Bank of Ireland are warning customers about a "new wave" of smishing texts.
Fraudsters are using people's card details to set up Apple Pay or Google Pay. The bank says there has been a 50 per cent spike of these smishing cases over the past month.
The cunning criminals send fake text messages appearing to be from delivery services including An Post or even Government agencies like the HSE and Revenue. The text can appear to be from An Post claiming to have a parcel or can even be a close Covid-19 contact text from fraudsters pretending to be the HSE.
Read more: Ireland scam alert as fraudsters impersonate An Post banking
When customers click the link in the text, they are directed to fake websites and asked for their card or online banking details.
These details are used to set up Apple Pay or Google Pay on the customer’s card or to set up the customer’s online banking on a new device. A customer is sent genuine One Time Passcode sent by Bank of Ireland to confirm the set-up and if they give this away the fraudsters can access their account.
When customers have stopped part of the way through the scam they may then get a phone call claiming to be from Bank of Ireland. The calls will often look like they’re coming from real Bank of Ireland numbers as the fraudster can change the number that appears in your display.
Head of Fraud at Bank of Ireland, Edel McDermott said that the new wave of fraudulent texts is a real cause for concern.
She said: "“Fraudsters tend to use a range of tactics that have been the subject of regular warnings for some time. When a new variation on a familiar theme crops up, this is a cause for real concern, and we are warning customers to be extra vigilant.
Read more: 'I almost fell for a cunning scam after trying to sell golf clubs on DoneDeal'
“Text messages appearing to be from third parties like delivery companies or Government agencies should be treated with caution and verified accordingly. Following fraudulent links in these texts is leading to customers disclosing card details, and then having Apple or Google Pay set up on their card, generating a genuine One-Time Passcode from their bank.
"When this Passcode is then disclosed, this allows fraudsters full access to the customers’ account. Customers should never share this Passcode with anyone, even if they say they are from Bank of Ireland.”
The bank have issued the following advice to help customers avoid being scammed.
- Do not click on links or respond to any SMS text messages which are designed to appear as if sent by the bank or other businesses and service providers.
- Remember that Bank of Ireland will never send you a text with a link to a website that asks you for your online banking login details or any One-Time Passcodes that we’ve sent to you.
- Do not share your One-Time Passcode to set up Apple/Google Pay on your card WITH ANYONE even if you the person advises they are from Bank of Ireland
- If you get a suspicious text, please email a screenshot of the text to 365Security@boi.com and then delete the text.
- If you think you may have given away any of your banking details, please call our 24/7 Freephone line 1800 946 764 immediately.
Remember, Bank of Ireland will never:
- Send you a text or email with a link directly to the login page of our online banking channels to confirm banking details or ask you to update their banking details.
- Ask you to click a link in an email with an urgent warning about suspicious activity on your account.
- Ask you to transfer money out of your account to protect you from fraud.
- Ask you to tell us any ‘One-Time Password’ or code that you have received from us by text.
READ NEXT:
- Heineken warning over WhatsApp Father’s Day scam
Young woman sends urgent warning after phone scammers impersonate gardai
- Gardai issue urgent warning about 'FluBot' smartphone virus
Gardai issue warning over new card scam after 'significant' sums of money stolen
Sign up to the Dublin Live Newsletter to get all the latest Dublin news straight to your inbox