Reports from law enforcement agencies reveal the use of illegal cellular sites, known as International Mobile Subscriber Identity (IMSI) catchers, to mimic trusted brands like BDO.
These spoofed messages often claim fake prizes, free gifts, or account issues, urging recipients to click on malicious links, the bank said in a statement.
Once clicked, these links direct victims to fake websites designed to steal their account details, including usernames, passwords, and one-time PINs (OTPs). Scammers then exploit these credentials to access bank accounts and steal money.
BDO, in the statement, emphasized its policy of never sending messages with clickable links and provided critical safety tips to avoid falling prey to SMS hijacking:
Never click on links: Any message containing a link claiming to be from BDO is a scam.
Avoid sharing personal information via SMS: Sensitive details should never be sent through text.
Be cautious of unsolicited offers: Messages promising deals too good to be true are often fraudulent.
BDO also encourages clients to report suspicious messages by forwarding them to 22567888.
By staying vigilant and informed, the public can help combat this growing cybercrime, it said. -–Ed: CSN
