Here’s how scammers can use the pop call feature to trick customers by changing text and pretending to be the other party.
Report from Nextren Journalist, Zihan Fajrin.
Nextren.com – Vaksincom as a technology security company discusses cases of breach of customer accounts.
In his discussion, he associated with features Pop Call.
Pop Call itself as there is a call in the form pop up which is sometimes present in several providers.
Pop Call said to use the blacklist method.
Also Read: Jenius account hacked into Rp. 50 million, this is what happened according to security experts
This method works for words or sentences that are often used to commit fraud that are blocked and cannot be used because they are often used when the fraud is taking place.
The blacklist method used to block spam emails has many weaknesses and is easy to bypass.
Scammers only need to find words that are not on the blacklist and use those words.
So that the pop up sentence appears and is mistaken for the caller ID by the recipient of the phone.
Also Read: TapCash Card Users Can Now Top Up Their Balance With the Jenius App
The method that fraudsters usually use is to outsmart blacklists such as replacing the lowercase l or L with the number 1 so that Ca11 will appear or add a separator or space.
Therefore, the blacklist blocking method is recommended not to be used and should use the whitelist method.
The whitelist method is a type of Pop Call that requires manual approval for each new Pop Call text that you want to display.
When Pop Call has been banned, the Pop Call service will be blocked.
Also Read: The Fraud Mode of OTP Theft is Increasing, Here Are 5 Tips to Avoid It
However, according to Vaksincom, this clearly will not be effective in blocking fraudulent attempts to use Pop Call because the fraudsters just need to buy a lot of prepaid numbers and at the expense of several prepaid numbers.
Fraudsters will get another list of texts that are not blocked by Pop Call and can be used to commit fraud.
This gap in the abuse of the Pop Call service is put to good use by fraudsters to impersonate bank officers.
After disguising himself, scammers will usually use techniques to scare their victims with an account that will be blocked if they don’t change their passwords and pretend to ask for a PIN to help customers.
Also Read: Here are 6 characteristics of stupid online investment according to the OJK, don’t be fooled!
But the real goal is to get a transaction authorization PIN to drain customer funds.
This can happen if the protection of mobile banking financial transactions only relies on a PIN.
This security system can be used repeatedly to authorize fund transfer transactions.
According to Vaksincom, the Pop Call feature is one that appears on the victim’s smartphone and the problem is currently being investigated.
Also Read: Lots of online pawn item auction scams, here’s how to deal with it
Featured Video
– PROMOTED CONTENT
Pop Call