The scam operates by an innocent recipient receiving an email or letter informing them that a particular supplier of theirs has changed their bank account details. The correspondence will include the details of the new account. You will be asked to make future payments into the new account. These details are fraudulent with the consequence that monies are paid to the fraudster and not the supplier.
In certain instances, the fraudsters also phone the victims informing them of the change of details and that a letter will follow. The telephone call will be used by the fraudster so that they can extract more information to make their communication more believable.
PS: Remember that electronic payments are based on the account number only. Any account name given is not routinely checked as part of the automated payment process. This is the same for all South African Banks. It is your responsibility to ensure the account details being used are correct, by conducting an independent verification
A criminal orders goods or services from a business and makes a payment into the victim’s account, mostly by means of a fraudulent cheque. Proof of payment is then sent to the business and goods are delivered to the criminal. When the Bank processes the cheque, it is uncovered that the cheque is fraudulent and as a result no funds are transferred to the victim’s account. The victim is thus out of pocket as they do not have the goods nor the money. In other instances the order is cancelled and an urgent refund is requested. Alternately a payment is made in ‘error’ and an urgent refund is requested.
The internet is used for almost everything, including finding a lifetime partner. There are thousands of online dating sites that provide the service of matching potential partners based on specific requirements. Unfortunately there are predators that prowl legitimate dating sites for victims to scam.
Scammers often create profiles and post them on legitimate dating sites waiting for potential victims to fall bait to their scam. They may even go as far as targeting specific kinds of people by creating a profile that meets the requirements of a match for the person they are targeting. These scammers are con artists and are skilled at building trust and making victim fall in love with them as they pose as their ideal partner. Once the victim’s defence are lowered and they become emotionally vulnerable they trick to you into giving them money.
The scammer will make contact with the victim and will offer to share lots of personal information with them in the hope of building a trusted relationship. The information and profile pictures are all false and are often used over and over again with various victims. Once they feel that the victim trusts them and they have a bond with them they will often suddenly be called away on business or experience serious personal crisis. What then follows is a request for the victim to send them money to either help them out of a crisis or that the victim pays their travel expenses to visit them. They might even promise to refund the money to the victim when they meet them. Should the victim provide them with the requested money they may either disappear or request that they send more money. If the victim doesn’t give them the money their messages will often become more desperate and persistent, in an effort to convince them to give them money.
Criminals set up bogus website offering specials on certain gifts, from holiday accommodation to air tickets. The victim will then click on the website as it looks professional and the cost appears to be cheap. The victim purchases using their credit card details thinking they are buying from a genuine company. The purchase goes through but the victim never receives the goods as the website was fake. The criminals then have access to bank customer’s bank details and can use it fraudulently including stealing the identity of the victim.
Phishing is a scam that takes place via email. Fraudsters send out e-mails to recipients purporting to come from a reliable source like a banking institution, SARS or email service providers. The e-mail will prompt bank consumers for their information to be updated or validated through a hyperlink or icon. Once clicked on, the link will launch a fake website that resembles the legitimate website. The information requested is usually personal information and could include usernames and passwords for banking platforms or e-mail accounts as well as cell phone numbers and bank card details. Any information that is entered on the fake website is captured by the fraudsters and can be used to perpetrate fraud. In addition to harvesting personal information, fake websites can be used to infect customer’s machines with malicious software which can be used to gather sensitive information.
The scam relies on social engineering techniques to convince the user of the technicians’ credentials. The scammers call, claiming to be a technical support assistant associated with well-known companies for example Microsoft. They will state that they have detected viruses or other malware on the user’s computer and then trick them into giving them remote access or paying for software they do not need. In most cases scammers can get names and other basic information from public directories and then guess what computer software the computer user is using.
The scammer will ask the victim to log onto their computer so that they can talk them through the fix. They convince the user to visit legitimate websites to download “Remote Access Control” software that will allow them to take control of the computer remotely and adjust settings to leave the computer vulnerable. They may also trick the user into installing malicious software that could capture sensitive data, such as online banking usernames and passwords or remotely install malware themselves. The objective is to compromise internet banking profile credentials for later use. The victim then needs to pay for the service via a credit card and is asked for the credit card details, or is asked to make an internet payment.
According to the SARB’s Supervision Department 2015 annual report (25 May 2016) 19 illegal schemes are currently being investigated, left over from a total of 41 that were under review in 2015. This proves the prevalence of how easy members of the public fall for these schemes and scams; and the effectiveness of social engineering in duping the public to part with lifetime savings in pursuit of quick gains and wealth. These include WorldVentures, Kipi (also known as Mydeposit241), Make Believe, NMT Investments, Instant Wealth Club, MMM South Africa, DIPESA, Sikhese (Pty) Ltd as well as the Wealth Creation Club, as previously reported. SARB has voiced their concern not only about the high level of illegal money schemes in the in the country but also the willingness of members of the public to participate in such schemes.
An ‘investor’ will lure their victims by guaranteeing high profits that promise little or no financial risk. In most instances the investor will be vague about the nature of the investment, but will stress the rate of return. These investors hype their high-level financial connections; the fact that they’re privy to inside information through social engineering techniques and that they’ll guarantee the investment. To close the deal, they often come up with phony statistics, misrepresenting and stressing the uniqueness of their offer.