Password recovery easy payment. MTS "Easy payment" - fraudsters: who got and what to do

A year and a half ago, I gave my father a tablet and taught him to use it. He quickly mastered the technique, and often surf on the Internet. Two months ago, he told me that money had become suspiciously quickly leaving the room. At the MTS office they said that paid services  the tablet number is not connected, and I calmed down for a while, considering that these are minor inconsistencies with payment. In the incoming SMS there was only one spam, and I did not attach any importance to this SMS.

But a month later, my father told me that the leak of money from the account was more than noticeable, and I decided to look at the incoming SMS on the tablet. Among the incoming were found two SMS, written in the image and likeness of the one that I brought at the beginning of the post. That is, it was reported that the subscriber subscribed to two sites, one with movies, the other with porn. I immediately turned off both subscriptions, and calculated the total damage: it amounted to about 1,140 rubles in almost two months. Since the amount is decent, I decided to win it from MTS.

The first part of the Merleson Ballet.

First of all, I made a call to the MTS support service. After a 15-minute wait during a conversation with the operator, he took my side, and said that there were fraudulent actions, and it was necessary to write a claim for a refund.

After that, a visit was made to the office of the MTS company, where the SIM card was previously purchased. They answered to my request that the paid services were NOT connected to the number. When I asked where the money went for two months, they told me that they had no idea, and again, they advised me to write a claim for a refund. What was done. After the claim was handed over to the office workers and I received a copy of the complaint at my request, they told me that they would contact me within 14 days.

The claim was twice given my contact phone number (Megaphone), as well as the number of the tablet from which the money was withdrawn.

Seventeen days passed. From the MTS company, not a single number received an answer or greeting. I called the support service again and briefly recounted the whole situation. This time, MTS surprised me.

First, I was informed that MTS contacted me and sent messages with a reply to the contact number. I did not receive any messages.
Secondly, MTS refused to return the funds, because my claim was reviewed, and the result of the decision was this: all services were provided to me correctly, and there are no grounds for returning funds.
Thirdly, the MTS company decided to transfer 300 rubles to me for a number, because I, as its client, wrote a complaint. I asked the operator if this amount of 300 rubles was a partial recognition that MTS had taken fraudulent actions against me, and by the way, why it was 300 rubles, and where exactly this amount was spelled out in my contract with MTS? There was no clear answer to my question. I told the operator that the gifts from the MTS company are a purely private matter of this company, but I am interested in the return of the amount of 1,140 rubles and in that volume. The operator told me that in this particular case, the MTS company is only an intermediary between me and the content providers, and that if I even sue me for the content provider. My reasonable comments about the fact that the content provider subscribed to the SMS as MTSPodpiski, and therefore, is directly related to the MTS company itself, I was given a universal answer: "Write a claim."

The second part of the Merleson Ballet.

I wrote the second claim after examining the situation with other victims on the Internet. The main core of the claim were four points. I quote them completely.

1. I did not connect and did not subscribe to any paid services to the number 917xxxxxxxx. It is easy to check, if you look at the list of all the commands and numbers that have been called from the number 917xxxxxxxx for all the time it is used. As I was confirmed at the MTS office, there is not a single line in the detail that could confirm the request for a paid service from the number 917ххххххх. On what basis was it concluded that I connected paid services?

2. I did not use the services that were connected to me, i.e. I have never visited the sites http: // ....., http: // ...... Thus, I, having allegedly subscribed to certain services, have never used them. Is not it illogical? The fact that I did not visit the above sites is just as easy to check by looking at the details.

3. In my contract with MTS, there is not a word about the intermediary activity of MTS, and any mention of the fact that MTS, acting as an intermediary, can dispose of my money. On what basis does the MTS company act as an intermediary between me and the content provider, and which clause of the agreement regulates its duties and responsibilities?

4. While the daily amount of 20 rubles per day was withdrawn from the number 917ххххххх, officially (as I was told at the MTS office) no paid services were connected to the number 917ххххххх. Hence the question: why were the funds withdrawn from the number?

After 4 days, checking the balance on the tablet, I found that it was replenished by more than 1,500 rubles. Although again, the decision taken by MTS did not inform me.

Funds that have been stolen from my number by fraud are returned. There were practically no expenses for this, not counting the journey by tram to the MTS office and back. I am preparing an appeal to Rospotrebnadzor, I hope they will be interested in this story, and especially the third item in the claim, which concerns the intermediary role of the MTS company, which operators of technical support service dismiss, and about which there is not a single word in the contract.

