Tuesday, December 6, 2022





One of DEFPR’s regular visitors said that he was receiving odd messages from the State Bank of India. We examined the messages and discovered that they were forged. Cyber fraudsters are increasingly relying on technology to carry out more precise fraud schemes. They use the sender IDs of brands to send messages. 

What exactly is sender ID?

A text message Sender ID is a simple approach to let people know who is sending them messages.  It’s a six-character alphanumeric code. The brand name is represented by the sender id. For example, SBI’s sender id is “CBSSBI,” while Phonepe’s sender id is “PHONPE.” Some companies utilize distinct sender ids for different types of services. 

As a result, because the sender id represents the brand, hackers can manipulate consumers by sending messages using the brand’s sender id. If you receive a message from CBSSBI, for example, you will assume it is from SBI and will trust the information you receive by SMS. Hackers are sending spam URLs requesting KYC updates using the sender ids of well-known banks. When you click on those links, you’ll be taken to a phishing site. You will be hacked or conned if you enter any kind of information on those websites. 

Our user has received an SMS from CBSSBI informing him that his account has been disabled. As a result of the message being from SBI, he made urgent contact with the customer service. According to the analysis of the customer service representative, his account is operating properly. After this, he got in touch with us. We investigated the message and discovered it to be a hoax.  

Several evident reasons led us to consider this message as fraudulent. The SMS language did not follow the same patterns as typical SBI communications. The communication contained spelling errors. One major factor which confirmed our inspection of it to be a fraud activity is the amount described in the text message. It did not correspond to the amount in the bank account. 

We recommended that the victim file a report with the Cybercrime Portal. We also warned him that he might get additional communications in the future. In such an occurrence, he may supply any link to unblock his account in subsequent emails. We told him not to click on any links. As a precaution, we recommended that he update his debit card and net banking credentials. These recommendations will render correct assistance, considering the urgency of the matter.  

Previous article
Next article


Please enter your comment!
Please enter your name here