Russian fraudsters have started tweaking their scam scripts by using popular music from bank advertisements to simulate genuine contact centers. A Telegram post on Baza links to Bank of Russia analysts who describe a fresh hacker technique being deployed by criminals. The sequence plays out in a way that confuses victims and invites trust, because the caller appears to be connected to a legitimate banking operation.
The scammer initiates a call to the target. When the recipient returns the call, they hear a familiar tune that resembles legitimate bank communications. This sonic cue can create a sense of familiarity and confidence, tricking the victim into thinking the caller is truly representing the bank. A fraudulent call-center agent then engages in a range of pressure tactics, attempting to coax the victim into revealing SMS codes, login credentials, and passwords. The tactic hinges on social engineering, exploiting routine banking rituals to bypass initial skepticism. (source: Baza, with attribution to Bank of Russia analysts)
If the victim discloses these details, the scam has a higher chance of seeding unauthorized withdrawals or transfers. The caller’s aim is to weaponize trust and fast-paced interaction to extract sensitive information before safeguards can intervene. Banks in Russia have repeatedly warned that time pressure and the promise of quick remedies are common incentives used by criminals to speed up the theft process. (source: Central Bank of the Russian Federation reports)
On October 13, the Central Bank of the Russian Federation announced a new layer in the fraud scheme. Criminals promise victims a cash return at the Bank of Russia reception in Moscow, steering them toward physical collection as a way to seem legitimate. Earlier variants pressured victims to move funds to a so‑called safe account, with additional threats of criminal consequences for sharing details about the investigation. The scammers then push for an appointment at Bank of Russia’s short number, securing an in-person interaction that deepens trust and often results in money transfers directly to the criminals. (source: Central Bank of the Russian Federation press release)
In the latest quarterly data, the Central Bank reported a notable rise in unauthorized transactions during April–June 2023, tallying 3.62 billion rubles in losses against a prior period of 4.5 billion rubles. The count of successful attempts to drain funds from Russian accounts climbed as well. Fraudsters targeted bank accounts 279,706 times in Q2, up from 252,111 in Q1. More than two-fifths of these attacks, 46.5 percent, relied on social engineering—deceiving users into revealing card information. The volume of incidents where attackers gained access to authentication data also grew, signaling a broader risk landscape. (source: Central Bank of the Russian Federation statistics, with attribution to Bank of Russia monitoring reports)
Industry observers note that the threat ecosystem is evolving, with criminals layering social engineering tactics on top of previously employed techniques. Earlier schemes often included SIM card fraud to reroute verification messages or to exploit mobile identity. The trend toward hybrid approaches—combining voice calls, familiar audio cues, and rapid social manipulation—appears to be a persistent pattern in these campaigns. Consumers are urged to remain vigilant, verify caller identity through official channels, and never disclose codes, passwords, or one-time passcodes issued via SMS or apps. (source: Bank security advisories and periodic summaries)