Thu, Nov 21, 2024 | Jumada al-Awwal 19, 1446 | DXB ktweather icon0°C

UAE scam alert: Got an email from Dubai Police, Salik, asking for payment? Beware

Authorities have repeatedly warned people that official entities will never ask for their OTP or credit card details

Published: Wed 26 Jul 2023, 5:45 PM

Updated: Thu 27 Jul 2023, 1:50 PM

Top Stories

Syrian national Mohammed Yaseen got a call from 'Dubai Police', asking him to update his details on their system. "I was certain it was a scam, and was about to disconnect the call when they sent me an OTP," he said, speaking to Khaleej Times. "The OTP came from the same chain of text messages from Dubai Police which earlier sent me details about fines and accident reports. So, I continued the call.”

During the interaction, the callers gave Yaseen details about his Emirates ID and bank details, further cementing his belief that the caller was not an imposter but genuinely from Dubai Police.

“It was when they started inquiring about my credit card details that I felt something was fishy,” he said. “I questioned them about it and they assured me that it was important. But I knew that no legitimate authority would ask me for credit card details , so I disconnected the call.”

Yaseen now realises that he almost fell victim to a scam in the name of Dubai Police that has been doing the rounds for a while. On Sunday, Dubai Police put out a warning on social media handle, urging people not to fall for phishing emails or deceitful tactics.

Several residents commented on the thread and shared emails they have received from scammers. Twitter user Aliyaan shared a screenshot of an email he received asking him to pay a Dubai Police fine.

“Kindly note I don’t have a car and driving license, but I’m getting this email,” he tweeted along with the following photo.

Another Twitter user @Meerazdiary also posted how she had reported a similar email to the Dubai Police department.

Several other Twitter users chimed in with their own experiences, with many being targeted despite not even being UAE residents. Dubai Police have advised most commentators to report it to their e-crime division.

Types of scams

While Dubai Police has issued warnings about phishing emails, several other frauds are doing the rounds. One such scam is related to the Salik toll in Dubai. “I was surprised when I got a Salik notification,” said a Dubai resident who did not wish to be identified. “I had topped up my account a couple of days ago and took a good look at the message and realised it was a scam.”

Previously, several readers have reported how links to popular restaurants and scam calls duped them. Residents have also reported encountering scammers when posting items on classified websites.

Ahmed Kabeer Shah had posted a mobile phone for sale on a popular website when he got a call from someone claiming to be interested in it. “He offered a decent amount and told me he would courier the money because he was out of town,” he said. “Soon, I got a message from Emirates Post saying I had a courier and should enter my details.”

The moment Shah entered his details, the entire amount of Dh180 in his bank account was wiped out. “It was stupid of me to do,” he admitted. “But I am thankful because, until the previous day, I had a huge amount in my account. I was lucky to lose only Dh.180 and I hope my story is a lesson to others.”

Increase in phishing

A mid-year study by cybersecurity firm Acronis revealed earlier this month that phishing attacks in the Mena region had increased by 464%. According to the report, phishing is the primary method criminals use to unearth login credentials.

“Phishing remains the foremost threat faced by both organizations and individuals, underscoring the importance of identifying phishing emails,” said Sara Pinheiro, Distribution Team Manager MEA/South Asia, Acronis.

The biannual threat report based on data captured from more than one million global endpoints shows that criminals are scaling and enhancing how they compromise systems and execute attacks.

Dubai Police and several other authorities have repeatedly warned people that official entities will never ask for their One Time Password (OTP) and/ or credit card details.

Pinheiro shared some tips on how to spot a phishing email:

  • An unfamiliar tone or greeting: Phishing emails often use generic or vague greetings, such as "Dear Customer" instead of addressing you by your name. Legitimate organizations usually personalize their emails with your name or other relevant details.
  • Grammar and spelling errors: Phishing emails may contain noticeable mistakes in grammar, spelling, or punctuation.
  • Inconsistent email addresses and links: Check the sender's email address carefully. Phishers often use email addresses that resemble legitimate ones but may have subtle differences. Hover your mouse over links without clicking to see the actual destination URL.
  • Suspicious attachments: Be cautious of email attachments, especially if they come from unknown sources or contain unexpected file types (e.g., .exe, .zip). These attachments may contain malware.
  • Requests for sensitive information: Legitimate companies rarely ask for sensitive information, such as passwords or credit card details, via email. Treat any such request with scepticism and verify its authenticity through official channels.
  • Threatening or urgent messages: Phishers often use scare tactics, such as threatening to close an account or impose fines, to create a sense of urgency. Be wary of emails that pressure you to take immediate action.

ALSO READ:



Next Story