Business | Telecoms

Businessman loses Dh10,000 through phone 'recharge'

Businessman finds Dh10,000 siphoned off overnight from his bank account in cyber scam

  • By Jay B. Hilotin, Chief Reporter
  • Published: 00:00 December 30, 2010
  • XPRESS

  • Image Credit: Xpress/Oliver Clarke
  • Shankear got 20 messages for etisalat re-charge transactions worth Dh500 each while he was fast asleep
Image 1 of 2
12

Dubai: A city businessman woke up to the shock of his life when a chilling barrage of SMSes informed him that Dh10,000 had been deducted overnight from his Mashreq bank account recently.

Kannaiyan Shankear, a 40-year-old Dubai-born Indian businessman who owns restaurants and textile shops, said 20 etisalat re-charge transactions worth Dh500 each were deducted from his account between 11.30pm and 2am on December 6 and 7, while he was sleeping.

Scary loss

The amounts were credited to different mobile numbers which went ‘dead' the next morning, said Shankear. "This is an elaborate scam," Shankear said. Following the midnight rip-off, he lodged a complaint with the bank. "The customer service officer I talked to informed me that I wasn't the only victim. It's all done in the night, when everyone is fast asleep," he said.

Shankear said he had neither applied for nor activated online transactions, adding: "I only have an ‘online view' facility. But not online transactions. Never." Shankear said he normally shuts down his mobile by 10.30pm. However, on December 7, when he switched on his cell phone at 6.30am, he got 20 messages from his bank detailing the transactions.

"How can they approve such series of transactions? Maybe they would approve it once or twice, but not 20 times, that too within the same hour, without seeing anything unusual," he said. He also filed a police complaint upon the bank's recommendation. "If your bank balance is reduced while you're sleeping … it's scary. There should be a better security firewall," he said. A Mashreq bank spokesperson said Shankear was hit by a "phishing" scam (false e-mail alerts that lead victims to fake websites, through which cyber-criminals break user names and passwords).

Security systems

"We discovered that a highly sophisticated phishing campaign resulted in Mashreq customers falling victims to an online fraud," the spokesperson said, adding no breach of the bank's security systems occurred. "Mr Shankear has access to MashreqOnline since December 15, 2009... We have retrieved several successful logins to the account, hence it is active and the customer is aware of it," the spokesperson said.

Asked whether Shankear will be able to recover the amount, the spokesperson said: "We sympathise with Mr Shankear's case and would like to offer him all assistance to take this further with the authorities. However, as per the published MashreqOnline Banking terms, the customer is responsible for the security of his or her user ID and password...."

Shankear said he has proof no online transactions were done on his account till the hackers hit.

Comments (10)

  1. Added 09:55 January 2, 2011

    I too was robbed of Dh2,000 from my account early December. I have now closed my account with Mashreq Bank. I would suggest not use Mashreq’s online banking. The problem is with their internet login system.

    Anonymous, Dubai, United Arab Emirates

  2. Added 09:47 December 31, 2010

    I also lost Dh28,500 in the same manner on February 18, 2010. I have made several complaints, but have got no result to date.

    Rahil, Dubai, United Arab Emirates

  3. Added 21:06 December 30, 2010

    What’s the guarantee that Mashreq’s employee hasn’t disclosed customer user IDs and passwords to ‘phishing’ websites? Why has this not happened to customers of other banks?

    Anonymous, Shef, United Kingdom

  4. Added 19:31 December 30, 2010

    Dear Shankear, I also lost Dh2,000 via “phone recharge” from my Mashreq Bank account recently. Kindly let me know on 050-768 2760 as to what can be done as the next step.

    Sunil Mohammad, Al Ain, United Arab Emirates

  5. Added 17:43 December 30, 2010

    This is exactly what’s happening with banks nowadays. No bank is concerned about the security regarding customer transactions. I have an account with an international bank in Dubai and have subscribed for the SMS alert facility wherever there is a transaction. I transacted Dh8,000 in just two days, but didn’t receive any information regarding the same. It’s sad that banks only know how to harass customers if they are late in paying their dues.

    Anonymous, Dubai, United Arab Emirates

  6. Added 17:32 December 30, 2010

    If this is the response from Mashreq Bank, then it’s better to withdraw all the money and close the account. I feel the bank has to be more responsible as far as customer transactions are concerned. I had a similar case in an online transaction with ADCB. But ADCB immediately called me up, confirmed with me and credited back my money. It’s not easy when you lose your hard earned money over a night.

    Anonymous, Dubai, United Arab Emirates

  7. Added 16:51 December 30, 2010

    I don’t understand how the bank is at fault. I have been using Mashreq Bank’s services for almost three years now, along with other banks, and I can vouch that they are way ahead in terms of electronic transactions.

    Anonymous, Dubai, United Arab Emirates

  8. Added 13:43 December 30, 2010

    I have been receiving several bank-related transactions messages from Mashreq Bank, HSBC and NBAD every now and then on my e-mail ID that I never use. The messages look like real e-mails from these banks, with contact details and the attached website. But I suggest, we need to be really careful and not disclose log-in details in the email as it may lead you to a wrong website. I highly recommend -- as the bank always suggests -- to regularly change your password for security purposes.

    Isabel Saguinsin II, Dubai, United Arab Emirates

  9. Added 13:32 December 30, 2010

    It is the responsibility of the bank to make sure that the customer’s money is safe as long as it is in the account. Banks just cannot shy away from this responsibility. If someone hacks the bank’s security system and steals customers’ money, the efficiency of the bank will surely be questioned.

    Anonymous, Abu Dhabi, United Arab Emirates

  10. Added 12:51 December 30, 2010

    I have also never used Mashreq Bank’s online services. However, in August 2010, someone hacked my credit card six times and siphoned off multiples of Dh500 to different du telephone numbers. I reported the matter to the bank, but the officials there took a long time to stop /block my card. Later, upon regular follow-ups, the bank sent a regret letter stating that I must forget whatever has already been siphoned off. I was very disappointed with the bank's response.

    M. Nadeem Siddiqui , Dubai , United Arab Emirates

More from Telecoms

  1. Telco Roshan confident of continued growth

  2. TRA finalises inter-network number portability

  3. Etisalat to pull out of India, end Etisalat DB

  4. BlackBerry business services disrupted

All articles in Telecoms

More from Business

XPRESS
Popular in Business

More from Business

Douglas Okasaki

Blog: Connection

Douglas Okasaki writes about media and more

Business Editor's choice