A consumer named Kent was recently targeted by a sophisticated web injection scam while banking online, where a fake pop-up appeared mid-transaction to steal his personal data, prompting security alerts for users.
A Deceptive Fake Bank Verification Pop-up
The incident occurred twice in one week while Kent was actively managing his finances. In the middle of a transaction, a pop-up box appeared that mimicked his financial institution’s official logo and design, making it look authentic.
“Two times this week, I had a financial account open, and I was doing transactions,” Kent stated. “In the middle of a transaction, up pops a box…It asked for my email address to confirm, then my phone number. Sadly, I did.
Then I saw about four or five seconds of a screen named CREDIT DONKEY. At that point, I woke up and decided it was a scam.
I immediately closed down my computer and called the number on the back of my financial card to report it.”
How a Web Injection Scam Works
This type of attack is known as a web injection scam, which hijacks an active browser session on a legitimate website. The malware then overlays a fake verification or login screen designed to steal sensitive information.
Because the pop-up appears while a user is already logged into a trusted site, it can be very convincing. The primary objective for scammers is to capture login credentials, personal information, or multifactor authentication codes.
What to Do After an Online Banking Scam
After a potential compromise, experts advise immediately checking all recent transactions and enabling alerts for new logins or transfers. It is also crucial to contact the financial institution by phone and follow up with a secure message or letter to create a formal record of the incident.
Victims should immediately update their passwords with strong, unique credentials, which can be managed using a password manager like NordPass. Additionally, running a scan with a trusted antivirus program can remove any hidden phishing scripts or malware from the device.
Proactive Measures and Credit Freeze After Identity Theft
To enhance security, consumers should enable multifactor authentication for banking, preferably using an app-based code from services like Google Authenticator or Authy instead of SMS. To limit exposure, personal data removal services can scrub information from data broker sites that scammers often use.
A critical step is to place a free credit freeze after identity theft with the three major credit bureaus: Equifax, Experian, and TransUnion. This action prevents criminals from opening new accounts in your name.
For ongoing monitoring, identity theft protection services like Identity Guard can alert you to the misuse of your personal information.
