Nirosh Ananda, the Chief Information Security Officer of the Sri Lanka Computer Emergency Response Forum (SLCERT), has raised concerns about a rise in fraudulent activities carried out via the WhatsApp network.
According to Ananda, several high-profile individuals in the country have had their accounts hacked, leading to fraudulent messages being sent to their contacts, soliciting money.
Reports have emerged of people being deceived into transferring funds to bank accounts shared through these messages, believing them to be genuine requests.
Ananda explained that such incidents often begin when the targeted individual receives a phone call or a link to an online meeting. Initially, it might appear as an invitation to a lecture or event. Shortly after receiving the invitation, the individual is sent a one-time passcode (OTP), which is then used to access their account. Once access is gained, a message is sent requesting an urgent money transfer to a specified account.
The Sri Lanka Computer Emergency Response Forum urges the public to exercise caution and not share OTPs with anyone. Additionally, people are advised to avoid adding unknown individuals to their network and to refrain from sending money to anyone without verifying the authenticity of the request.
