My mom received a phone call from a Nigerian number where the caller claimed to be from her prayer group. They wanted to invite her to a Zoom meeting and asked her to tell them a code that popped up on her Android phone screen—just a six-digit code with nothing else. When she provided the code, a screen appeared showing two smartphones with an option to 'allow' or 'don't allow'. Fortunately, she clicked 'don't allow' and hung up. I'm really worried about what might have happened and whether her information is compromised. I checked her Google account settings and found a new account logged in that isn't hers. What does this mean and what should we do?
3 Answers
You should definitely remove that Google account and change all her passwords, especially for banking. It’s better to assume her information was compromised. The code shouldn't have appeared without some kind of interaction. If you're really concerned, a factory reset on her phone might be the safest route.
It sounds like they were trying to access something tied to her phone number, possibly attempting to get an OTP (One-Time Password). Check all of her bank and social media accounts for any unauthorized access attempts. It's a good sign she denied access at the last moment, but definitely keep an eye on everything just to be safe.
I'm relieved she clicked 'don’t allow'. It sounds like a remote access tool was being used, like Anydesk for mobile. If she had allowed it, they might have controlled her phone completely. Thank her lucky stars she hung up when she did!
Actually, that code might have been related to Google login prompts since she has an Android. Keep monitoring her accounts for any suspicious activities.