Back

Rise in Cyber Fraud via Fake Customer Care Calls

Severity: High (Score: 62.2)

Sources: Today.Thefinancialexpress.Bd, support.microsoft.com

Published: 2026-05-26 · Updated: 2026-05-26

Keywords: attacks, protect, yourself, scams, through, fake, calls

Severity indicators: ot

Summary

Fraudsters are increasingly impersonating bank officials through fake phone calls, creating panic among customers by claiming their accounts are at risk. These calls often use phone numbers that closely resemble official bank numbers, making it difficult for customers to discern the fraud. Victims are manipulated into providing sensitive information such as account details, PINs, and OTPs, leading to unauthorized access to their accounts. This trend has been reported widely on social media, with many individuals sharing their experiences of financial loss. Awareness and caution are emphasized as critical defenses against these scams. Banks do not request sensitive information via phone, SMS, or social media, and customers are advised to verify suspicious calls through official channels. The issue highlights the growing sophistication of cyber fraud tactics in the digital banking environment. Key Points: • Fraudsters impersonate bank officials using similar phone numbers to deceive customers. • Victims are pressured to provide sensitive banking information under false pretenses. • Banks never ask for sensitive information over phone calls or social media.

Detailed Analysis

**Impact** Individuals using digital banking services are primarily affected, with numerous victims reported globally, including cases documented in Bangladesh. Financial losses occur when fraudsters gain unauthorized access to bank accounts by stealing sensitive information such as account details, card numbers, PINs, and OTPs. The fraud leads to direct monetary theft and undermines trust in banking operations. Social media platforms show widespread complaints, indicating a broad scope of impact on retail banking customers. **Technical Details** The attack vector involves vishing, where fraudsters impersonate bank officials via phone calls using spoofed numbers resembling legitimate bank contact numbers. The TTPs include social engineering and psychological manipulation to create urgency and panic, prompting victims to disclose confidential banking information. No specific malware, CVEs, or infrastructure details were provided. The attack primarily targets the initial reconnaissance and exploitation stages of the kill chain through direct human interaction. **Recommended Response** Customers should be educated to never disclose OTPs, passwords, or PINs over phone calls, SMS, or social media. Banks must promote verification of suspicious calls through official helplines and verified communication channels. Defenders should monitor for reports of spoofed phone numbers and increase public awareness campaigns. Technical controls like call filtering and number verification can be enhanced, but no specific patches or malware detections are applicable based on current information.

Source articles (2)

  • Cyber fraud through fake customer care calls — Today.Thefinancialexpress.Bd · 2026-05-25
    A concerning trend has recently been observed where fraudsters are impersonating bank officials through fake phone calls. This has happened not only to me but also to many other people. In most cases,…
  • Protect Yourself From Online Scams And Attacks — support.microsoft.com · 2026-05-26
    In this article we're going to talk some of the most common cyberattacks and scams, and give you a few tips how you can protect yourself. One of the most common attacks called “phishing” attacks (pron…

Timeline

  • 2026-05-25 — Increase in fake customer care calls reported: Reports indicate a surge in fraudsters impersonating bank officials, leading to significant financial losses for victims.
  • Recent — Victims share experiences on social media: Numerous individuals have taken to social media to report losses incurred from trusting fraudulent calls, highlighting the widespread nature of the issue.
  • Recent — Banks issue warnings against phone scams: Banks have reiterated that they will never request sensitive information via phone, urging customers to remain vigilant.

Related entities

  • Malware (Attack Type)
  • Phishing (Attack Type)
  • Ransomware (Attack Type)
  • gmail.com (Domain)
  • [email protected] (Email)
  • T1566.001 - Spearphishing Attachment (Mitre Attack)
  • T1566.002 - Spearphishing Link (Mitre Attack)
  • T1566 - Phishing (Mitre Attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed