An expert in cybercrime, Maria Aperadorahas launched a forceful warning on Tiktok on a new scam that is already circulating between BBVA clients. Fraud, which mimics the official communications of the bank, Use the phishing technique to cheat the usermaking him believe that his account has been compromised.
The video published by Aberador has generated concern on social networks, since it exposes step by step how deception works and how You can fall into the trap with a single click.
The criminologist details that the mail, which appears to proceed from the bank, warns of an alleged login unauthorized from an unknown device. Then, computer pirates invite the user to change their password through an attached link in the message.
The problem, says the expert, is that Clicking, the victim accesses a web page that perfectly mimics the official BBVA portal. If you write your data there, you are delivering them directly to the cybercounts. The ultimate goal is total access to your bank accounts, which can lead to robberies, impersonation of identity and serious economic consequences.
How the new BBVA scam works
Phishing attacks is a social engineering technique designed to deceive the user and get personal information. In the banking field, this usually involves emails or messages that appear to come from financial entities, with messages that appeal to the urgency or account security.
It should be noted that the BBVA case is no exception, and The scammers have struggled to replicate both the design and the tone of the usual communications of the bank. According to the criminologist, the false message notifies an attempt to access from an unidentified device and requests to change the password «for security reasons».
To do this, Includes a link that directs a cloned website of the bankidentical in appearance, but false. Once the user introduces their credentials on this page, criminals capture them immediately. From that moment, they have a free way to enter the real bank account of the user, move funds, make transfers or even modify personal data.
María Aperadora insists that no banking institution never requests the change of password by emails with direct links. «The user believes that he is ensuring his account, but he is actually opening the door to those who want to empty it.».
It also underlines that the only reliable way to modify sensitive information is directly accessing the official website of the bank, writing the address manually in the browser, and never through unsecured links.
How to avoid falling into this and many other scams
Montaje/Unplash/Freepik
To avoid falling into this type of traps, The expert recommends distrusting any message that arrives by mail or SMS, urging to change keys or confirm access. We must always review the sender’s address, look for spelling errors or incoherence in the content, and check the URL of the site to which it directs us.
In case of doubt, it is better to directly contact the bank. In addition, it recommends activating the bank notification system to be aware of any movement in real time. The danger of this scam is not limited solely to access to your funds.
If criminals access your credentials, they could also use your data to commit other crimes, such as requesting loans to your name, hiring fraudulent services or reselling your information in illegal markets, such as in the Dark Web. On a personal level, this means not only a threat, but a serious loss of privacy and possible legal complications.
In an increasingly vulnerable digital environment, protecting your data is as important as protecting your physical goods. It is not about living with fear, but to assume that cybersecurity begins with being well informed and maintaining a preventive attitude towards any suspicious communication.
Know How we work in NoticiasVE.
Tags: Scam