Bank of Russia for five months of the year recorded approximately 165 thousand attempted fraud using electronic means of payment in the amount of about 1.6 billion rubles this was announced by the head of the regulator Elvira Nabiullina.
compared with last year, the number and volume of illicit transactions has decreased, said the head of the Bank of Russia. On average, individuals lose due to fraudulent activity about 10 thousand rubles. If the client is a legal entity, the size of the transaction without the customer’s consent about 152 thousand rubles.
About half of these operations occur in the procurement of goods and services over the Internet.
Another third is transactions associated with online banking. About 10% of fraudulent transactions carried out using ATMs and POS-terminals.
last year, the volume of fraudulent transactions amounted to 6.4 billion rubles, the number of such operations is 576 thousand
She stressed that the most popular method, which is used by the cyber fraudsters, is still social engineering, when people give their personal details to fraudsters claiming to be Bank employees. Therefore, the share return of such funds are small.
Internet scams increasingly using proven psychological techniques of social engineering against the background of alarming news agenda: for users affected by Internet criminals, offering to obtain damages, but instead write off the money and steal the card data.
Criminals operating under the guise of non-existent organizations — the International service of “United center refunds”, “National lottery of the Commonwealth”, the “Center of financial protection”, etc. in Addition to the standard of attracting victims via mail, in instant messengers or social networks, scammers order use the fake media, which posted an interview of those who claim to have already received a refund.
Researchers at Check Point reported what a massive shift in work from home motivates hackers to steal via wire transfers. As all use e-mail for their work, hackers use fraud in corporate correspondence, or as it is called, BEC (Business Email Compromise) Scam.
In the case of BEC attacks, attackers also use the tactics of social engineering to trick unsuspecting employees and managers. They mimic the role of the General Director or any other Director authorized to make or request electronic transfers. In addition, the fraudsters are thoroughly investigating the behavior and long are watching their potential victims and their companies, tracking all the upcoming transaction.