Sberbank Prevents Attempt to Withdraw Funds from Cards of Russians

Sberbank Prevents Attempt to Withdraw Funds from Cards of Russians


A large-scale hacker attack on the cards of Russian citizens, organized from the territory of Ukraine, was stopped, said Stanislav Kuznetsov, deputy chairman of the bank.

Kuznetsov told RIA Novosti that the attempts of mass debiting of funds from the cards of Russian citizens were made almost immediately after a special military operation began on the territory of Ukraine. According to Kuznetsov, there were up to 10,000 attempts to write off funds per minute. A detailed investigation was carried out into these cases. It turned out that these write-offs were initiated by hackers from a Ukrainian company that develops mobile applications.

In addition, according to Rossiyskaya Gazeta, Kuznetsov said that this company had dozens of different officially registered applications at its disposal where it was possible to order various goods, pay for services, etc. According to the rules in force around the world in international payment systems, it is forbidden to collect and store data that relate to the bank cards of customers. However, the Ukrainian company collected this data and kept it for itself. The attempt of mass debit of funds by this company was made in one day. Sberbank rejected hundreds of thousands of such attempts to debit funds for various services and goods, said Kuznetsov.

As previously reported, banks now have the right to block remote access of clients to their accounts. Blocking will be carried out only if the client conducts “atypical transactions.” This was reported by the press service of the Central Bank of Russia. Recommendations on blocking accounts have already been sent to financial organizations. According to the regulator, such a measure will allow to fight more effectively against telephone fraudsters. In this case, credit institutions will independently assess the existing risk and make a quick decision to restrict the use of electronic means of payment of its customers. This includes not only bank cards but also mobile applications and personal Internet-banking accounts.

According to the Central Bank, suspending access to a customer's account will create additional difficulties for the intruders and increase the possibility of returning the money to the legitimate owner. In the future, a client will be able to make electronic payments only after he/she personally contacts the bank. In this case, the Central Bank recommended financial institutions to notify their customers of the temporary blocking of electronic payments, explaining the reason for these actions. According to the press service of the Central Bank, these recommendations were developed after consultations with credit institutions.

The head of the Department of Information Security of the Central Bank, bank clients need not worry about the fact that their accounts will be blocked, reported Rossiyskaya Gazeta, citing Vadim Uvarov. According to a representative of the regulator, at present, banks have enough information about their clients and know the nature and extent of the transactions they carry out. There will be a temporary blocking of remote payments to save clients' funds only in the case of “atypical transactions.”

Earlier, VTB suggested “freezing” suspicious transfers. According to the bank's specialists, most often the fraudsters who gained access to the client's accounts transfer money to an intermediary dropper in another bank and then cash it out quickly. Earlier, the credit institution had no right to suspend the withdrawal of funds to another bank. To do so it was necessary to obtain a court decision. As known, it required a lot of time.

According to media reports, the Central Bank released data showing that fraudsters managed to steal 13.5 billion rubles ($183.67 mln) last year. The total number of such unauthorized transfers was more than 1 million. Only 920.5 million rubles ($12.52 mln) were returned to bank customers, which amounted to less than 7% of the stolen money.

Criminals mostly use psychological treatment of clients, reported the regulator. They call and introduce themselves as bank employees and find out the missing information they need on various pretexts. Quite often, and this is especially true for elderly bank customers, a citizen voluntarily transfers funds to the specified details or names the details of a bank card, which gives access to remote transfers. Such operations, according to the Central Bank, amount to almost 50%.

Therefore, banks warn their customers that confidential information such as pin code, card number, etc should not be given under any circumstances. In the case of suspicious calls a client should immediately stop communicating. Remember that bank employees do not call their clients to clarify any information, and especially do not make calls at night. If you have any doubts after the suspicious call, you should block your card and apply to the nearest bank branch.

Sanctional Debut of Alekperov and Nabiullina Central Bank: Loss of Half Banks' Capital is not Worst Scenario