{"id":190610,"date":"2021-02-05T14:53:07","date_gmt":"2021-02-05T14:53:07","guid":{"rendered":"https:\/\/bm.dev.synology.me\/?p=190610"},"modified":"2021-02-05T14:53:07","modified_gmt":"2021-02-05T14:53:07","slug":"avertisment-politia-romana-atrage-atentia-ca-in-ultima-perioada-au-aparut-mai-multe-pagini-care-imita-site-uri-de-internet-banking-ale-unor-banci-din-romania","status":"publish","type":"post","link":"https:\/\/bm.dev.synology.me\/?p=190610","title":{"rendered":"AVERTISMENT. Poli\u0163ia Rom\u00e2n\u0103 atrage aten\u0163ia c\u0103 \u00een ultima perioad\u0103 au ap\u0103rut mai multe pagini care imit\u0103 site-uri de internet banking ale unor b\u0103nci din Rom\u00e2nia"},"content":{"rendered":"<p>\nPotrivit unui comunicat al IGPR, campania de phishing este caracterizat\u0103 de promovarea paginilor clonate, care imit\u0103 foarte bine paginile de internet banking ale mai multor b\u0103nci, prin intermediul motoarelor de c\u0103utare accesate din browserele de internet.<\/p>\n<p>\n\u201eAstfel, \u00een momentul \u00een care utilizatorii acceseaz\u0103 diferite motoare de c\u0103utare \u015fi efectueaz\u0103 c\u0103ut\u0103ri dup\u0103 cuvinte cheie precum &lt;(numele b\u0103ncii) online banking&gt; sau \u201e(numele b\u0103ncii) internet banking&gt;, paginile clonate pot fi afi\u015fate fie ca anun\u0163uri publicitare care imit\u0103 un rezultat al c\u0103ut\u0103rii, fie ca un rezultat propriu-zis al c\u0103ut\u0103rii. Dup\u0103 accesarea paginilor, de obicei, utilizatorului i se cere s\u0103 introduc\u0103 numele de utilizator \u015fi codul de autentificare generat de token\u201d, se arat\u0103 \u00een comunicat.<\/p>\n<p>\nPoli\u0163i\u015ftii sus\u0163in c\u0103, \u00een func\u0163ie de procedura de autentificare a b\u0103ncii, autorii pot afi\u015fa diferite ferestre de tip pop-up prin care s\u0103 solicite utilizatorului detalii suplimentare cu privire la modalitatea de autentificare.<\/p>\n<p>\n\u201e\u00cen acest moment, folosind datele introduse de c\u0103tre utilizatori, persoanele r\u0103u-inten\u0163ionate se autentific\u0103 \u00een contul clientului \u015fi, dup\u0103 o evaluare rapid\u0103 a soldurilor, ini\u0163az\u0103 transferuri de bani c\u0103tre diferite conturi apar\u0163in\u00e2nd unor re\u0163ele de sp\u0103lare a banilor, timp \u00een care utilizatorul este l\u0103sat s\u0103 a\u015ftepte pe pagina care imit\u0103 site-ul b\u0103ncii, sub diferite pretexte (&lt;se conecteaz\u0103&#8230;&gt;, &lt;a\u015ftepta\u0163i \u00eenc\u0103rcarea paginii&#8230;&gt;, &lt;se efectueaz\u0103 lucr\u0103ri de mentenan\u0163\u0103&#8230;&gt; etc.). Dup\u0103 scurt timp, utilizatorului \u00eei este afi\u015fat\u0103 o c\u0103su\u0163\u0103 \u00een care i se cere din nou s\u0103 introduc\u0103 un cod generat de token pentru a se autentifica \u00een cont (din nou, sub diverse pretexte precum erori de autentificare, creden\u0163iale incorecte, etc.)\u201d, au mai transmis poli\u0163i\u015ftii..<\/p>\n<p>\n\u00cen momentul \u00een care utilizatorul introduce acest cod, cei \u00een cauz\u0103 \u00eel folosesc pentru a autoriza tranzac\u0163ia ini\u0163iat\u0103 din contul clientului.