Methods of divorcing MTS subscribers today are enough. All subscribers know about them and are always on the lookout, but still fall for tricks. When many subscribers find out about the current scheme, the scammers come up with a new one. New in MTS fraud - " Easy payment"! There have already been quite a lot of operator users who have encountered this problem. MTS is in no hurry to take action. What is this - another trick of fraudsters or collusion of a group of persons?

MTS "Easy payment" - fraudsters. Who hit and how to return

Not so long ago, the mobile operator MTS offered a unique service “Easy payment”. Not all subscribers know about it. The service “Easy payment” is valid for all, without exception, and is not blocked, even at the request of the number owner. The essence of this service is the quick transfer of funds to any mobile numbers. The service, however, is very useful, especially when it is not possible to make a payment, and it becomes necessary to top up the balance, for example, for your friend.

The services, which featured money, have always attracted fraudsters. And the service “Easy payment” became for them a truly EASY profit. Of course, MTS took care of maximum protection of the subscriber balance, but one weak spot was not taken into account - the user himself!
  What is the "Easy Payment" MTS and fraudsters? This is a balance transfer from your account to the account of another subscriber. mobile operator  or MTS by using the service “Easy payment” and obtaining the code sent to the owner via SMS.

In order to figure out how to return the stolen funds, it is necessary to consider in more detail the course of the actions of intruders. This will help prevent similar divorces in the future and return the stolen balance.

What is the "Easy payment" MTS and fraudsters: how the scheme works

The service "Easy payment" requires the introduction of a password for authorization. The numeric value is generated automatically and sent to the user's phone number. mobile phone. The protection system is standard. A similar identification option is used even by large financial organizations. The high level of protection is due to the lack of the possibility of hacking code generated automatically.

What is the divorce? We all know very well that those who came to personal number  or email code can not be reported to unauthorized persons. Any application and system always notify about it, but MTS did not even bother to notify all customers about the connection of the Easy Payment service, which most people misled. How did the attackers manage to trick mobile subscribers?

There are several variants of the scheme of theft, but they all have a similar structure:

• A person calls to a subscriber and is represented by an employee of MTS. An attacker can tell any legend: mistakenly connecting a service, blocking an account, or winning a valid promotion. Whatever he says, this will certainly interest the MTS client.
• Then he will offer you a simple solution to the existing question - sending an SMS confirmation, and you will inform him of the code to confirm the operation.
• As a result, you receive a notification about the debiting of a certain amount from the balance.

In fact, there is simply no situation. The attacker leaves the request, using the service "Easy payment", and the code, you yourself and, moreover, voluntarily inform him. The code allows the fraudster to get access to your personal account, after which he has the opportunity to manage his mobile account as he sees fit.

A huge disadvantage of the service provided by MTS is the absence of the need to confirm financial transactions when using the Easy Transfer service. If this measure was provided, then the attackers would not be able to get cash  In a similar way.

What should I do if deception has already occurred?

Please note that even when writing an application for a refund, the entire amount debited from the account will not be refunded. MTS operators claim that the commission charged to each subscriber during balance transfer will not be returned. After all, the service, in fact, was provided.

MTS "Easy payment" - scammers! Who got to this trick: follow these steps to help recover the money stolen by hackers:

• First, do not replenish the balance, because all funds received on the account will be transferred to the attacker.
• Log into the "Easy payment" system and change the password, then go through authorization. After these actions, the fraudster will no longer be able to use your personal account.
• Top up balance. Do not tell anyone the secret information! MTS employees will not solve the problems in this way. It is excluded!
• Log in to your personal account from the computer in the "Payment Management" section and you will see a list of completed transactions. Print out the receipts and go to the branch of the mobile operator to whose account the subscriber has transferred the funds.
• Write the application on the sample, specify all the necessary data and the application - printed receipts.
• Money will be returned to the account.

It is impossible to disable the service "Easy payment", but to block the transfer of funds to personal account  - you're welcome! Contact the operator to solve this problem, and attackers in the future will not be able to steal money from your account.

