BDO Unibank Warned its Customers to Remain Beware from New Phishing Scheme

Philippines' largest bank, named BDO Unibank, issued a warning for its customers on Tuesday (i.e. on 30 October, 2018) regarding the latest phishing scheme that could fool the users. This new phishing scheme doesn't require the users to input any information. In fact, BDO said that the data theft or phishing link is hidden inside email photo attachment's "Verify Now" button.

BDO Unibank earlier posted a warning on its official page of Facebook on October 30, 2018, which includes the photograph of the email message that is being sent to the BDO customers.

The email, complete with the BDO letterhead and bank's white and blue color scheme, looks legitimate. Thus, it is impossible to get detected by the untrained eyes. The email tells the customer that their savings account has been hacked and is kept on hold temporarily. The phishing email also asks the customers to verify the account.

BDO however, warned the customers that they should not follow these kinds of instructions immediately. The warning issued from the bank says: "received any suspicious emails lately? DO NOT CLICK 'VERIFY NOW' LINK".

BDO says that because of the technological advancements the data theft have become very easy. And this is the kind of attack where the victims don't even have to enter information in order to get their data stolen; they are tricked in just one single click. BDO said that, "clicking on malicious links can activate malware and give fraudsters direct access to your data".

BDO also said that it never asks for any kind of sensitive information such as One-Time-Password (OTP), Card Verification Code (CVC), Personal Identification Number (PIN), or passwords of their customers.

The bank then instructed their customers to notify them immediately, in case they encounter any such phishing schemes. BDO Unibank has provided their customers an email id - reportphish@bdo.com.ph - to report immediately about such emails by forwarding the suspicious email that they receive. The customers can also report such emails by messaging BDO on their Facebook page, or sharing their experience on Facebook page using the hashtag #BDOAntiFraud. The BDO also advised the to delete such emails immediately after forwarding it to the bank.

» SPAMfighter News - 11/14/2018