<\/p>\n<p>\nPoli\u0163i\u015ftii fac recomand\u0103ri pentru a preveni efectuarea unor tranzac\u0163ii frauduloase prin accesarea unor pagini de phishing:<\/p>\n<p>\n1. Fi\u0163i foarte aten\u0163i la denumirea paginii pe care o accesa\u0163i! De cele mai multe ori, paginile clonate au o denumire asem\u0103n\u0103toare, dar nu identic\u0103 cu cea original\u0103. Fie lipse\u015fte o liter\u0103, fie apare o cratim\u0103 \u00een plus, orice detaliu conteaz\u0103! Pute\u0163i accesa mai \u00eent\u00e2i pagina de internet a b\u0103ncii, din care s\u0103 accesa\u0163i sec\u0163iunea de online banking.<\/p>\n<p>\n2. Fi\u0163i aten\u0163i la orice modificare \u00een procesul de autentificare! Dac\u0103 se solicit\u0103 detalii noi, dac\u0103 procesul dureaz\u0103 mai mult ca de obicei, dac\u0103 se afi\u015feaz\u0103 mesaje care pot fi utilizate ca pretext pentru \u00eent\u00e2rzieri (\u201eeroare de conectare\u201d, \u201elucr\u0103ri de mentenan\u0163\u0103\u201d, \u201ese a\u015fteapt\u0103 \u00eenc\u0103rcarea paginii\u201d etc.), \u00eenseamn\u0103 c\u0103 sunt \u015fanse mari s\u0103 fi accesat o pagin\u0103 de phishing. \u00cenchide\u0163i browserul, a\u015ftepta\u0163i c\u00e2teva minute \u015fi relua\u0163i procedura, cu o aten\u0163ie sporit\u0103 la detaliile de la pasul 1.<\/p>\n<p>\n3. Dup\u0103 introducerea creden\u0163ialelor necesare autentific\u0103rii \u00een contul de internet banking ar trebui s\u0103 fi\u0163i autentificat. Dac\u0103 nu se \u00eent\u00e2mpl\u0103 acest lucru \u015fi vi se cere din nou, sub diferite pretexte, un alt cod generat de token, nu \u00eel introduce\u0163i imediat. Ave\u0163i mari \u015fanse s\u0103 autoriza\u0163i o plat\u0103 frauduloas\u0103! \u00cenchide\u0163i browserul, a\u015ftepta\u0163i c\u00e2teva minute (de obicei, sesiunile de internet banking expir\u0103 \u00een 3 sau 5 minute) \u015fi relua\u0163i procedura, cu aten\u0163ie sporit\u0103. Fi\u0163i aten\u0163i la introducerea corect\u0103 a creden\u0163ialelor, astfel pute\u0163i elimina pretextul \u201ecreden\u0163iale incorecte\u201d, \u201eparola gre\u015fit\u0103\u201d etc.<\/p>\n<p>\n4. Dac\u0103 vi se solicit\u0103 s\u0103 introduce\u0163i \u00een pagina de internet banking un cod primit prin SMS, citi\u0163i cu aten\u0163ie con\u0163inutul mesajului primit! \u00cen acest mesaj este descris motivul pentru care l-a\u0163i primit: fie autorizarea unei pl\u0103\u0163i (beneficiarul \u015fi suma), fie autorizarea altor dispozitive pentru utilizarea contului. Dac\u0103 motivul nu corespunde cu inten\u0163iile dumneavoastr\u0103, nu \u00eel introduce\u0163i!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Poli\u0163ia Rom\u00e2n\u0103 atrage aten\u0163ia c\u0103 \u00een ultima perioad\u0103 au ap\u0103rut mai multe pagini care imit\u0103 site-uri de internet banking ale unor b\u0103nci din Rom\u00e2nia. Poli\u0163i\u015ftii dau sfaturi pentru prevenirea unor tranzac\u0163ii frauduloase.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[510],"tags":[47865,8103,26160],"class_list":["post-190610","post","type-post","status-publish","format-standard","hentry","category-actualitate","tag-imita","tag-internet-banking","tag-pagini"],"_links":{"self":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/190610","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=190610"}],"version-history":[{"count":0,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/190610\/revisions"}],"wp:attachment":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=190610"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=190610"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=190610"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}