Recently, the security researchers have detected an ongoing phishing campaign where cybercriminals are trying to extract personal and financial information from the Indian users. The targeted banks in the campaign include the State Bank of India, Punjab National Bank, HDFC, ICICI, and Axis Bank.
Users are receiving suspicious messages asking them to submit an application for the disbursement of income tax refund. The message also contains a link that directs users to a webpage looking like the income tax e-filing web page. Research suggests that the suspicious links actually originate from the US and France and the campaign aims to collect banking information from the users along with their personal details.
Further investigation revealed that the shared SMS and link is not at all linked with the Indian government. All the IP addresses linked with the campaign belong to some third party dedicated cloud hosting providers. Hence security experts consider the campaign to be a serious threat as attackers can extract huge sums by collecting all the financial information from the users with the help of such fraudulent phishing SMS.
