Phone scammers in Russia have launched a staged, multi-step scheme that targets unsuspecting customers through a blend of impersonation and fear. The incident pattern has prompted warnings from the national financial regulator, citing a method that has already earned the nickname “Hit the primer,” and it is linked to a real case involving a well-known fintech service provider (as reported by official sources). The entire operation unfolds in two acts, relying on convincing yet fake representatives from telecoms, government agencies, or law enforcement to press victims into making rapid decisions about their money.
In the first act, a caller posing as a mobile operator’s representative claims that a customer’s service contract is about to expire. The caller urges the target to retrieve a verification code from an SMS to renew the agreement. The objective is to obtain the code and gain access to the victim’s account or services. Soon after, the supposed fraud is disclosed, creating a sense of urgency and confusion that primes the victim for the next stage. The sequence leaves the individual with a false security that their actions were part of a sanctioned renewal, while the underlying breach remains undetected at this stage.
The second act introduces additional fear and obligation. Fake agents from civil services or the police contact the victim again, offering guidance on protecting savings—advice that is framed as essential to safeguarding funds from a supposed ongoing threat. The victim is manipulated into believing that their money risks imminent loss unless it is immediately transferred or stored in a supposedly safe deposit box. In some versions, the so-called authorities suggest that the withdrawal is needed for a private investigation or other urgent purposes, which makes the action feel legitimate and time-sensitive. This creates a split-second decision environment in which rational scrutiny gives way to heightened anxiety.
Since the start of 2024, authorities have observed a marked rise in these attacks, with incident counts increasing by a factor of more than three and a half. Officials emphasize that the pattern hinges on social engineering, rapid escalation of fear, and the exploitation of trust in familiar institutions. The scammers often rely on procedural cues that resemble real procedures, including reference to service terms, verification steps, and the lawful powers of public bodies, which can blur the line between legitimate and fraudulent requests.
Experts note that the core vulnerability lies not in technology alone but in user behavior under pressure. The scam’s success depends on creating a believable narrative that makes the victim feel both informed and obligated to act. In practice, this means attackers script convincing dialogue, replicate logo-like branding, and mimic routine contact channels to appear official. The danger grows when victims combine multiple triggers—contract renewal anxiety, fear of losing access to critical services, and the misperception that swift action prevents longer-term damage.
Public guidance from financial and regulatory authorities stresses several practical steps to recognize and counteract this type of fraud. First, never share verification codes received by SMS or other channels with anyone, even if the caller sounds authoritative or references a recognized institution. Second, independently verify the caller’s identity by contacting the institution through official numbers or channels listed on the organization’s legitimate website. Third, if a prompt action is demanded, pause and reassess the situation before proceeding. In many cases, legitimate institutions will not pressure customers into rapid, one-off decisions that involve exposing account credentials or moving funds.
Victims who suspect they have encountered this or similar scams should report the incident to their financial institution immediately and file a formal complaint with the relevant regulatory body. Keeping a record of all communications, including call timing, numbers displayed on caller IDs, and the exact wording used by the caller, can be invaluable for investigations and for protecting others from similar schemes. Ongoing awareness campaigns and educational resources from banks and regulators aim to reduce susceptibility by clarifying standard verification procedures and illustrating red flags to watch for in real time.
People are urged to adopt a cautious mindset whenever confronted with requests to divulge security information, especially when the scenario combines seemingly legitimate service concerns with urgent, fear-driven prompts. When in doubt, step back, verify through official channels, and remember that reputable institutions will always provide safe, clearly defined steps for resolving any service-related issues without demanding rapid financial action or access credentials. As these scams evolve, staying informed and practicing prudent verification becomes the strongest defense for consumers and businesses alike. (Source attribution: Central Bank guidance, 2024–present.)