Saudi Central Bank phishing page detected

Posted byAnti-phishing Leave a comment on Saudi Central Bank phishing page detected

Saudi Arabia Fake Loan Scam – “Instant Loan Without Salary Transfer” Phishing

This phishing campaign impersonates legitimate financial companies licensed by the Saudi Central Bank (SAMA) . The scam promotes instant loans without salary transfer requirements—a highly attractive offer—to lure victims into providing personal information and eventually banking credentials.

How it works:
The victim encounters the scam via social media ads, SMS, email, or messaging apps promoting quick, easy loans. The campaign consists of multiple pages designed to build credibility and collect sensitive information.

Step 1 – Loan Promotion Page
The first page displays:

  • Promises of instant personal loans in Saudi Arabia without the need for salary transfer
  • Claims of quick approval (within 24 hours) and 0% installments
  • Instructions to “apply through the website directly”
  • A numbered list of simple steps to create a sense of simplicity and speed

Step 2 – Information Page
The second page provides vague answers about financing timelines, claiming approval takes 1–2 working days. This page is designed to make the offer appear legitimate by addressing “frequently asked questions.”

Step 3 – Fake Financial Institution Page
The third page (fourth screenshot) is the most critical. It displays:

  • A domain designed to look like an official Saudi Central Bank or financial authority URL
  • A company name described as a finance company licensed by the Saudi Central Bank, operating in accordance with Shariah regulations
  • Contact information (email and phone number)
  • Fake event listings (“Lottery,” “Settlement”) with future dates to appear active and credible

The goal:
The attacker aims to collect:

  • Personal information (name, ID number, income details, etc.) through an application form likely presented after these pages
  • Bank account or credit card details under the guise of “processing” or “verifying” the loan
  • Potentially advance fees from victims desperate for a loan

There is no legitimate loan—the entire offer is fabricated. Victims who provide their banking details risk having their accounts drained or their information sold.

Red flags to watch for:

  • Too good to be true offer: Promises of instant loans without salary transfer, with 0% installments, approved within 24 hours, are classic signs of predatory lending scams. Legitimate financial institutions require thorough verification.
  • Suspicious domain: The URL shown in the fourth screenshot is designed to mimic the Saudi Central Bank but uses a .com domain with extra words. The official Saudi Central Bank domain is sama.gov.sa.
  • Unprofessional design: The pages contain generic placeholder content (“Lorem ipsum”-like text) and repetitive, low-quality graphics that legitimate financial institutions would not use.
  • Mismatched branding: The page claims to be a licensed finance company but uses a domain impersonating the central bank—a contradiction.
  • Fake events: The “Lottery” and “Settlement” listings with future dates are irrelevant to a loan company and are likely copied from a template to make the page appear more active.
  • Generic contact: The email address ([email protected]) is a free consumer email service, not an official corporate domain. Legitimate licensed financial institutions use their own domains for official communication.

What to do if you encounter this:

  • Do not provide any personal information (national ID, income details, etc.).
  • Do not enter any bank account or credit card details on such pages.
  • Do not pay any “processing fees” or “advance payments” for a promised loan.
  • If you are seeking a loan in Saudi Arabia, work only with officially licensed financial institutions verified through the Saudi Central Bank’s official website (sama.gov.sa).
  • If you have already provided sensitive information, contact your bank immediately to secure your accounts, and report the incident to the Saudi Central Bank’s fraud department.

Why this scam is effective:
In Saudi Arabia, many individuals seek personal financing without the requirement of salary transfer (a common condition for traditional bank loans). The promise of quick approval, 0% installments, and a “licensed by the central bank” claim directly targets this demand. The use of Shariah compliance language adds legitimacy for the local audience. The fake domain mimicking the central bank’s name preys on users who do not carefully verify URLs.

Protective measures:

  • Always verify financial institutions through the official Saudi Central Bank website (sama.gov.sa) before applying for loans.
  • Legitimate licensed finance companies in Saudi Arabia have official domains ending in .sa or clearly registered corporate domains—they do not use free email services like Gmail for official business.
  • Be suspicious of any loan offer that promises approval without thorough verification or asks for upfront fees.
  • Never enter banking credentials or transfer money to unknown entities for “loan processing.”
  • Report suspicious financial promotions to the Saudi Central Bank’s anti-fraud channels.

Leave a comment

Your email address will not be published. Required fields are marked *