Hampshire Police has received a few reports from NS&I customers who have had their accounts compromised and savings withdrawn.
From initial reports, it appears that the customers’ BT account is compromised giving the suspect access to emails and landline call forwarding functions. These services are exploited by criminals to gain control of the victims NS&I accounts. Once breached the victim’s funds are withdrawn.
BT is the only telecoms provider featured in reports thus far, but many other companies provide email services and landline call forwarding functionality that will allow this scam to operate.
Any email account linked to finances must have good security. If you do not have 2 Factor Authentication (2FA) on your email account, you are very vulnerable to account compromise and should consider linking those financially important accounts to a more secure email address that has 2FA.
To find out more visit www.ncsc.gov.uk/cyberaware
For a personalised online security action plan visit: www.ncsc.gov.uk/cyberaware/actionplan/individuals-and-families