Thai Cyber Bank Fraud Gang Busted

Uploaded on 2016-09-08 in FREE TO VIEW, GOVERNMENT-Law Enforcement, TECHNOLOGY--Hackers

In the historic City Ayutthaya 40 miles north of Bangkok, in Thailand, the police have recently just caught a gang who stole personal information of an online auto parts trader through an elaborate, Internet-enabled scam to steal close to one million baht of his money.

Early this month, Phansuthee Meeluekij, 28, an auto parts trader who operates the business online and communicates with his customers via Facebook, lodged a complaint with local police, saying a total of 986,700 baht had been stolen from his Kasikornbank account. He also complained to the Technology Crime Suppression Division and submitted evidence including an online chat history between him and the suspects and photos of suspects taken from security cameras.

Police tracked the transactions of the suspects and their mobile phone use and eventually captured six suspects including three youths aged 17. The adult suspects were identified as Ekapoj Ratanakorn, 29, of Ratchaburi; Patanarospong Kansonthi, 33, of Si Sa Ket; and Surikrai Anumas, 30, of Kanchanaburi.

The six have allegedly admitted to the crime. They said they worked as a team and contacted the victim via Facebook pretending to be potential customers. Their actual aim was to lure Mr Phansuthee into giving them his personal information such as date of birth and bank account, mobile phone and ID card numbers. They then asked the victim to sign up for a mobile banking service for use to receive money transfers from them, which the victim did.

After the victim registered for the mobile banking service, the gang used personal information they had obtained to log on to the victim's banking account and then transferred the money to several other accounts to make it difficult to trace the money later.

After that they withdrew the money and paid members of the gang their share. To start off the scam, a 17-year-old gang member contacted the victim via Facebook and pretended to be a new customer. He asked for a copy of Mr Phansuthee's ID card and his bank account, claiming he wanted to verify if the owner of the bank account and the victim really were the same person so he would not have to worry that he might be conned by the auto parts trader.

The young suspect was later paid 200,000 baht for his role in the scam.

In the next step in the scam, another gang member posed as the victim and phoned the call centre of the bank where the victim has his account to inquire about his ledger balance, also using the personal information the gang had stolen. The gang also had someone contact the victim's mobile phone carrier requesting a new SIM card to be issued for the victim's phone number. Again, the caller pretended to be the victim.

With the new SIM card, the gang was able to log in to the victim's banking account and took out his money. The victim did not realise his money had gone because his SIM card had been disabled the moment the gang had a new card issued. Mr Phansuthee no longer received short messages from the mobile banking service confirming money transfers.

Police said Mr Surikrai had opened bank accounts to receive the money transfers from the victim's account. He later withdrew the money over the bank counter. For this, the gang paid him 5,000 baht. Mr Patanarospong, who owned a pickup truck used in the scam and took Mr Surikrai to open bank accounts, was paid 199,900 baht.

Mr Ekapoj, who owned the mobile phone the 17-year-old suspect used to steal money from the victim's account and who drove Mr Patanarospong's truck to take the other gang member to get the new SIM card and withdraw the money, received his cut of 250,000 baht.

Mr Wisarut produced a doctored copy of the victims' ID card by replacing Mr Phansuthee's photo with that of Mr Sayam who then used the fraudulent copy to obtain the new SIM card. They were paid 30,000 baht each.

According to police, the gang had previously committed nine similar scams, including a fake football bookie service, and made off with more than three million baht. The gang members spent the money they stole on gambling and entertainment. They have been charged with theft and with forgery of an official document.

Head of Ayutthaya police Pol Col Surapong Thammapithak said the gang may come across as hackers when in fact they operate as scammers stealing people's identities. He cautioned people to check carefully before giving personal information over the phone to someone they have not met. The gang members can be very persuasive.

Bangkok Post

 

« Rio 2016 Olympic Games: IoT Technologies Win
Who Are We In the Cyber World? »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CoSoSys Endpoint Protector

CoSoSys Endpoint Protector

Endpoint Protector by CoSoSys is an advanced all-in-one DLP solution for Windows, macOS, and Linux, that puts an end to unintentional data leaks and protects from malicious data theft.

World Privacy Forum (WPF)

World Privacy Forum (WPF)

The World Privacy Forum is a non-profit public interest research group that focuses on privacy and technology issues.

Site24x7

Site24x7

Site24x7 is an AI-powered observability platform for DevOps and IT operations.

SafeBreach

SafeBreach

SafeBreach's platform simulates hacker breach methods across the entire kill chain to identify breach scenarios in your environment before an attacker does.

ITU Arab Regional Cyber Security Center (ITU-ARCC)

ITU Arab Regional Cyber Security Center (ITU-ARCC)

ITU-ARCC acts as ITU’s cybersecurity hub in the Arab Region localizing and coordinating cybersecurity initiatives.

Applied Science and Technology Research Institute Company Limited (ASTRI)

Applied Science and Technology Research Institute Company Limited (ASTRI)

ASTRI's mission is to enhance Hong Kong’s competitiveness in technology-based industries through applied research in areas including Security & Data Sciences which encompasses cybersecurity.

PBOSecure

PBOSecure

PBOSecure is a dynamic and progressive IT consultancy company specializing in IT and Industrial Control System (ICS) security.

Slovenska Akreditacija (SA)

Slovenska Akreditacija (SA)

Slovenska Akreditacija (Slovenia Accreditation) is the national standards accreditation body for Slovenia.

Outsource UK

Outsource UK

Outsource UK is an independent recruitment company supplying highly-skilled technology, change and engineering talent to clients within a range of specialist sectors including Cyber Security.

Korn Ferry

Korn Ferry

Korn Ferry is a global organizational consulting firm, synchronizing strategy and talent to drive superior performance for our clients in key areas including cybersecurity.

Sonrai Security

Sonrai Security

Sonrai Security delivers an enterprise security platform focused on identity and data protection inside AWS, Azure, and Google Cloud.

Tactical Network Systems (TNS)

Tactical Network Systems (TNS)

Tactical Network Solutions helps you discover hidden attack vectors in IoT and connected devices before someone else does.

Scholarly Networks Security Initiative (SNSI)

Scholarly Networks Security Initiative (SNSI)

SNSI brings together publishers and institutions to solve cyber-challenges threatening the integrity of the scientific record, scholarly systems and the safety of personal data.

Federal Bureau of Investigation (FBI) - USA

Federal Bureau of Investigation (FBI) - USA

The mission of the FBI is to protect and defend against intelligence threats, uphold and enforce criminal laws, and provide criminal justice services.

Vorlon

Vorlon

Vorlon's agentless patent-pending solution facilitates risk profiling of apps, and provides AI-driven behavioral analytics with response recommendations.

OryxAlign

OryxAlign

OryxAlign offer managed IT and cyber security, cloud and digital transformation, and tailored professional and consulting services.