Paytm is asking users to uninstall apps like TeamViewer and AnyDesk. Recently, it was reported that fraudsters were able to con a Paytm customer based in Mumbai about Rs 1,72,000 by simply asking them to update their KYC details. The fraudster threatened the victim to block his Paytm account if he didn’t update his KYC details.
When the victim tried to upload his KYC details, he was asked to download the TeamViewer app and send one rupee to any Paytm user. Now, courtesy of TeamViewer, the fraudsters were able to access the victim’s Paytm login details. He used the details to transact Rs. 1,72,000 from the victim’s bank account. However, the fraudsters were later nabbed.
How does the fraud work?
Fraudsters get victims to download apps like AnyDesk on one pretext or the other- “Your accounts needs to be KYCed or your account will be blocked, etc.” Hackers get remote access to the mobile through a nine-digit code generated on the victim’s device. Once a fraudsters inserts this app code on his device, he will ask the victim to grant certain permissions, which are similar to what is required while using other apps.
|PAYTM WE WILL HOLD YOUR PAYTM AMOUNT AFTER SOMETIME COMPLETE YOUR PAYTM KYC PAYTM OFFICE PH 62XX561X42|
Sample message floated by fraudster
This enables the imposter to gain access to the victim’s device and carry out transactions through any mobile banking app or payment-related apps, including UPI or wallets.
What can you do to protect yourself?
- Do not entertain any such calls or messages, which ask you to download any app, share your code or OTP or threaten you to act in a particular manner.
- Always verify the apps that you are downloading and review the permissions that are being granted to the app. By getting to know more about the apps you are using and actions they can perform with correct set of permissions you can protect yourself and your loved ones from being victims to such fraudulent activities.
- Spread the awareness about this fraud with your friends and families as awareness is the best protection.
- Do not forward any unsolicited SMS received on a request of so-called representative from a bank or technology firm.
Stay aware, stay safe. Happy Banking.