The National Bank of Serbia issued a warning about increasingly frequent fraudulent SMS messages that claim recipients have earned points redeemable for prizes and direct them to spoofed websites designed to harvest payment card data. The scam uses a link to a fake website mimicking a mobile network operator’s site and offers “free” items, but requires entry of card number, expiry date and CCV/CVV code. Criminals can then use the card, with victims often realising only after receiving an account debit alert. The central bank highlighted a specific risk that the SMS may appear within the same message mailbox as genuine prior messages from the user’s telecom provider. Users who submitted card details were advised to contact their bank immediately to block the card, noting that after reporting the abuse to the bank, the further risk of transactions shifts to the card-issuing bank. In the coming period, the National Bank of Serbia said it will seek consistent implementation of rules on payment service user protection and take measures within its competence to prevent such fraud in areas related to banks’ conduct.
National Bank of Serbia 2025-07-09
National Bank of Serbia warns users about spoofed SMS prize scams seeking payment card details
The National Bank of Serbia has issued a warning about fraudulent SMS messages that mimic mobile network operators to harvest payment card data. These scams direct recipients to fake websites offering prizes in exchange for card details. The central bank advises users to contact their bank immediately if they have submitted card information and plans to enforce rules on payment service user protection to prevent such fraud.