead to increased cybercrimes. Recently a cybercriminal, who was a class XII pass out and self-taught cybergeek, was arrested from Visakhapatnam in a multi-crore cyber fraud across the country. Around Rs 3 crore to 5 crore money was defrauded from Indian Citizens every day and transferred to Chinese nationals as cryptocurrency as per sources[1].
Online channels like skype, whatsapp, remote access apps were used by the cybercriminal pretending as police and scared the victim by claiming that a parcel victim's name contains drug. With the help of remote access apps, the attacker can capture every action on your phone, for e.g., what you are typing, control any setting, view messages (like OTPs) on your phone and much more. The victims were then coerced into entering their bank account details on the phone. Information is used by the attacker to login to the bank account and make money transfers.
There had been previous instances of cybercrime through remote access apps. Fraudsters ask users to install screen-sharing apps such as Screenshare, Anydesk, Teamviewer and use them to get access to bank credentials. These apps are not malware, but they do grant access to your mobile data to the third party. While remote desktop apps are helpful for IT professionals, there’s very little awareness among smartphone users in the country as to how these apps actually work.
While TeamViewer is a well-known platform for IT professionals, it is considered as one of the most dangerous apps in India. In 2021, the app had become a concern for smartphone users in India as it was used by scammers, pretending to be customer care executives, to read passwords of online banking and UPI apps by forcing victims to download it in the context of providing customer support. There were new updates in the application that were expected to make it difficult for scammers to look inside your phone.
Recommendation
Do not download third-party apps such as Screenshare, Anydesk, Teamviewer to enable/receive payments.
Do not share personal and other sensitive information with untrusted parties
Share sensitive information only when necessary
Don't fall for financial scams like a known contact asking for money over social media and more of likes
Review the app details, number of downloads, user reviews, comments and "ADDITIONAL INFORMATION" section.
Verify app permissions and grant only those which have relevant context for the app's purpose.
Install regular Android updates and patches.
Don't browse un-trusted websites or follow un-trusted links and exercise caution while clicking on the link provided in any unsolicited emails and SMSs.
References
[1] https://timesofindia.indiatimes.com/city/mumbai/cybercrook-making-rs-3-crore-a-day-from-scams-held-in-mumbai/articleshow/99944187.cms?from=mdr
Comments