Skip Navigation Links
31 Jan 2022  (520 Views) 
[x]
Police


How to outfox the scammers
I have a suggest to outfox the scammers to steal from customer bank accounts.

First, we have to understand the mode of operation.

The scammer sends a SMS to the customer to alarm the customer, e.g. that the account will be suspended or a transfer has been made. The SMS ask the customer to click on a link to reactivate the account or stop the transfer.

The link goes to a fake website. When the customer enters the login credentials (i.e bank account ID and password), the scammer uses the data to enter to the actual website of the bank. The bank sends the OTP to the customer. 

The customer enters the OTP in the fake website. The scammer uses it to enter into the bank's website. 

The scammer has obtained access to the customer's bank account. He can create a payee, make a transfer, increase the transfer limit, etc.

The scammer probably has a large team of accomplices to carry out the operation.

This is how the Police can outfox the scammer.

The Police can engage a large team to carry out a counter operation. 

Many of the customers who receive the scam message know that it is a scam. Instead of ignoring the message, the customer is advised to sends the SMS to the Police website. This website is publicized widely to bank customers. 

The Police gets its team to access the fake website and flood it with fake data of the login credentials and OTP. The Police may be able to use a bot to flood the fake website with the fake data.

Perhaps the scammer can get around this counter operation by creating many fake websites. The Police should be ready to handle these multiple websites.

The Police will have a record of the fake websites. They can follow up the trail to identify the owners of these fake websites. It will take some time, but eventually the scammer and their accomplices will be caught.

This can be a contest of wits between the scammer and the Police. Who will win?

Tan Kin Lian

 


Add Comment

While it is a good proposal but we have to realize that there may be two categories of scammers viz ones from outside the system and likely another from within the system. The ones from outside the system may be easier than the ones operating from within our systems who may latch in to any attempt that targets their location or identities and may have developed contingency plans to escape any police dragnet.

Firros  01 Feb 2022  

Most likely an off duty police officer would also receive such scam msg, but just brushed it off, it the same for litters , idle engines etc

  01 Feb 2022  

The websites used in the attack are usually genuine ones hacked and controlled by the scammers, so it’s quite hard to find out who owns them

VC  31 Jan 2022  

You've described a DOS attack. I'm not sure what laws enable or disable the spore govt from doing this. The info com authority will need to have clear guidelines and regulations for law enforcement. Also beyong DOS the govt should go after the source of the attack and prosecute with the help of foreign governments if it is located overseas. Again all this takes political will. I don't see the spore govt being proactive on this. They'll rather just push it to the FI and consumers.

Daniel Yong  31 Jan 2022  

PAP govt does not have the interest or determination to fight the scammers. Ah Loong is very old and tired.

Peter Ong  31 Jan 2022  

Add a comment

Email
Comment


QR Code