The Maldives Police Service (MPS) has urged the public to use two-factor authentication features when accessing internet banking services, change passwords periodically, and avoid using the same password for multiple accounts to avoid scams.
In a press release, MPS stated that it is actively working towards identifying and tracking down those responsible for fraudulent activities but that it was important for individuals to take measures to protect themselves from falling victim to these scams. As such, the police service urged users to be cautious when clicking on links sent via SMS or email and to verify the authenticity of the website before entering any sensitive information.
MPS stated that internet fraud has become increasingly prevalent and that criminals are devising new and sophisticated methods to compromise the security of internet users and gain unauthorised access to sensitive information such as passwords, email addresses, and bank account details. MPS reported a surge in cases of fraudulent money transactions being carried out through internet banking, with many incidents linked to compromised login credentials.
Additionally, MPS stated that recent investigations found that fraudsters obtain internet banking usernames and passwords of unsuspecting victims through various means, including phishing scams. These scams often involve the use of fraudulent links sent via SMS or email in the name of reputable institutions and organisations. Unsuspecting individuals who click on these links are directed to websites that appear to be legitimate but are, in fact, fraudulent. Once the victims enter their login credentials, the scammers can access their accounts and carry out unauthorised money transactions.
Furthermore, MPS stated that in some instances it has been observed that internet banking usernames and passwords are saved in the password manager of email accounts. As a result, when the email is compromised, scammers can access this information, providing unrestricted access to internet banking services. Moreover, individuals frequently access internet banking and email services from devices other than their own, and passwords are saved in the browsers of such devices, which makes it easier for scammers to access sensitive information.
MPS recommended the public determine whether their email addresses and passwords have been leaked in any international data breaches by using the https://haveibeenpwned.com link. The website provides information on data breaches and security breaches that have occurred globally.