The National Bank of Romania (BNR) is warning about the intensification of fraud attempts through phone calls, messages and websites that conceal an official communication of t BNR in order to obtain personal data or to perform actions that may lead to financial transactions based on false information.
„Lately, there has been an increase in spoofing attempts, – phone calls, messages and websites that conceal an official communication of a banking institution or a state authority (ANAF, Romanian Police, etc.) – in which the visual identity of the National Bank of Romania (NBR) has been used, in an attempt to obtain personal data or perform actions that may lead to financial transactions based on false information (such as tips or investment recommendations). Other attackers have requested the installation of applications, opening links or authorising actions on the phone through fingerprinting. Suchattempts are aimed at identity theft, installing malware or carrying out financial transactions on your behalf,” BNR said in a press statement releasedon Thursday.
According to the bank, BNR’s official on-line communications are made exclusively through the bnr.ro websites, bnro.ro and the bank’s accounts on the LinkedIn, X, Instagram and YouTube social media platforms.
At the same time, BNR says that such manipulation attempts can also include phone calls, audio or even video messages (deepfakes) in which people presenting themselves as BNR representatives can appear. These methods aim to create the appearance of an official communication, in order to gain the trust of the victim.
„We reiterate that BNR never requests, by e-mail, telephone, text messages or instant messages, personal data or other confidential information about loans, cards or bank accounts, nor to make money transfers. Also, BNR representatives do not ask for information on personal income, loans requested/approved/granted by the BNR or other professional creditors or other financial aspects. If there are opportunities to invest or obtain quick, easy and consistent gains, it is most likely a spoofing attack.”
BNR recommends users not to provide personal data and to immediately report such instances to the relevant authorities if they are contacted or interact with such fake materials or websites.
AGERPRES
