Combating financial crimes with Expertise, Integrity and Collaboration

en flag
Become a Member
en flag
Become a Member

🏦Compromised Online/Mobile Banking and Fraudulent Payments

What is Compromised Online/Mobile Banking and Fraudulent Payments ?

A compromise of online or mobile banking means unauthorized access to your bank accounts, often as a result of fraud, malicious software, or social engineering.
This can lead to fraudulent transfers, theft of funds, and even identity theft.

Attack methods:

  • Phishing attacks – emails, SMS messages, or calls used to collect login credentials and passwords.

  • Malicious software – installed via fake applications, links, or websites, including:

    • Remote access programs (AnyDesk, TeamViewer)

    • Keyloggers – record every keystroke

    • Trojans that mimic banking apps

  • Public Wi-Fi networks – with insecure connections, your data can be intercepted.

  • Social engineering – fraudsters posing as bank employees to request passwords, codes, or convince you to install software.

Examples of fraud:

  • A call from a “bank employee” convincing you to install an app for “assistance” and gaining remote access to your device.

  • An email with a link to a fake banking website where you enter your details.

  • Unauthorized transfers or payments made without your knowledge.

Key indicators:

  • Unrecognized logins to your online banking.

  • Strange or unexplained transactions on your account.

  • Device lagging or unstable performance, unknown apps installed.

  • Receiving SMS payment codes you did not initiate.

How to protect yourself?

  • Do not install apps or software at the request of strangers.

  • Use only the official banking apps from Google Play or the App Store.

  • Never share passwords, PINs, or SMS codes – even with “bank employees.”

  • Enable two-factor authentication (2FA).

  • Avoid public Wi-Fi networks for banking.

  • Install and maintain antivirus software and a firewall.

  • Regularly review your bank statements.

What to do if you have already become a victim?

  1. Contact your bank immediately and request:

    • Blocking access to online banking

    • Blocking all transactions

    • Changing passwords

  2. Change passwords for all accounts, especially email and banking.

  3. Remove unknown apps or reinstall your operating system.

  4. Dispute unauthorized payments

  5. Report to MIA or GDBOP.

  6. Save all messages, emails, and screenshots.

Whom to contact?

  • Your bank – first step in case of suspicious transactions

  • GDBOP / Cybersecurity Unit – MIAgdbop.bg

  • Police – Regional Police Department (RPD)

Useful links:

CONTACTS
membership@baafce.bg

Copyright © 2025 Bulgarian Association of Anti-Financial Crime Experts - All rights reserved.

Privacy Policy

Bulgarian Association of Anti-Financial Crime Experts
(BAAFCE)
UIC 207992141