SlideShare ist ein Scribd-Unternehmen logo

Sms bank eng

Positive Hack Days
Positive Hack Days
Wirtschaft & FinanzenBusiness
1 von 15
SMS Banking Fraud Denis Gorchakov, Olga Kochetova Positive Research Center Positive Hack Days III
What is SMS banking? ― checking your balance and receiving information about performed transactions ― performing basic operations: • Prepaid cellphone refill • Payment for various services: Internet, TV, utility bills • Funds transfer • Immediate card blocking if lost 3
A common issue is a card linked to another subscriber's number 4
From: Vasily To: SMS Bank SEND 100 89161234567 From: My Bank RUR 100 have been added to your phone account No. 89161234567. From: My Bank Please enter code 974365 to confirm the payment From: Vasily To: SMS Bank SEND 9999 89161234567 From: My Bank Please specify the last 4 digits of your card to confirm the payment From: Vasily To: SMS Bank SEND 9999 89161234567 0890 From: My Bank RUR 9,999 have been added to your phone account No. 89161234567. Lack of transaction confirmation or confirmation insecurity 5
Data collection by a malicious user ― Accidental (link to another subscriber's number): • Minimum harm — viewing financial data of another person • Maximum harm — managing another person's bank account http://pravo.ru/news/view/83503/ • Consequences — criminal and administrative responsibility ― For purpose: • Wastebaskets next to terminals and ATMs in public places • Cash register tapes available for shop assistants • Employees of communications service providers http://www.securitylab.ru/news/377745.php 6
― Only a phone number is available: • A payment to a phone number (own or confirmed) Banks are already anxious http://www.finsb.ru/map/novosti/view/?tx_ttnews[tt_news]=1428 • Social engineering A common scheme with false payment to another person's number, when a payment message from an operator/payment service is imitated • Pranking Card blocking In addition: ― OTP attacks (long expiration period) ― Insecure verification methods (by the part of a card number) Exploitation 7
$$$ From: Vasily's number To: SMS Bank SEND 500 89261234567 Malware user Semyon: From: Mobile network operator Your phone account has been refilled with RUR 500. From: Semyon To: Vasily Bro, a wrong number! Be a pal, refund this amount to me! From: Semyon Bro, a wrong number! Be a pal, refund this amount to me! SMS gateway From: SMS Bank Dear Vasily, 500 rubles have been deducted from your credit card for mobile phone services. REAL REAL From: SMS Bank Invalid withdrawal from your card has been canceled. The funds will be redeemed to the account in due time. FAKE From: SMS Bank number To: Vasily Invalid withdrawal from your card has been canceled. The funds will be redeemed to the account in due time. SMS gateway Social engineering 8
$$$ From: Vasily's number To: SMS Bank SEND 3000 89261234567 Malware user Semyon: From: Mobile network operator Your phone account has been refilled with RUR 3,000. SMS gateway From: SMS Bank Dear Vasily, 3,000 rubles have been deducted from your credit card for mobile phone services. REAL REAL From: Bank security service A wrong transaction with your card has been registered. For immediate cancellation, please send the cancellation command to security service number 9900: CANCEL 79161235476 FAKE From: Bank security service To: Vasily A wrong transaction with your card has been registered. For immediate cancellation, please send the cancellation command to security service number 9900: CANCEL 79161235476 SMS gateway Digital money SMS aggregator Social engineering v.2 9
From: Vasily's number To: SMS Bank SEND CUTEKITTENS 99999 Malware user Semyon: From: SMS Bank Dear Vasily, thank you very much! Your donation to the kittens support fund in the amount of 99,999 rubles has been received! Thank you! … of course other things can happen because malicious users are already aware of this fact —such information is publicly available: 1. http://www.banki.ru/forum/index.php?PAGE_NAME=read&FID=34&TID=154788 2. http://www.banki.ru/forum/index.php?PAGE_NAME=read&FID=34&TID=154785 SMS gateway Disorderly conduct 10
Verification ― Without verification (only by sender's number) —easy and convenient, but insecure ― Verification by the last 4 digits of a card — insecure ― OTP verification — better, but some security issues exist ― Good banks — except for ОТР, IMSI* verification, IMSI linking to an account number * IMSI means International Mobile Subscriber Identity linked to each user of mobile communication of the GSM, UMTS or CDMA standard.The device of a subscriber transfers IMSI for identification at the moment of registration in a network. The number is connected to the user's SIM card. 11
From: Vasily's number To: SMS Bank SEND CUTEKITTENS 99999 0890 Malware user Semyon: SMS gateway Sender's IMSI verification (linked to the account) DENIALI. II. From: SMS Bank Confirm the transaction by replying to the message with code 754387. DENIAL WTF? What is right? 12
Other vectors? • GSM alarm systems with default passwords • “Smart” houses — targeted attacks How can users protect themselves? • Never disable OTP and notifications about card operations • Attentiveness and vigilance • Using a client-bank application for smartphones 13
Thank you for attention! Denis Gorchakov, Olga Kochetova dgorchakov@ptsecurity.ru, okochetova@ptsecurity.ru Positive Research Center
Sms bank eng

