- This topic has 2 replies, 2 voices, and was last updated 1 year, 4 months ago by
.
-
Posts
-
-
UHi everyone,
I recently fell victim to a phishing scam and need advice on what to do next.
On **18th February 2025**, I received an SMS claiming to be from **India Post**, i was outside busy with something so i did not notice the spelling mistake in the link. It was asking me to update my delivery address for a package I had ordered. The link directed me to a site that looked almost identical to the official **India Post** website.
The site asked for my delivery details and then requested credit card information for “verification.” Since I don’t have a credit card, I used my friend’s card (with his permission) and entered the details, including the **card PIN** — no OTP was asked for.
Shortly after, my friend noticed **two unauthorized tap-to-pay transactions** close to 4.7k each
Total loss: **₹9**.5k
There were also multiple failed transactions due to the card hitting its credit limit. The successful transactions happened in **Lucknow, Uttar Pradesh**, while we were in a different city.
We’ve already blocked the card and reported the fraud to the bank (waiting on their response).
we also filed a cybercrime complaint. Is this a total loss on my side or is there hope?
-
RLesson:
To have two accounts. Like Paytm wallet. And have around 2k in that a/c. And always use that. But
[https://www.imss.caltech.edu/services/security/recommendations/how-to-read-urls](https://www.imss.caltech.edu/services/security/recommendations/how-to-read-urls)
Https doesn’t mean secure.
You can always use the app on ur phone to change the address. Make sure to go through the app.
Always hover over the link and check the address.
I might as well go to see the domain and where it was registered and for whom. At whoIs website.
Phishing attacks are serious and ask for immediate attention.
-
-
