Jakarta, CNBC Indonesia – There are many kinds of fraud methods. One of the platforms most often used by fraudsters to trap their victims is the WhatsApp instant messaging application.
One of the most common modes of fraud via the WhatsApp application is sending random APK files to other people's cell phone numbers. The goal is for the chat recipient to click and download the sent file, then unknowingly install a malicious application on their cellphone. If this application is installed, fraudsters can hijack someone's data or financial account.
Here are the 7 most common fraud modes on WhatsApp
1. Wedding Invitation File
This fraud has become a topic of much discussion because many WhatsApp users have received it. They were sent an apk file by an unknown person, namely a wedding invitation.
The file or application with the title Digital Wedding Invitation Letter is 6.6 MB in size. Fraudsters invite their victims to open files to check the authenticity of the files inside.
2. Fake traffic ticket
A number of netizens also found themselves being sent fake traffic tickets. There is an apk file entitled 'Surat Tilang-1.0 apk' in the chat.
“WARNING! Be careful of fraud using this method of sending a ticket via WhatsApp. Never click/download files with the extension “.apk” from unknown people on your gadget,” tweeted the account @MurtadhaOne1.
3. Courier mode
This fraud was reported by an Instagram account that revealed a Telegram chat with someone claiming to be from J&T. The fraudster sends an attachment with a file name in the form of an apk with the words VIEW Package Photos'.
Those who download the file will lose money deposited in the bank. Various data, including financial, will be taken by the perpetrators.
4. Check out MyTelkomsel
There have also been other scams on WhatsApp using the name MyTelkomsel. This is an application belonging to the operator Telkomsel.
The victim will be asked to click on the apk file that was sent. Next, they will be asked to provide access permission to a number of applications, including photos, videos, SMS, and access to digital banking or fintech service accounts.
5. Announcement from the Bank
Another scam is making announcements that appear to come from the bank. It contains unreasonable changes in transaction and transfer rates.
WhatsApp users will be given a link to fill out the form. This link will result in their data being stolen by the perpetrators.
6. VCS Invitation
Another method is to make video call sex (VCS) from unknown numbers. They are said to be blackmailing their victims.
Contacted some time ago, cyber security expert Alfons Tanujaya said this method exploits a person's ignorance about technology and makes it a threat. “This is in principle blackmail that takes advantage of someone's ignorance or security about technology,” he said.
“If you are in doubt and are being blackmailed, contact a friend who understands and ask for help to deal with threats that we don't understand, don't just follow the threats,” he explained.
7. Drain the account using the QR code
Another method that is often used is quishing, which is a combination of QR codes and phishing. The perpetrator will lure the victim to obtain their personal information and details.
When scanning a QR Code, the victim will usually be taken to a certain site. Apart from being able to show regular text messages, the site can track the list of applications to the victim's map address.
Perpetrators take advantage of this ability to direct potential victims to fake websites. They will make it difficult for people to detect the sites they want to visit before opening the web.
Wired said that quishing perpetrators will trick someone into downloading something onto the device. These downloads will harm the victim's device.
The next step, victims will be asked to enter some login credentials. This information will be obtained by the perpetrator of the quishing.
This crime is increasingly massive because QR codes can be created easily and by anyone. One can make it even without any special skills.
[Gambas:Video CNBC]
Next Article
New Fraud Style on HP 2024, Account Drained Using QR Code
(hsy/hsy)