Empfohlen

Denis Gorchakov, Olga Kochetova. SMS Banking Fraud.
Denis Gorchakov, Olga Kochetova. SMS Banking Fraud.Denis Gorchakov, Olga Kochetova. SMS Banking Fraud.
Denis Gorchakov, Olga Kochetova. SMS Banking Fraud.
Positive Hack Days
 
200K LETTER OF CONFIRM MT799 PAYMENT 2
200K LETTER OF CONFIRM MT799 PAYMENT 2200K LETTER OF CONFIRM MT799 PAYMENT 2
200K LETTER OF CONFIRM MT799 PAYMENT 2
MUSA Sir DR IR FEROZ
 
Smard cardform
Smard cardformSmard cardform
Smard cardform
wmy tranfornation consultancy & resources
 
MSDMB--MT103_OF_100M_(1)
MSDMB--MT103_OF_100M_(1)MSDMB--MT103_OF_100M_(1)
MSDMB--MT103_OF_100M_(1)
MUSA Sir DR IR FEROZ
 
BUSINESS LOAN CONTRACT MOU
BUSINESS LOAN CONTRACT MOUBUSINESS LOAN CONTRACT MOU
BUSINESS LOAN CONTRACT MOU
MUSA Sir DR IR FEROZ
 
760 swift confirmationUSCPB
760 swift confirmationUSCPB760 swift confirmationUSCPB
760 swift confirmationUSCPB
Michael Sheffield
 
Share2 win member policy agreement
Share2 win member policy agreementShare2 win member policy agreement
Share2 win member policy agreement
Orville Seroy
 
INVESTOR INFORMATION SUMMARY
INVESTOR INFORMATION SUMMARYINVESTOR INFORMATION SUMMARY
INVESTOR INFORMATION SUMMARY
MUSA Sir DR IR FEROZ
 

Empfohlen

Denis Gorchakov, Olga Kochetova. SMS Banking Fraud.
Denis Gorchakov, Olga Kochetova. SMS Banking Fraud.Denis Gorchakov, Olga Kochetova. SMS Banking Fraud.
Denis Gorchakov, Olga Kochetova. SMS Banking Fraud.
Positive Hack Days
 
200K LETTER OF CONFIRM MT799 PAYMENT 2
200K LETTER OF CONFIRM MT799 PAYMENT 2200K LETTER OF CONFIRM MT799 PAYMENT 2
200K LETTER OF CONFIRM MT799 PAYMENT 2
MUSA Sir DR IR FEROZ
 
Smard cardform
Smard cardformSmard cardform
Smard cardform
wmy tranfornation consultancy & resources
 
MSDMB--MT103_OF_100M_(1)
MSDMB--MT103_OF_100M_(1)MSDMB--MT103_OF_100M_(1)
MSDMB--MT103_OF_100M_(1)
MUSA Sir DR IR FEROZ
 
BUSINESS LOAN CONTRACT MOU
BUSINESS LOAN CONTRACT MOUBUSINESS LOAN CONTRACT MOU
BUSINESS LOAN CONTRACT MOU
MUSA Sir DR IR FEROZ
 
760 swift confirmationUSCPB
760 swift confirmationUSCPB760 swift confirmationUSCPB
760 swift confirmationUSCPB
Michael Sheffield
 
Share2 win member policy agreement
Share2 win member policy agreementShare2 win member policy agreement
Share2 win member policy agreement
Orville Seroy
 
INVESTOR INFORMATION SUMMARY
INVESTOR INFORMATION SUMMARYINVESTOR INFORMATION SUMMARY
INVESTOR INFORMATION SUMMARY
MUSA Sir DR IR FEROZ
 
Criteria computer loan (1)
Criteria computer loan (1)Criteria computer loan (1)
Criteria computer loan (1)
laricecampbell
 
Sms booking 139
Sms booking 139Sms booking 139
Sms booking 139
Alstom Bharat Forge Power Limited
 
Common driving offences and their punishments
Common driving offences and their punishmentsCommon driving offences and their punishments
Common driving offences and their punishments
vendelajar
 
Internet gambling in serbia
Internet gambling in serbiaInternet gambling in serbia
Internet gambling in serbia
Vladimir Djukanovic
 
Gujrat HC on custodial torture.pdf
Gujrat HC on custodial torture.pdfGujrat HC on custodial torture.pdf
Gujrat HC on custodial torture.pdf
sabrangsabrang
 
