Read on TwitterCC @DCP_CCC_Delhi
My dad got an SMS (in all CAPITAL letters) that mentioned "your @Paytm wallet will be blocked unless you re-activate the KYC". It had a phone number to call to do the process.
Note: Sending all capitals and just a mobile number is the first odd thing!
https://abs.twimg.com/emoji/v2/... draggable="false" alt="⚠️" title="Warning sign" aria-label="Emoji: Warning sign">
Note: Sending all capitals and just a mobile number is the first odd thing!
When my dad called that number, they explained that you& #39;ll need to install an app, Teamviewer QuickSupport, to do the KYC process. My dad installed the app and gave screen-share access to them.
Then they said he& #39;ll need to do 2 transactions of amount 1-10Rs. in order to verify.
Then they said he& #39;ll need to do 2 transactions of amount 1-10Rs. in order to verify.
Also, they asked my dad to put in his password in a input field. Using a virtual keypad, my dad put his password which the frauds saw through TeamViewer screen share.
My dad did the first transaction using UPI of a bank account.
Note: My dad typed the UPI pin on his mobile virtual keypad, which the frauds saw too.https://abs.twimg.com/emoji/v2/... draggable="false" alt="⚠️" title="Warning sign" aria-label="Emoji: Warning sign">
This is where I heard the conversation and jumped in.
Note: My dad typed the UPI pin on his mobile virtual keypad, which the frauds saw too.
This is where I heard the conversation and jumped in.
I immediately turned off TeamViewer. And asked them what is this new process of KYC? The fraud explained that now you don& #39;t need to be face-to-face and can do the KYC through phone. He also asked me to reconnect TeamViewer.
I told him to ask me whatever details he needs. But why need screenshare? He vaguely explained, "Sir, we need this app to verify your transactions and it doesn& #39;t capture any information from you"!!!
Over arguing more, he said I can talk to a senior person if I don& #39;t trust them.
Over arguing more, he said I can talk to a senior person if I don& #39;t trust them.
I asked the same question to his senior (fraud) person. He explained the same thing (in a more sophisticated manner). And then asked me "Sir, do you want to keep your wallet activated or not?".
All this while, I was changing my dad& #39;s payTM password & uninstalling TeamViewer.
All this while, I was changing my dad& #39;s payTM password & uninstalling TeamViewer.
I told him that let it be. I don& #39;t want to activate my account and dropped the call.
Immediately after, I stopped all UPI transactions on my dad& #39;s bank account. A few minutes later, my dad also received some login OTPs from payTM- meaning those frauds were trying to break in.
Immediately after, I stopped all UPI transactions on my dad& #39;s bank account. A few minutes later, my dad also received some login OTPs from payTM- meaning those frauds were trying to break in.
Later, I also read on @Paytm website (at the end of a page https://www.paytmbank.com/blog/2019/08/all-you-need-to-know-about-expiry-of-min-kyc/)">https://www.paytmbank.com/blog/2019... that "beware of fraud calls that ask you to install apps like anyTime or TeamViewer" https://abs.twimg.com/emoji/v2/... draggable="false" alt="🤦🏽♂️" title="Man facepalming (medium skin tone)" aria-label="Emoji: Man facepalming (medium skin tone)">
I wish it was communicated more prominently, in bold at the top the page and through other mediums.
I wish it was communicated more prominently, in bold at the top the page and through other mediums.
- Legitimate SMS won& #39;t give a mobile number to call back.
- The SMS won& #39;t ever be completely in CAPITAL LETTERS!
- DO NOT install apps like TeamViewer on being asked
- Never type your password where it& #39;s visible.
- Stay alert!
This is the SMS my dad received initially:
