{"content_id":"jswk2izctg","slug":"daepotongjang-voice-phishing-prevention","locale":"en","schema_type":"Article","category":"how_to","category_name":"How-to","title":"How Are \"Ghost Accounts\" Created, and How Can They Be Prevented?","summary":"A \"straw account\" is an account where the account holder and the actual controller are different, and it is often misused to transfer funds obtained through voice phishing scams. This article summarizes common scams—such as high-paying part-time jobs, refunds for mistaken transfers, purchasing and currency exchange services, and personal information theft—along with preventive measures, based on Korean standards.","author":{"name":"Injoys Editorial Team","url":"https://injoys.com/ko/about"},"key_points":["A \"straw account\" is an account where the account holder and the actual controller or user are different; it is misused to transfer funds obtained through voice phishing and to evade financial tracking.","Transferring or lending access devices—such as bankbooks, debit cards, passwords, and OTPs—in exchange for compensation is punishable under the Electronic Financial Transactions Act.","Requests for re-transfers disguised as high-paying part-time jobs, shopping services, currency exchange, loan processing, or the return of mistakenly sent funds are common red flags used to recruit people for \"ghost accounts.\"","If you receive an unexpected deposit, do not transfer it to anyone else; instead, report it immediately to your financial institution so it can be processed through the official refund procedure.","If you suspect a personal information leak, you should take safety measures such as checking accounts in your name, blocking remote account openings, and, if necessary, freezing your accounts."],"content_markdown":"A “front account” is a bank account used in financial crimes such as voice phishing, loan fraud, illegal gambling, and romance scams to temporarily receive or transfer stolen funds. While they may appear to be normal accounts on the surface, in reality, they are often controlled by criminal organizations rather than the account holder, or the account holder is unwittingly drawn into the flow of funds without realizing the criminal nature of the activity.\n\nThis article is not intended to replicate criminal methods but serves as a safety guide to help readers understand how victims are deceived and what preventive measures to take.\n\n## What Is a “Dapo” Account?\n\nA “straw account” generally refers to an account where the registered holder is different from the actual user or controller. Here, the term “account” does not refer solely to a paper passbook. It also includes any means of access that can be used to manage the account, such as internet banking, mobile banking, debit cards, ATM cards, passwords, OTPs, and digital certificates.\n\nUnder South Korea’s Electronic Financial Transactions Act, these means are broadly classified as “access media.” Transferring access media to others, lending them in exchange for money, storing, delivering, or distributing them, or brokering or advertising such activities may be subject to punishment.\n\n### Key Definitions\n\n| Term | Meaning | Points to Note |\n|---|---|---|\n| Front Account | An account where the registered holder and the actual controller are different | Even if the account is in your name, it can become a problem if someone else uses it. |\n| Access Medium | A means of accessing an account | May include passbooks, cards, passwords, OTPs, and certificates. |\n| Account Used for Fraud | An account suspected of having received or been used for proceeds from telecommunications financial fraud | May be subject to payment suspension, transaction restrictions, or victim reimbursement procedures. |\n| Mistaken Transfer | A transfer sent by mistake | It is safer to use the procedures provided by financial institutions or the Korea Deposit Insurance Corporation rather than attempting a direct return between individuals. |\n\n## Common Methods Fraudsters Use to Obtain “Straw Accounts”\n\nWhile “straw accounts” are sometimes “newly created,” in reality, they are often obtained by borrowing, stealing, or deceiving others to gain access to their accounts. The types listed below are high-risk warning signs to watch out for.\n\n| Method | Surface-Level Claim | Actual Risk | Safe Response |\n|---|---|---|---|\n| Short-term, high-yield part-time job | “We’ll pay you a stipend just for lending your bank account” or “account verification tasks” | You may face criminal charges for lending, transferring, or providing access to your account. | Never hand over your bankbook, card, password, or OTP. |\n| Purchase代行, currency exchange, or settlement part-time jobs | Transferring deposited funds to another account or delivering them in cash | You may become a money mule or a money laundering conduit. | If a job requires you to receive company funds into your personal account, verify the contract, business registration, and official payroll system before refusing. |\n| Disguised as an Erroneous Transfer | “I sent this to the wrong account; please transfer it back to my personal account” | This could create a scheme where fraud proceeds pass through your account. | Report it to the bank first and follow the official refund procedure. |\n| Loan Processing/Credit Score Improvement | “You need to build a transaction history to get a loan approved.” | You may be drawn into fraudulent transactions, ghost accounts, or loan scams. | Stop any requests for advance payments, repayments to third-party accounts, or proof of transaction history, and verify the matter with the official customer service center. |\n| Personal Information Theft and Identity Theft | Requests for photos of ID cards, verification codes, or remote control apps | Accounts may be opened in your name without your knowledge, or your account may be hijacked. | Do not share your ID card, verification codes, security cards, or app authorization requests. |\n| Ads for Buying and Selling Accounts | “Buying dormant accounts” or “Buying debit cards” | This is highly likely to lead to clearly illegal transactions. | Report the ad and do not contact them. |\n\n## Why Do Voice Phishing Organizations Use “Straw Accounts”?\n\nVoice phishing organizations do not receive money sent by victims directly into accounts in their own names. This is because law enforcement agencies and financial institutions can track the flow of funds and freeze payments. Therefore, they use multiple accounts as intermediate stopovers to split the stolen funds or attempt to move them through cash withdrawals, re-transfers, or the purchase of virtual assets.\n\nThe reason dummy accounts are dangerous is that even if the account holder was deceived like the victim, the account name and transaction records remain on file. In particular, if you receive money into your own account and then re-transfer it or hand it over in cash following someone else’s instructions, you may find yourself in a situation where you must prove—during investigations and financial institution reviews—whether you are a “mere victim” or a “mule or provider of a straw account.”\n\n## Legal Penalties and Adverse Effects on Financial Transactions\n\nUnder South Korean law, acts such as transferring or acquiring access media; lending, storing, delivering, or distributing access media in exchange for compensation; providing access media for the purpose of criminal use or while knowing it will be used for criminal purposes; or brokering, mediating, advertising, or soliciting such acts may constitute a violation of the Electronic Financial Transactions Act. The “Easy-to-Find Information on Everyday Laws” guide states that such violations may be punishable by up to five years in prison or a fine of up to 30 million won.\n\nFurthermore, if a person involved in “straw account” transactions is registered as a violator of financial order, they may face disadvantages when applying for new loans, credit cards, opening bank accounts, or purchasing insurance. Guidance materials from the Financial Supervisory Service posted on “Policy Briefing” explain that information regarding violations of financial order is shared among financial institutions for a certain period and used in credit assessments, meaning adverse effects may persist for up to 12 years.\n\n### Why Simply Saying “I Didn’t Know” Isn’t Enough\n\nIn reality, scammers use language designed to make their activities sound like “legitimate part-time work,” “tax-free settlements,” “loan processing procedures,” or “company fund transfers.” However, if you transferred money received in your own account or handed it over in cash as instructed, the question may arise as to whether you had reason to suspect that the transaction was unusual.\n\nHowever, it is important to distinguish between cases where your personal information was stolen and an account was opened without your knowledge, and cases where you personally handed over your bankbook, card, or password. If you suspect identity theft, report it as soon as possible to financial institutions, the police, or the Financial Supervisory Service, and preserve evidence proving that you were not involved.\n\n## Steps to Take When Receiving an Unidentified Deposit\n\nAs a general rule, do not directly return the funds even if an unknown person contacts you claiming it was a “mistaken transfer” and asks you to send it back. While it may genuinely be a mistaken transfer, it could also be an attempt to use your account as a transit point for proceeds from a crime.\n\n1. Take a screenshot of the deposit details, including the sender’s name, time, and amount.\n2. Immediately report the incident to the customer service center or a branch of the bank where the deposit was made.\n3. Do not transfer funds directly to any account provided by the other party.\n4. Check the bank’s guidelines for returning mistaken transfers or the Deposit Insurance Corporation’s procedures for assisting with the return of mistaken transfers.\n5. If there are signs of voice phishing, extortion, or loan fraud, report it to the police (112), the Financial Supervisory Service (1332), or the financial institution’s customer service center.\n\n## If Your Personal Information Has Been Stolen or You Suspect Identity Theft\n\nIf you have provided a photo of your ID, your Resident Registration Number, account number, password, verification code, security card, OTP, digital certificate, or remote control access to your cell phone, your account may be directly compromised or misused to open an account remotely.\n\n### Items to Check Immediately\n\n- Check your accounts under your name using the Integrated Account Management Service or AccountInfo.\n- Check for any unknown accounts, unknown automatic transfers, or signs of unknown card or loan applications.\n- Contact your financial institution to inquire about blocking remote account openings, restricting withdrawals, and resetting your password.\n- Delete any remote control apps, apps from unknown sources, or text-forwarding apps installed on your smartphone, and run a security scan.\n- If a copy of your ID has been leaked, check whether you can request a reissue and register with financial institutions to prevent fraud.\n\n## Checklist for Identifying “Ghost Account” Recruitment\n\nIf any of the following items apply, stop the transaction immediately and verify the situation.\n\n- They offer payment based on a “per-transaction fee” rather than a salary.\n- They ask you to receive an unknown payment into your account and then transfer it to another account.\n- They ask you to send loan repayments or security deposits to a personal account rather than a company account.\n- They request a photo of your ID, your account password, OTP code, or verification code.\n- They ask about your account number, whether you can provide a card, or whether you can make withdrawals before discussing the actual job details.\n- They give instructions exclusively via messaging apps like KakaoTalk or Telegram, and their official business information is unclear.\n- They say, “Never tell your bank,” “This is necessary for tax purposes,” or “It will improve your credit score.”\n\n## Prevention Guidelines\n\nThe most important rule is simple: Use your account only for purposes you have personally verified, and never give anyone the means to access your account.\n\n### Principles for Individuals\n\n- While you should be cautious even about sharing just your account number, providing your card, password, OTP, or verification code is especially dangerous.\n- If the source of deposited funds is unclear, do not use or transfer the money; report it to your bank first.\n- Verify loan consultations only through a financial institution’s official app, website, or customer service hotline.\n- Even if a job posting pretends to be for financial work, refuse any position that requires you to receive funds, re-transfer money, or deliver cash.\n- Share the principle of “reporting unknown deposits to the bank first” with your family as well.\n\n### Principles for Businesses and Operators\n\n- Do not require settlement tasks using personal accounts in job postings.\n- Process customer refunds through accounts in the business’s name and follow standard accounting procedures.\n- Do not allow employees to receive company funds into their personal accounts.\n- Document procedures for reporting suspicious transactions and internal approval processes.\n\n## Red Flags from Real-Life Cases\n\n### Case 1: A Request to Immediately Return Funds Claiming a “Mistaken Transfer”\n\nA stranger sends 800,000 won and says, “I sent this by mistake; please send it back to this account.” If you transfer funds to the account provided by the other party, your account could be used as a conduit for the stolen funds. You should report this to your bank and return the funds according to the bank’s instructions.\n\n### Case 2: Part-time Job Offering “Purchase Agency Settlement”\n\nA company claiming to be a shopping agency tells you that customer funds will be deposited into your personal account and instructs you to transfer the amount minus a certain fee to another account. A legitimate company would have procedures in place, such as an account in the business’s name, tax invoices, payroll payments, and contracts. A system that repeatedly routes funds through personal accounts is extremely dangerous.\n\n### Case 3: Requests for Deposits or Repayments Before Loan Approval\n\nSomeone impersonating a financial institution employee asks you to transfer your existing loan balance to a specific individual or an unfamiliar corporate account in order to approve a refinancing loan. The Financial Services Commission warns that requesting loan repayments to third-party accounts is a fraud scheme involving “ghost accounts.” You must verify the authenticity of the request through the official app or the main customer service number.\n\n## At-a-Glance Response Chart\n\n| Situation | What Not to Do | What to Do |\n|---|---|---|\n| Request to lend bankbook or card | Accepting money and lending it out | Refuse immediately and report the ad or account |\n| Unexpected Deposit | Personally forward the funds | Report it to the bank’s customer service center or branch |\n| Voice Phishing Money Transfer Scam | Continue talking to the scammer | Call 112 or 1332, and request a payment freeze from the financial institution |\n| Personal Information Leak | Providing Additional Verification Codes | Change your password; check your account status; confirm that account opening is blocked |\n| My Account Has Been Frozen | Ignoring the issue or providing arbitrary explanations | Submit evidence clarifying the facts to the bank’s incident response department |\n\n## Conclusion\n\nStraw accounts are a key tool used by criminal organizations to hide stolen funds. Statements such as “Just lend me your bank account,” “Just send me the money that was deposited,” or “It was a mistaken transfer, so please return it immediately” are all red flags. The safest course of action is to never hand over your account access credentials, never move funds from unknown sources without authorization, and always follow official procedures through the bank, police, the Financial Supervisory Service, or the Korea Deposit Insurance Corporation.","content_html":"\u003cp\u003eA “front account” is a bank account used in financial crimes such as voice phishing, loan fraud, illegal gambling, and romance scams to temporarily receive or transfer stolen funds. While they may appear to be normal accounts on the surface, in reality, they are often controlled by criminal organizations rather than the account holder, or the account holder is unwittingly drawn into the flow of funds without realizing the criminal nature of the activity.\u003c/p\u003e\n\u003cp\u003eThis article is not intended to replicate criminal methods but serves as a safety guide to help readers understand how victims are deceived and what preventive measures to take.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"#what-is-a-dapo-account\" class=\"anchor\" id=\"what-is-a-dapo-account\"\u003e\u003c/a\u003eWhat Is a “Dapo” Account?\u003c/h2\u003e\n\u003cp\u003eA “straw account” generally refers to an account where the registered holder is different from the actual user or controller. Here, the term “account” does not refer solely to a paper passbook. It also includes any means of access that can be used to manage the account, such as internet banking, mobile banking, debit cards, ATM cards, passwords, OTPs, and digital certificates.\u003c/p\u003e\n\u003cp\u003eUnder South Korea’s Electronic Financial Transactions Act, these means are broadly classified as “access media.” Transferring access media to others, lending them in exchange for money, storing, delivering, or distributing them, or brokering or advertising such activities may be subject to punishment.\u003c/p\u003e\n\u003ch3\u003e\u003ca href=\"#key-definitions\" class=\"anchor\" id=\"key-definitions\"\u003e\u003c/a\u003eKey Definitions\u003c/h3\u003e\n\u003cdiv class=\"overflow-x-auto\"\u003e\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eTerm\u003c/th\u003e\n\u003cth\u003eMeaning\u003c/th\u003e\n\u003cth\u003ePoints to Note\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003eFront Account\u003c/td\u003e\n\u003ctd\u003eAn account where the registered holder and the actual controller are different\u003c/td\u003e\n\u003ctd\u003eEven if the account is in your name, it can become a problem if someone else uses it.\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eAccess Medium\u003c/td\u003e\n\u003ctd\u003eA means of accessing an account\u003c/td\u003e\n\u003ctd\u003eMay include passbooks, cards, passwords, OTPs, and certificates.\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eAccount Used for Fraud\u003c/td\u003e\n\u003ctd\u003eAn account suspected of having received or been used for proceeds from telecommunications financial fraud\u003c/td\u003e\n\u003ctd\u003eMay be subject to payment suspension, transaction restrictions, or victim reimbursement procedures.