Denuncia contra Miguel Roure
Denuncia contra Miguel Roure Denuncia contra Miguel Roure
Denuncia contra Miguel Roure
carlos garcia garcia
 
Monopod
MonopodMonopod
Monopod
Zalina Ali
 
Monkeetech Security Swipe System©
Monkeetech Security Swipe System©Monkeetech Security Swipe System©
Monkeetech Security Swipe System©
MonkeeTech LLC
 
Telangana hc order june 17 police brutality covid
Telangana hc order june 17 police brutality covidTelangana hc order june 17 police brutality covid
Telangana hc order june 17 police brutality covid
sabrangsabrang
 
Weekly news
Weekly news Weekly news
Weekly news
rayman0209
 
Cyber crimes
Cyber crimes Cyber crimes
Cyber crimes
Neha Borkar
 
Top reason why your sms is failing
Top reason why your sms is failingTop reason why your sms is failing
Top reason why your sms is failing
2sms, LLC
 
2 fa registration-update
2 fa registration-update2 fa registration-update
2 fa registration-update
Hai Nguyen
 
SMS banking fraud
SMS banking fraudSMS banking fraud
SMS banking fraud
Denis Gorchakov
 
Bank frauds
Bank fraudsBank frauds
Bank frauds
jagannath ojha
 
Fraud in USSD
Fraud in USSD Fraud in USSD
Fraud in USSD
Oluwatobi Olowu
 
Credit card frauds
Credit card frauds Credit card frauds
Credit card frauds
Rushikesh Maddalwar
 
Credit card ppt
Credit card pptCredit card ppt
Credit card ppt
Anadi Anant
 
Unit 2- Economic Offences Types of Frauds
Unit 2- Economic Offences Types of FraudsUnit 2- Economic Offences Types of Frauds
Unit 2- Economic Offences Types of Frauds
Kumarasamy Dr.PK
 
Id Theft
Id TheftId Theft
Id Theft
mojo_5
 
credit card theft
credit card theftcredit card theft
credit card theft
william raymond
 
Fraud seminar for charities
Fraud seminar for charitiesFraud seminar for charities
Fraud seminar for charities
Blake Morgan LLP
 

Weitere ähnliche Inhalte

Was ist angesagt?

2 fa registration-update
2 fa registration-update2 fa registration-update
2 fa registration-update
Hai Nguyen
 

Was ist angesagt? (13)

Criteria computer loan (1)
Criteria computer loan (1)Criteria computer loan (1)
Criteria computer loan (1)
 
Sms booking 139
Sms booking 139Sms booking 139
Sms booking 139
 
Common driving offences and their punishments
Common driving offences and their punishmentsCommon driving offences and their punishments
Common driving offences and their punishments
 
Internet gambling in serbia
Internet gambling in serbiaInternet gambling in serbia
Internet gambling in serbia
 
Gujrat HC on custodial torture.pdf
Gujrat HC on custodial torture.pdfGujrat HC on custodial torture.pdf
Gujrat HC on custodial torture.pdf
 
Denuncia contra Miguel Roure
Denuncia contra Miguel Roure Denuncia contra Miguel Roure
Denuncia contra Miguel Roure
 
Monopod
MonopodMonopod
Monopod
 
Monkeetech Security Swipe System©
Monkeetech Security Swipe System©Monkeetech Security Swipe System©
Monkeetech Security Swipe System©
 
Telangana hc order june 17 police brutality covid
Telangana hc order june 17 police brutality covidTelangana hc order june 17 police brutality covid
Telangana hc order june 17 police brutality covid
 
Weekly news
Weekly news Weekly news
Weekly news
 
Cyber crimes
Cyber crimes Cyber crimes
Cyber crimes
 
Top reason why your sms is failing
Top reason why your sms is failingTop reason why your sms is failing
Top reason why your sms is failing
 
2 fa registration-update
2 fa registration-update2 fa registration-update
2 fa registration-update
 

Ähnlich wie Sms bank eng

Economic and social council
Economic and social councilEconomic and social council
Economic and social council
valkica
 

Ähnlich wie Sms bank eng (20)

SMS banking fraud
SMS banking fraudSMS banking fraud
SMS banking fraud
 
Bank frauds
Bank fraudsBank frauds
Bank frauds
 
Fraud in USSD
Fraud in USSD Fraud in USSD
Fraud in USSD
 
Credit card frauds
Credit card frauds Credit card frauds
Credit card frauds
 
Credit card ppt
Credit card pptCredit card ppt
Credit card ppt
 
Unit 2- Economic Offences Types of Frauds
Unit 2- Economic Offences Types of FraudsUnit 2- Economic Offences Types of Frauds
Unit 2- Economic Offences Types of Frauds
 
Id Theft
Id TheftId Theft
Id Theft
 
credit card theft
credit card theftcredit card theft
credit card theft
 
Fraud seminar for charities
Fraud seminar for charitiesFraud seminar for charities
Fraud seminar for charities
 
Economic and social council
Economic and social councilEconomic and social council
Economic and social council
 
AndranikKarapetyanSlides.ppt
AndranikKarapetyanSlides.pptAndranikKarapetyanSlides.ppt
AndranikKarapetyanSlides.ppt
 
Credit card fraud(1)
Credit card fraud(1)Credit card fraud(1)
Credit card fraud(1)
 
eCommerce Summit Atlanta Moneybookers Presentation
eCommerce Summit Atlanta Moneybookers PresentationeCommerce Summit Atlanta Moneybookers Presentation
eCommerce Summit Atlanta Moneybookers Presentation
 
Bank frauds vk (2)
Bank frauds vk (2)Bank frauds vk (2)
Bank frauds vk (2)
 
Bank frauds
Bank fraudsBank frauds
Bank frauds
 
Account Kit and Internet Banking
Account Kit and Internet BankingAccount Kit and Internet Banking
Account Kit and Internet Banking
 
August 05 2018 Digital Payments and Security
August 05 2018 Digital Payments and SecurityAugust 05 2018 Digital Payments and Security
August 05 2018 Digital Payments and Security
 
Credit Card Fraud
Credit Card FraudCredit Card Fraud
Credit Card Fraud
 
All What You Need To Know About Merchant Account
All What You Need To Know About Merchant AccountAll What You Need To Know About Merchant Account
All What You Need To Know About Merchant Account
 
Credit cards ppt
Credit cards pptCredit cards ppt
Credit cards ppt
 

Mehr von Positive Hack Days

Мастер-класс «Трущобы Application Security»
Мастер-класс «Трущобы Application Security»Мастер-класс «Трущобы Application Security»
Мастер-класс «Трущобы Application Security»
Positive Hack Days
 
Эвристические методы защиты приложений
Эвристические методы защиты приложенийЭвристические методы защиты приложений
Эвристические методы защиты приложений
Positive Hack Days
 
От экспериментального программирования к промышленному: путь длиной в 10 лет
От экспериментального программирования к промышленному: путь длиной в 10 летОт экспериментального программирования к промышленному: путь длиной в 10 лет
От экспериментального программирования к промышленному: путь длиной в 10 лет
Positive Hack Days
 
Уязвимое Android-приложение: N проверенных способов наступить на грабли
Уязвимое Android-приложение: N проверенных способов наступить на граблиУязвимое Android-приложение: N проверенных способов наступить на грабли
Уязвимое Android-приложение: N проверенных способов наступить на грабли
Positive Hack Days
 
Требования по безопасности в архитектуре ПО
Требования по безопасности в архитектуре ПОТребования по безопасности в архитектуре ПО
Требования по безопасности в архитектуре ПО
Positive Hack Days
 
Формальная верификация кода на языке Си
Формальная верификация кода на языке СиФормальная верификация кода на языке Си
Формальная верификация кода на языке Си
Positive Hack Days
 
Механизмы предотвращения атак в ASP.NET Core
Механизмы предотвращения атак в ASP.NET CoreМеханизмы предотвращения атак в ASP.NET Core
Механизмы предотвращения атак в ASP.NET Core
Positive Hack Days
 

Mehr von Positive Hack Days (20)

Инструмент ChangelogBuilder для автоматической подготовки Release Notes
Инструмент ChangelogBuilder для автоматической подготовки Release NotesИнструмент ChangelogBuilder для автоматической подготовки Release Notes
Инструмент ChangelogBuilder для автоматической подготовки Release Notes
 
Как мы собираем проекты в выделенном окружении в Windows Docker
Как мы собираем проекты в выделенном окружении в Windows DockerКак мы собираем проекты в выделенном окружении в Windows Docker
Как мы собираем проекты в выделенном окружении в Windows Docker
 
Типовая сборка и деплой продуктов в Positive Technologies
Типовая сборка и деплой продуктов в Positive TechnologiesТиповая сборка и деплой продуктов в Positive Technologies
Типовая сборка и деплой продуктов в Positive Technologies
 
Аналитика в проектах: TFS + Qlik
Аналитика в проектах: TFS + QlikАналитика в проектах: TFS + Qlik
Аналитика в проектах: TFS + Qlik
 
Использование анализатора кода SonarQube
Использование анализатора кода SonarQubeИспользование анализатора кода SonarQube
Использование анализатора кода SonarQube
 
Развитие сообщества Open DevOps Community
Развитие сообщества Open DevOps CommunityРазвитие сообщества Open DevOps Community
Развитие сообщества Open DevOps Community
 
Методика определения неиспользуемых ресурсов виртуальных машин и автоматизаци...
Методика определения неиспользуемых ресурсов виртуальных машин и автоматизаци...Методика определения неиспользуемых ресурсов виртуальных машин и автоматизаци...
Методика определения неиспользуемых ресурсов виртуальных машин и автоматизаци...
 
Автоматизация построения правил для Approof
Автоматизация построения правил для ApproofАвтоматизация построения правил для Approof
Автоматизация построения правил для Approof
 
Мастер-класс «Трущобы Application Security»
Мастер-класс «Трущобы Application Security»Мастер-класс «Трущобы Application Security»
Мастер-класс «Трущобы Application Security»
 
Формальные методы защиты приложений
Формальные методы защиты приложенийФормальные методы защиты приложений
Формальные методы защиты приложений
 
Эвристические методы защиты приложений
Эвристические методы защиты приложенийЭвристические методы защиты приложений
Эвристические методы защиты приложений
 
Теоретические основы Application Security
Теоретические основы Application SecurityТеоретические основы Application Security
Теоретические основы Application Security
 
От экспериментального программирования к промышленному: путь длиной в 10 лет
От экспериментального программирования к промышленному: путь длиной в 10 летОт экспериментального программирования к промышленному: путь длиной в 10 лет
От экспериментального программирования к промышленному: путь длиной в 10 лет
 
Уязвимое Android-приложение: N проверенных способов наступить на грабли
Уязвимое Android-приложение: N проверенных способов наступить на граблиУязвимое Android-приложение: N проверенных способов наступить на грабли
Уязвимое Android-приложение: N проверенных способов наступить на грабли
 
Требования по безопасности в архитектуре ПО
Требования по безопасности в архитектуре ПОТребования по безопасности в архитектуре ПО
Требования по безопасности в архитектуре ПО
 
Формальная верификация кода на языке Си
Формальная верификация кода на языке СиФормальная верификация кода на языке Си
Формальная верификация кода на языке Си
 
Механизмы предотвращения атак в ASP.NET Core
Механизмы предотвращения атак в ASP.NET CoreМеханизмы предотвращения атак в ASP.NET Core
Механизмы предотвращения атак в ASP.NET Core
 
SOC для КИИ: израильский опыт
SOC для КИИ: израильский опытSOC для КИИ: израильский опыт
SOC для КИИ: израильский опыт
 
Honeywell Industrial Cyber Security Lab & Services Center
Honeywell Industrial Cyber Security Lab & Services CenterHoneywell Industrial Cyber Security Lab & Services Center
Honeywell Industrial Cyber Security Lab & Services Center
 
Credential stuffing и брутфорс-атаки
Credential stuffing и брутфорс-атакиCredential stuffing и брутфорс-атаки
Credential stuffing и брутфорс-атаки
 

Kürzlich hochgeladen

Top Rated Pune Call Girls Pashan ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Top Rated Pune Call Girls Pashan ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...Top Rated Pune Call Girls Pashan ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Top Rated Pune Call Girls Pashan ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Call Girls in Nagpur High Profile
 
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Call Girls in Nagpur High Profile
 
Call Girls Service Pune ₹7.5k Pick Up & Drop With Cash Payment 9352852248 Cal...
Call Girls Service Pune ₹7.5k Pick Up & Drop With Cash Payment 9352852248 Cal...Call Girls Service Pune ₹7.5k Pick Up & Drop With Cash Payment 9352852248 Cal...
Call Girls Service Pune ₹7.5k Pick Up & Drop With Cash Payment 9352852248 Cal...
roshnidevijkn ( Why You Choose Us? ) Escorts
 
falcon-invoice-discounting-unlocking-prime-investment-opportunities
falcon-invoice-discounting-unlocking-prime-investment-opportunitiesfalcon-invoice-discounting-unlocking-prime-investment-opportunities
falcon-invoice-discounting-unlocking-prime-investment-opportunities
Falcon Invoice Discounting
 
Call Girls Banaswadi Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
Call Girls Banaswadi Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...Call Girls Banaswadi Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
Call Girls Banaswadi Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
amitlee9823
 
Top Rated Pune Call Girls Shikrapur ⟟ 6297143586 ⟟ Call Me For Genuine Sex S...
Top Rated Pune Call Girls Shikrapur ⟟ 6297143586 ⟟ Call Me For Genuine Sex S...Top Rated Pune Call Girls Shikrapur ⟟ 6297143586 ⟟ Call Me For Genuine Sex S...
Top Rated Pune Call Girls Shikrapur ⟟ 6297143586 ⟟ Call Me For Genuine Sex S...
Call Girls in Nagpur High Profile
 
VIP Independent Call Girls in Mira Bhayandar 🌹 9920725232 ( Call Me ) Mumbai ...
VIP Independent Call Girls in Mira Bhayandar 🌹 9920725232 ( Call Me ) Mumbai ...VIP Independent Call Girls in Mira Bhayandar 🌹 9920725232 ( Call Me ) Mumbai ...
VIP Independent Call Girls in Mira Bhayandar 🌹 9920725232 ( Call Me ) Mumbai ...
dipikadinghjn ( Why You Choose Us? ) Escorts
 
Booking open Available Pune Call Girls Wadgaon Sheri 6297143586 Call Hot Ind...
Booking open Available Pune Call Girls Wadgaon Sheri 6297143586 Call Hot Ind...Booking open Available Pune Call Girls Wadgaon Sheri 6297143586 Call Hot Ind...
Booking open Available Pune Call Girls Wadgaon Sheri 6297143586 Call Hot Ind...
Call Girls in Nagpur High Profile
 
WhatsApp 📞 Call : 9892124323 ✅Call Girls In Chembur ( Mumbai ) secure service
WhatsApp 📞 Call : 9892124323 ✅Call Girls In Chembur ( Mumbai ) secure serviceWhatsApp 📞 Call : 9892124323 ✅Call Girls In Chembur ( Mumbai ) secure service
WhatsApp 📞 Call : 9892124323 ✅Call Girls In Chembur ( Mumbai ) secure service
Pooja Nehwal
 
VIP Call Girl Service Andheri West ⚡ 9920725232 What It Takes To Be The Best ...
VIP Call Girl Service Andheri West ⚡ 9920725232 What It Takes To Be The Best ...VIP Call Girl Service Andheri West ⚡ 9920725232 What It Takes To Be The Best ...
VIP Call Girl Service Andheri West ⚡ 9920725232 What It Takes To Be The Best ...
dipikadinghjn ( Why You Choose Us? ) Escorts
 
(INDIRA) Call Girl Srinagar Call Now 8617697112 Srinagar Escorts 24x7
(INDIRA) Call Girl Srinagar Call Now 8617697112 Srinagar Escorts 24x7(INDIRA) Call Girl Srinagar Call Now 8617697112 Srinagar Escorts 24x7
(INDIRA) Call Girl Srinagar Call Now 8617697112 Srinagar Escorts 24x7
Call Girls in Nagpur High Profile Call Girls
 
8377087607, Door Step Call Girls In Kalkaji (Locanto) 24/7 Available
8377087607, Door Step Call Girls In Kalkaji (Locanto) 24/7 Available8377087607, Door Step Call Girls In Kalkaji (Locanto) 24/7 Available
8377087607, Door Step Call Girls In Kalkaji (Locanto) 24/7 Available
dollysharma2066
 
Vasai-Virar Fantastic Call Girls-9833754194-Call Girls MUmbai
Vasai-Virar Fantastic Call Girls-9833754194-Call Girls MUmbaiVasai-Virar Fantastic Call Girls-9833754194-Call Girls MUmbai
Vasai-Virar Fantastic Call Girls-9833754194-Call Girls MUmbai
priyasharma62062
 

Kürzlich hochgeladen (20)

Top Rated Pune Call Girls Pashan ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Top Rated Pune Call Girls Pashan ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...Top Rated Pune Call Girls Pashan ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Top Rated Pune Call Girls Pashan ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
 
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
 
Call Girls Service Pune ₹7.5k Pick Up & Drop With Cash Payment 9352852248 Cal...
Call Girls Service Pune ₹7.5k Pick Up & Drop With Cash Payment 9352852248 Cal...Call Girls Service Pune ₹7.5k Pick Up & Drop With Cash Payment 9352852248 Cal...
Call Girls Service Pune ₹7.5k Pick Up & Drop With Cash Payment 9352852248 Cal...
 
falcon-invoice-discounting-unlocking-prime-investment-opportunities
falcon-invoice-discounting-unlocking-prime-investment-opportunitiesfalcon-invoice-discounting-unlocking-prime-investment-opportunities
falcon-invoice-discounting-unlocking-prime-investment-opportunities
 
Webinar on E-Invoicing for Fintech Belgium
Webinar on E-Invoicing for Fintech BelgiumWebinar on E-Invoicing for Fintech Belgium
Webinar on E-Invoicing for Fintech Belgium
 
Call Girls Banaswadi Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
Call Girls Banaswadi Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...Call Girls Banaswadi Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
Call Girls Banaswadi Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
 
Top Rated Pune Call Girls Shikrapur ⟟ 6297143586 ⟟ Call Me For Genuine Sex S...
Top Rated Pune Call Girls Shikrapur ⟟ 6297143586 ⟟ Call Me For Genuine Sex S...Top Rated Pune Call Girls Shikrapur ⟟ 6297143586 ⟟ Call Me For Genuine Sex S...
Top Rated Pune Call Girls Shikrapur ⟟ 6297143586 ⟟ Call Me For Genuine Sex S...
 
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...
Solution Manual for Principles of Corporate Finance 14th Edition by Richard B...
 
Stock Market Brief Deck (Under Pressure).pdf
Stock Market Brief Deck (Under Pressure).pdfStock Market Brief Deck (Under Pressure).pdf
Stock Market Brief Deck (Under Pressure).pdf
 
VIP Independent Call Girls in Mira Bhayandar 🌹 9920725232 ( Call Me ) Mumbai ...
VIP Independent Call Girls in Mira Bhayandar 🌹 9920725232 ( Call Me ) Mumbai ...VIP Independent Call Girls in Mira Bhayandar 🌹 9920725232 ( Call Me ) Mumbai ...
VIP Independent Call Girls in Mira Bhayandar 🌹 9920725232 ( Call Me ) Mumbai ...
 
Diva-Thane European Call Girls Number-9833754194-Diva Busty Professional Call...
Diva-Thane European Call Girls Number-9833754194-Diva Busty Professional Call...Diva-Thane European Call Girls Number-9833754194-Diva Busty Professional Call...
Diva-Thane European Call Girls Number-9833754194-Diva Busty Professional Call...
 
Booking open Available Pune Call Girls Wadgaon Sheri 6297143586 Call Hot Ind...
Booking open Available Pune Call Girls Wadgaon Sheri 6297143586 Call Hot Ind...Booking open Available Pune Call Girls Wadgaon Sheri 6297143586 Call Hot Ind...
Booking open Available Pune Call Girls Wadgaon Sheri 6297143586 Call Hot Ind...
 
Business Principles, Tools, and Techniques in Participating in Various Types...
Business Principles, Tools, and Techniques in Participating in Various Types...Business Principles, Tools, and Techniques in Participating in Various Types...
Business Principles, Tools, and Techniques in Participating in Various Types...
 
WhatsApp 📞 Call : 9892124323 ✅Call Girls In Chembur ( Mumbai ) secure service
WhatsApp 📞 Call : 9892124323 ✅Call Girls In Chembur ( Mumbai ) secure serviceWhatsApp 📞 Call : 9892124323 ✅Call Girls In Chembur ( Mumbai ) secure service
WhatsApp 📞 Call : 9892124323 ✅Call Girls In Chembur ( Mumbai ) secure service
 
VIP Call Girl Service Andheri West ⚡ 9920725232 What It Takes To Be The Best ...
VIP Call Girl Service Andheri West ⚡ 9920725232 What It Takes To Be The Best ...VIP Call Girl Service Andheri West ⚡ 9920725232 What It Takes To Be The Best ...
VIP Call Girl Service Andheri West ⚡ 9920725232 What It Takes To Be The Best ...
 
Mira Road Awesome 100% Independent Call Girls NUmber-9833754194-Dahisar Inter...
Mira Road Awesome 100% Independent Call Girls NUmber-9833754194-Dahisar Inter...Mira Road Awesome 100% Independent Call Girls NUmber-9833754194-Dahisar Inter...
Mira Road Awesome 100% Independent Call Girls NUmber-9833754194-Dahisar Inter...
 
(INDIRA) Call Girl Srinagar Call Now 8617697112 Srinagar Escorts 24x7
(INDIRA) Call Girl Srinagar Call Now 8617697112 Srinagar Escorts 24x7(INDIRA) Call Girl Srinagar Call Now 8617697112 Srinagar Escorts 24x7
(INDIRA) Call Girl Srinagar Call Now 8617697112 Srinagar Escorts 24x7
 
8377087607, Door Step Call Girls In Kalkaji (Locanto) 24/7 Available
8377087607, Door Step Call Girls In Kalkaji (Locanto) 24/7 Available8377087607, Door Step Call Girls In Kalkaji (Locanto) 24/7 Available
8377087607, Door Step Call Girls In Kalkaji (Locanto) 24/7 Available
 
Vasai-Virar Fantastic Call Girls-9833754194-Call Girls MUmbai
Vasai-Virar Fantastic Call Girls-9833754194-Call Girls MUmbaiVasai-Virar Fantastic Call Girls-9833754194-Call Girls MUmbai
Vasai-Virar Fantastic Call Girls-9833754194-Call Girls MUmbai
 
Gurley shaw Theory of Monetary Economics.
Gurley shaw Theory of Monetary Economics.Gurley shaw Theory of Monetary Economics.
Gurley shaw Theory of Monetary Economics.
 

