26 C
Mumbai
Thursday, December 26, 2024

Cyber criminals turn to Voice Phishing and OTP Grabber Services to steal more data

According to a survey from the cybersecurity company CloudSEK, fraudsters are increasingly using voice phishing (also known as “vishing”) and OTP (One-Time Password) grabber services to further their harmful activities.

Vishing entails coercing people into giving up private information over the phone. Vishing assaults use human contact to add a convincing factor, increasing the likelihood that victims will believe the caller. Attackers use advanced methods including interactive voice response (IVR) systems, real voice recordings, or even live calls that seem to be from a reputable business. One-time passwords are typically sent by text messages, and the victims are cunningly tricked into divulging them.

Researchers recently came across an advertisement for OTP bot escalation and SMS senders on SpoofMyAss.com (SMA), which can greatly help attackers carry out large-scale vishing attacks. OTP extraction, worldwide calls in multiple languages, personalisation, anonymous calls, and the development of bot templates are SMA aspects that all strongly suggest vishing attacks.

SMA provides customers with a $1 welcome balance and free user signups. OTP Bot Spoofer and SMS Sender are two of its service categories. The OTP Bot Spoofer is a phone service that can make international calls, get numerous OTPs, get OTPs of any length, and speak in more than 30 languages. In order to send text messages to people around the world, the SMS Sender service uses 269 reliable SMS gateways, including 87 gateways situated in the US and 13 in India.

Such exploitation has serious repercussions. Cybercriminals can carry out a variety of unauthorized online transactions once they get access to their victims’ sensitive accounts and online banking.

Cybersecurity professionals advise people and businesses to exercise caution and use strong security measures to guard against these constantly changing risks, highlighting the need for improved awareness and security processes.

Conclusion:-

A survey by cybersecurity company CloudSEK shows that fraudsters are increasingly using voice phishing and OTP (One-Time Password) grabber services to carry out their harmful activities. Vishing attacks coerce people into giving up private information over the phone, using human contact to add a convincing factor. Advanced methods include interactive voice response systems, real voice recordings, or live calls that seem to be from a reputable business. Researchers discovered an advertisement for OTP bot escalation and SMS senders on SpoofMyAss.com (SMA), which can help attackers carry out large-scale vishing attacks. SMA offers a $1 welcome balance and free user signups, with OTP Bot Spoofer and SMS Sender services. Cybercriminals can carry out unauthorized online transactions once they access victims’ sensitive accounts and online banking.

Nitin Gohil
Nitin Gohil
A Mumbai-based tech professional with a passion for writing about his field: through his columns and blogs, he loves exploring and sharing insights on the latest trends, innovations, and challenges in technology, designing and integrating marketing communication strategies, client management, and analytics. His favourite quote is, "Let's dive into the fascinating world of tech together."

Related Articles

Latest Articles