Martin Lee @ Sg
Sharing is Caring!

Beware of Fake Online Banking Sites

Our three local banks – DBS, UOB and OCBC have been the target of scammers/phishers recently.

Computer trojan programs installed into infected computers can trick users into revealing their internet banking passwords. 

The login page looks very similar to the actual one, except are a minor difference. 

Here’s how the fake DBS login page looks like:


Notice that you are prompted to enter your token pin on the first login page. The request for the token pin is usually done on the second page.

If you observe the url of the fake site, it is identical to the real one. Even users who bookmark the normal login page can be taken to a fake site if your computer is infected with the trojan.

Do update your anti-virus software carefully and if you detect anything suspicious, do not hesitate to contact your bank.

Leave a Comment:

Notify me of followup comments via e-mail. You can also subscribe without commenting.

5 comments
Jasmin says 10 years ago

Hi lioninvestor,
The token generates a number only known to the person holding it at that moment. Even if the hacker got the username and password, the 3rd “blank” given by the token is hard to fill. Is this sufficient to prevent hacking?

Have you any info on other fake banking websites such as OCBC or UOB?

Thanks.

Reply
    lioninvestor says 10 years ago

    Hi Jasmin,

    That is the purpose of the fake site. To bluff the user into entering the token as well.

    If you noticed, DBS now requires you to enter the token again when you are doing any fund transfer. So even if the scammers do manage to login, I doubt they can do the fund transfer.

    No, I don’t but according to the news, the fake page also requires user to give away the token on the first page.

    Reply
Jasmin says 10 years ago

On a first glance, I did not know the difference between the real and fake login page!
How terrible and careless am I !

Reply
    lioninvestor says 10 years ago

    Hi Jasmin,

    If not for the warning, I think most people would have be taken in by the fake website..

    Reply
Ee Min says 10 years ago

aiyo.. scammers are everywhere, plus virtual space. a good aV is eset NOD32. few pp hear of it, but my personal exp w/ it has shown to be very reliable agt flushing out virus/trojans/phishers etc.

check out review @ http://www.av-comparatives.org 🙂

Reply
Add Your Reply

Notify me of followup comments via e-mail. You can also subscribe without commenting.