All "happy" users of the mobile operator MTS are strongly recommended to write an application for disabling the service "Easy payment" !!! Preface. To begin with, I did not suspect the existence of this service, although I have been using Simka for about 10 years and in no case did I connect it myself. As it turned out, it is connected by default to all. As far as I know the service "easy payment" appeared in 2011 and was automatically connected without my knowledge. And it seems to be all the same, only through this “service” do they steal all the money from the phone and no password changes will help. The bottom line. On November 3 in the evening at 20:52 I received a number of SMS with the content: "Payment was successfully completed. Transaction ....". Immediately (through a computer) I went to my personal account, changed my password from a random one sent by SMS to a complex personal account and looked at the “archive of operation” - no one entered my personal account. But here in the payments section gaped transactions totaling 700 rubles, made through "easy payment" to the Yandex.Money account number. Immediately began to peck on all support - from VK to mail. Yandex issued a duty "the attacker's account is blocked, but it is not possible to return the funds, since they were not purchased at all." - Well, they say that they are not to blame here and the service is not theirs. But MTS on all fronts with a delay of a day or two answered: "If you assume that money has been withdrawn from your account fraudulently, please contact the law enforcement agencies. We recommend changing the password from your personal account to a more complex one. Restrict access to specified third-party SIM card. " Moreover, they answered all the questions in this way, even with regard to HOW it could be done without entering my personal account, without having a password and not receiving any requests from my mobile number (for details, everything is clean). - You can say nothing about viruses - Kaspersky licenses. As a result, on November 7, he wrote a written statement to disconnect “Easy payment” and debriefing on this issue - the consultant assured that all applications are reviewed for 2 weeks .. It is noteworthy that the existence of “Easy payment” was a discovery for consultants ... - This same The day I was turned off the easy payment and was told that they had sent my application to the "relevant department." Exactly 2 weeks have passed since the announcement ... - There are no movements on the application. But in the evening, for no reason at all, the SMS comes: "The service is not available for you. Contact the support service ...", and I have only one "service" blocked. I looked in my account "archive operations" - everything is clean. In other words: the unknown person again tried to withdraw money through the "Easy payment" and stopped him not by changing the password, but by banning the service !!! On the Internet for "easy payment" whole mountains of disgruntled messages with the conclusion that if they steal once, they will steal constantly and changing the password will not help. Conclusion. The most logical conclusions follow: either the protection of contact data resembles a sieve, or they have got the "beauty" draining user data. In conclusion, I repeat: if you still want to use the services of the MTS, do not wait for "thundering out of the blue", turn off the "Easy payment" at the first convenient opportunity!

Here is a bit of space on this topic.
----------------------

Just yesterday I received a call from this number. The young man said that he could not get access to his computer, but to my question: “And what do I have to do with it?”, I received an answer that he had a similar phone number and he mixed up one number, therefore I should receive an SMS with a password access. I replied that I did not receive any SMS. Then, the young man assured that in the near future it will come and asked to give him a password when he calls back later.

The first thing that aroused my suspicion was that the number from which they called me was different from my not by one digit at all. Then the following message came from MTS: "IMPORTANT: Do not tell anyone the received code! Password recovery code to the Easy Payment application is such. If you did not request a password change, then immediately contact MTS support service at 8-800 -250-0890 "

After this message, my suspicions increased, because about the same messages come after paying for paid services in social networks. Then I decided to understand the situation. I called the specified MTS number, where I was answered by a robot offering to further push one of the numbers. Honestly, I didn’t figure out to whom exactly I had to report this to the support service, but I firmly decided that no one would call the caller. Along the way, I twice dropped calls that came to me again from the specified number. After that, the fraudsters behind me. And then it turned out why.

I decided to google this number and found interesting information on it online. It turns out the same young man with a similar request on the eve of appealed to other people, ie it is obviously not about an error, but about fraud. For example, a resident of Chita wrote about this:

"This morning, a young man calls me from the number + 7-914-700-5224 and says:" Your phone number is similar to you and they are constantly mistaken. You will now receive a text message with the code, please rewrite the code carefully on a piece of paper, and I will call you back, this is the code to my computer, otherwise I cannot get there. "Indeed, the SMS from MTS_Pay came with the content:" IMPORTANT: Do not inform anyone to receive. code! The code to recover the password to the application "Easy payment xxxxxxxx ...", etc. It takes about an hour, the same person from the same number calls my elderly father's cell phone with the same request (we have numbers with him that differ in two numbers). That's just the card is not tied and SMS-ka does not come to him. So be careful, elderly and gullible Chita! "
https://zab.ru/news/94968_lihanov_nado_uzhe...shenii_starikov

And also, I found in the network the following information  about this issue: Shalamov Sergey G., tel 89147005224, Primorsky Krai, Sadovaya, Arseniev. But I think that either such a subscriber actually does not exist, or the fraudsters somehow took possession of his sim card. But this is the case of the competent authorities to find out the identity and prevent such fraud. I think that fraudsters use a similar scheme to pay for paid services in social networks or even in online stores.

If you receive a similar call, in no case do not disclose the access code, otherwise the money will be withdrawn from your card or phone and only you will be guilty! Warn relatives and friends so that they do not fall for such tricks of fraudsters. Remember that children and elderly people are especially trustful!

You can also spread this information online to help strangers not to become victims of telephone scams. And remember that fraudsters can carry out similar “layout of suckers” from other phone numbers. Also, never tell anyone the details, codes and passwords of your bank card.