Cybercriminals are trying to woo Indian users to disclose important personal information. On Monday, a new report warned that suspicious messages prompted users to submit an application for disbursement of income tax refund. This is being done with a link that looks like an income tax e-filing web page to direct users.
Targeted banks include State Bank of India, ICICI, HDFC, Axis Bank and Punjab National Bank (PNB). This was revealed in an investigation conducted by the New Delhi-based think tank Cyberpiece Foundation in association with cyber security company Autobot Infosec.
What was said in the report
The report states that the suspected links belong to the United States and France. It has also been said that this campaign is collecting personal as well as banking information from users and that this type of trap can cause huge financial loss to the users. The shared link with the SMS has no domain name. And it is not linked with the Government of India.
This is how the whole game is happening
The report states that all the IP addresses associated with the campaign belong to some third party (third party) dedicated cloud hosting providers. The entire campaign uses the normal or plan HTTP protocol instead of secure HTTP. This means that anyone on the network or the Internet can intercept traffic and obtain confidential information in simple text to misuse against the victim.
read this also: Bank Strike: These services were affected on the first day in the two-day strike, the most effect was seen here