\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eMistaken Transfer\u003c/td\u003e\n\u003ctd\u003eA transfer sent by mistake\u003c/td\u003e\n\u003ctd\u003eIt is safer to use the procedures provided by financial institutions or the Korea Deposit Insurance Corporation rather than attempting a direct return between individuals.\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\u003c/div\u003e\n\u003ch2\u003e\u003ca href=\"#common-methods-fraudsters-use-to-obtain-straw-accounts\" class=\"anchor\" id=\"common-methods-fraudsters-use-to-obtain-straw-accounts\"\u003e\u003c/a\u003eCommon Methods Fraudsters Use to Obtain “Straw Accounts”\u003c/h2\u003e\n\u003cp\u003eWhile “straw accounts” are sometimes “newly created,” in reality, they are often obtained by borrowing, stealing, or deceiving others to gain access to their accounts. The types listed below are high-risk warning signs to watch out for.\u003c/p\u003e\n\u003cdiv class=\"overflow-x-auto\"\u003e\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eMethod\u003c/th\u003e\n\u003cth\u003eSurface-Level Claim\u003c/th\u003e\n\u003cth\u003eActual Risk\u003c/th\u003e\n\u003cth\u003eSafe Response\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003eShort-term, high-yield part-time job\u003c/td\u003e\n\u003ctd\u003e“We’ll pay you a stipend just for lending your bank account” or “account verification tasks”\u003c/td\u003e\n\u003ctd\u003eYou may face criminal charges for lending, transferring, or providing access to your account.\u003c/td\u003e\n\u003ctd\u003eNever hand over your bankbook, card, password, or OTP.\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003ePurchase代行, currency exchange, or settlement part-time jobs\u003c/td\u003e\n\u003ctd\u003eTransferring deposited funds to another account or delivering them in cash\u003c/td\u003e\n\u003ctd\u003eYou may become a money mule or a money laundering conduit.\u003c/td\u003e\n\u003ctd\u003eIf a job requires you to receive company funds into your personal account, verify the contract, business registration, and official payroll system before refusing.\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eDisguised as an Erroneous Transfer\u003c/td\u003e\n\u003ctd\u003e“I sent this to the wrong account; please transfer it back to my personal account”\u003c/td\u003e\n\u003ctd\u003eThis could create a scheme where fraud proceeds pass through your account.\u003c/td\u003e\n\u003ctd\u003eReport it to the bank first and follow the official refund procedure.\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eLoan Processing/Credit Score Improvement\u003c/td\u003e\n\u003ctd\u003e“You need to build a transaction history to get a loan approved.”\u003c/td\u003e\n\u003ctd\u003eYou may be drawn into fraudulent transactions, ghost accounts, or loan scams.\u003c/td\u003e\n\u003ctd\u003eStop any requests for advance payments, repayments to third-party accounts, or proof of transaction history, and verify the matter with the official customer service center.\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003ePersonal Information Theft and Identity Theft\u003c/td\u003e\n\u003ctd\u003eRequests for photos of ID cards, verification codes, or remote control apps\u003c/td\u003e\n\u003ctd\u003eAccounts may be opened in your name without your knowledge, or your account may be hijacked.\u003c/td\u003e\n\u003ctd\u003eDo not share your ID card, verification codes, security cards, or app authorization requests.\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eAds for Buying and Selling Accounts\u003c/td\u003e\n\u003ctd\u003e“Buying dormant accounts” or “Buying debit cards”\u003c/td\u003e\n\u003ctd\u003eThis is highly likely to lead to clearly illegal transactions.\u003c/td\u003e\n\u003ctd\u003eReport the ad and do not contact them.\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\u003c/div\u003e\n\u003ch2\u003e\u003ca href=\"#why-do-voice-phishing-organizations-use-straw-accounts\" class=\"anchor\" id=\"why-do-voice-phishing-organizations-use-straw-accounts\"\u003e\u003c/a\u003eWhy Do Voice Phishing Organizations Use “Straw Accounts”?\u003c/h2\u003e\n\u003cp\u003eVoice phishing organizations do not receive money sent by victims directly into accounts in their own names. This is because law enforcement agencies and financial institutions can track the flow of funds and freeze payments. Therefore, they use multiple accounts as intermediate stopovers to split the stolen funds or attempt to move them through cash withdrawals, re-transfers, or the purchase of virtual assets.\u003c/p\u003e\n\u003cp\u003eThe reason dummy accounts are dangerous is that even if the account holder was deceived like the victim, the account name and transaction records remain on file. In particular, if you receive money into your own account and then re-transfer it or hand it over in cash following someone else’s instructions, you may find yourself in a situation where you must prove—during investigations and financial institution reviews—whether you are a “mere victim” or a “mule or provider of a straw account.”