Sms bank eng

  • 1.
  • 2. SMS Banking Fraud Denis Gorchakov, Olga Kochetova Positive Research Center Positive Hack Days III
  • 3. What is SMS banking? ― checking your balance and receiving information about performed transactions ― performing basic operations: • Prepaid cellphone refill • Payment for various services: Internet, TV, utility bills • Funds transfer • Immediate card blocking if lost 3
  • 4. A common issue is a card linked to another subscriber's number 4
  • 5. From: Vasily To: SMS Bank SEND 100 89161234567 From: My Bank RUR 100 have been added to your phone account No. 89161234567. From: My Bank Please enter code 974365 to confirm the payment From: Vasily To: SMS Bank SEND 9999 89161234567 From: My Bank Please specify the last 4 digits of your card to confirm the payment From: Vasily To: SMS Bank SEND 9999 89161234567 0890 From: My Bank RUR 9,999 have been added to your phone account No. 89161234567. Lack of transaction confirmation or confirmation insecurity 5
  • 6. Data collection by a malicious user ― Accidental (link to another subscriber's number): • Minimum harm — viewing financial data of another person • Maximum harm — managing another person's bank account http://pravo.ru/news/view/83503/ • Consequences — criminal and administrative responsibility ― For purpose: • Wastebaskets next to terminals and ATMs in public places • Cash register tapes available for shop assistants • Employees of communications service providers http://www.securitylab.ru/news/377745.php 6
  • 7. ― Only a phone number is available: • A payment to a phone number (own or confirmed) Banks are already anxious http://www.finsb.ru/map/novosti/view/?tx_ttnews[tt_news]=1428 • Social engineering A common scheme with false payment to another person's number, when a payment message from an operator/payment service is imitated • Pranking Card blocking In addition: ― OTP attacks (long expiration period) ― Insecure verification methods (by the part of a card number) Exploitation 7
  • 8. $$$ From: Vasily's number To: SMS Bank SEND 500 89261234567 Malware user Semyon: From: Mobile network operator Your phone account has been refilled with RUR 500. From: Semyon To: Vasily Bro, a wrong number! Be a pal, refund this amount to me! From: Semyon Bro, a wrong number! Be a pal, refund this amount to me! SMS gateway From: SMS Bank Dear Vasily, 500 rubles have been deducted from your credit card for mobile phone services. REAL REAL From: SMS Bank Invalid withdrawal from your card has been canceled. The funds will be redeemed to the account in due time. FAKE From: SMS Bank number To: Vasily Invalid withdrawal from your card has been canceled. The funds will be redeemed to the account in due time. SMS gateway Social engineering 8
  • 9. $$$ From: Vasily's number To: SMS Bank SEND 3000 89261234567 Malware user Semyon: From: Mobile network operator Your phone account has been refilled with RUR 3,000. SMS gateway From: SMS Bank Dear Vasily, 3,000 rubles have been deducted from your credit card for mobile phone services. REAL REAL From: Bank security service A wrong transaction with your card has been registered. For immediate cancellation, please send the cancellation command to security service number 9900: CANCEL 79161235476 FAKE From: Bank security service To: Vasily A wrong transaction with your card has been registered. For immediate cancellation, please send the cancellation command to security service number 9900: CANCEL 79161235476 SMS gateway Digital money SMS aggregator Social engineering v.2 9
  • 10. From: Vasily's number To: SMS Bank SEND CUTEKITTENS 99999 Malware user Semyon: From: SMS Bank Dear Vasily, thank you very much! Your donation to the kittens support fund in the amount of 99,999 rubles has been received! Thank you! … of course other things can happen because malicious users are already aware of this fact —such information is publicly available: 1. http://www.banki.ru/forum/index.php?PAGE_NAME=read&FID=34&TID=154788 2. http://www.banki.ru/forum/index.php?PAGE_NAME=read&FID=34&TID=154785 SMS gateway Disorderly conduct 10
  • 11. Verification ― Without verification (only by sender's number) —easy and convenient, but insecure ― Verification by the last 4 digits of a card — insecure ― OTP verification — better, but some security issues exist ― Good banks — except for ОТР, IMSI* verification, IMSI linking to an account number * IMSI means International Mobile Subscriber Identity linked to each user of mobile communication of the GSM, UMTS or CDMA standard.The device of a subscriber transfers IMSI for identification at the moment of registration in a network. The number is connected to the user's SIM card. 11
  • 12. From: Vasily's number To: SMS Bank SEND CUTEKITTENS 99999 0890 Malware user Semyon: SMS gateway Sender's IMSI verification (linked to the account) DENIALI. II. From: SMS Bank Confirm the transaction by replying to the message with code 754387. DENIAL WTF? What is right? 12
  • 13. Other vectors? • GSM alarm systems with default passwords • “Smart” houses — targeted attacks How can users protect themselves? • Never disable OTP and notifications about card operations • Attentiveness and vigilance • Using a client-bank application for smartphones 13
  • 14. Thank you for attention! Denis Gorchakov, Olga Kochetova dgorchakov@ptsecurity.ru, okochetova@ptsecurity.ru Positive Research Center