Malicious Actors Are Using Robocalls to Steal One-Time Password

Since it became relatively easy for someone or the other to illicitly gain access to someone else’s password and thereby gain access to their account, companies started offering two factor authentication. This would basically involve you getting a one time pin after you have entered your password, thereby making it much more difficult for someone or the other to gain access to your account since they would need your phone to get the OTP (One-Time Password) and this is something that they are most likely not going to get the chance to obtain.

However, it is important to note that malicious actors keep coming up with new and unique ways to trick you into giving them access to your account. The latest technique, as per CyberNews, that they have started to use involves them making a robocall in an attempt to make you tell them your OTP.

The scary thing about this robocall bot is that it can actually be purchased through an encrypted Telegram chat group. This group currently has around 6,000 members which means that there are potentially thousands of people that are making use of this bot. The bot pretends to be an official representative of Apple or Google, and attempts to make some kind of excuse as to why it requires the OTP that the user has just received.

This is why it is so important to be careful about these kinds of things. One should never give their password or their OTP to anyone at all, even if they pretend to belong to a company whose products you use. These companies will never ask for your password or OTP in the first place, so you should always try your best to treat these kinds of calls with the utmost caution if you don’t want to lose access to your account.


Image Credit: Shutterstock

Read next: Report suggests, over 50 percent of exploit sales in the underground market are for Microsoft products
Previous Post Next Post