• 01525 331060
Bank scammer

Case Study

How We Prevented Hackers Emptying A Company Bank Account

Problem

Recently, one of our client's users experienced a sophisticated banking scam attempt. Fortunately, the scammer was unsuccessful, but this incident highlights the importance of vigilance and proper security measures. Here's a detailed account of what happened and the steps we took to prevent a potential disaster.

Woman with mobile phone

The Scam Attempt

A user received a highly convincing phone call from someone claiming to be from Barclays, reporting a fraudulent transaction on their company account. The caller provided a number for the user to call back to verify the claim. Before the user could call back, the scammer called again from a No Caller ID number and instructed the user to visit barclays.net to check the status of Mobile Device Access on their device.

The caller insisted that Mobile Device Access had been disabled due to the supposed fraudulent activity. They then requested remote access to the user’s device via AnyDesk to resolve the issue. The user complied, allowing the caller remote access and the request for elevated admin rights, which triggered the user's suspicion and prompted them to contact us immediately.

Solution

How we intervened to protect the client

Our First Action

Upon being contacted by the user, our first action was to instruct them to contact Barclays directly to verify the legitimacy of the call. While the user was on a lengthy call with Barclays, we performed a virus scan on the device, which fortunately did not detect any malicious software.

The Next Step

The next critical step was ensuring the device was turned off to prevent the scammer from maintaining any access. After a 30-minute call, Barclays confirmed there had been no fraudulent activity on the account. They also stressed that had the user granted admin rights, the scammer could have potentially emptied the company bank account.

With this confirmation, we made a physical visit to the site and performed the following actions:

  • Confirmed with Barclays the legitimacy of the call.

  • Ensured the affected computer was turned off and disconnected from the network.

  • Reset all accounts the user had access to.

  • Advised the user to reset passwords for all websites they use.

  • Set up the user on a new device.

  • Wiped the compromised device and reinstalled the operating system.

The Result

The main result of our actions/intervention was that the client was saved from a serious hacking attempt which according to Barclays, could have resulted in the loss of all company funds.

The client also now has a deeper understanding of the importance of not granting local admin rights to users, as allowing users to make significant changes on their computers can lead to severe consequences in the event of a cyber attack.

Protect Your Business From Scams