According to the VTB press service, fraudsters have recently started using a new method to hack into accounts on state online services. The scammers are calling victims and pretending to be state employees, informing them that they have a registered letter waiting for them. They then offer to send a notification to the victim’s email or physical address. In order to proceed with the application, the attackers request the victim to provide the verification code sent to their phone with the message “Access Code Code” for the account.
If the victim becomes suspicious and ends the call, they may receive another call from the same supposed state institution. This time, the scammers claim that the initial call was a scam and that the victim’s account has already been compromised. Under the guise of protecting the victim’s information, they request the code from the SMS once again. VTB commented, “At this point, the individual, under the psychological pressure of the unknown and believing them completely, falls victim to further deceit.”
VTB revealed that approximately 30% of all attacks involve such fraudulent calls, with this particular scheme being more prevalent during tax season. They have advised users against disclosing personal information and SMS codes to strangers, recommending the use of caller ID to verify the authenticity of calls.
In the first eight months of 2024, scammers have commonly employed three main schemes, according to VTB. These involve impersonating State Services employees, Mosenergo representatives, or potential buyers in response to online advertisements. Victims are coerced into installing remote access programs on their accounts through these tactics.