\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"#legal-penalties-and-adverse-effects-on-financial-transactions\" class=\"anchor\" id=\"legal-penalties-and-adverse-effects-on-financial-transactions\"\u003e\u003c/a\u003eLegal Penalties and Adverse Effects on Financial Transactions\u003c/h2\u003e\n\u003cp\u003eUnder South Korean law, acts such as transferring or acquiring access media; lending, storing, delivering, or distributing access media in exchange for compensation; providing access media for the purpose of criminal use or while knowing it will be used for criminal purposes; or brokering, mediating, advertising, or soliciting such acts may constitute a violation of the Electronic Financial Transactions Act. The “Easy-to-Find Information on Everyday Laws” guide states that such violations may be punishable by up to five years in prison or a fine of up to 30 million won.\u003c/p\u003e\n\u003cp\u003eFurthermore, if a person involved in “straw account” transactions is registered as a violator of financial order, they may face disadvantages when applying for new loans, credit cards, opening bank accounts, or purchasing insurance. Guidance materials from the Financial Supervisory Service posted on “Policy Briefing” explain that information regarding violations of financial order is shared among financial institutions for a certain period and used in credit assessments, meaning adverse effects may persist for up to 12 years.\u003c/p\u003e\n\u003ch3\u003e\u003ca href=\"#why-simply-saying-i-didnt-know-isnt-enough\" class=\"anchor\" id=\"why-simply-saying-i-didnt-know-isnt-enough\"\u003e\u003c/a\u003eWhy Simply Saying “I Didn’t Know” Isn’t Enough\u003c/h3\u003e\n\u003cp\u003eIn reality, scammers use language designed to make their activities sound like “legitimate part-time work,” “tax-free settlements,” “loan processing procedures,” or “company fund transfers.” However, if you transferred money received in your own account or handed it over in cash as instructed, the question may arise as to whether you had reason to suspect that the transaction was unusual.\u003c/p\u003e\n\u003cp\u003eHowever, it is important to distinguish between cases where your personal information was stolen and an account was opened without your knowledge, and cases where you personally handed over your bankbook, card, or password. If you suspect identity theft, report it as soon as possible to financial institutions, the police, or the Financial Supervisory Service, and preserve evidence proving that you were not involved.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"#steps-to-take-when-receiving-an-unidentified-deposit\" class=\"anchor\" id=\"steps-to-take-when-receiving-an-unidentified-deposit\"\u003e\u003c/a\u003eSteps to Take When Receiving an Unidentified Deposit\u003c/h2\u003e\n\u003cp\u003eAs a general rule, do not directly return the funds even if an unknown person contacts you claiming it was a “mistaken transfer” and asks you to send it back. While it may genuinely be a mistaken transfer, it could also be an attempt to use your account as a transit point for proceeds from a crime.\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eTake a screenshot of the deposit details, including the sender’s name, time, and amount.\u003c/li\u003e\n\u003cli\u003eImmediately report the incident to the customer service center or a branch of the bank where the deposit was made.\u003c/li\u003e\n\u003cli\u003eDo not transfer funds directly to any account provided by the other party.\u003c/li\u003e\n\u003cli\u003eCheck the bank’s guidelines for returning mistaken transfers or the Deposit Insurance Corporation’s procedures for assisting with the return of mistaken transfers.\u003c/li\u003e\n\u003cli\u003eIf there are signs of voice phishing, extortion, or loan fraud, report it to the police (112), the Financial Supervisory Service (1332), or the financial institution’s customer service center.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2\u003e\u003ca href=\"#if-your-personal-information-has-been-stolen-or-you-suspect-identity-theft\" class=\"anchor\" id=\"if-your-personal-information-has-been-stolen-or-you-suspect-identity-theft\"\u003e\u003c/a\u003eIf Your Personal Information Has Been Stolen or You Suspect Identity Theft\u003c/h2\u003e\n\u003cp\u003eIf you have provided a photo of your ID, your Resident Registration Number, account number, password, verification code, security card, OTP, digital certificate, or remote control access to your cell phone, your account may be directly compromised or misused to open an account remotely.\u003c/p\u003e\n\u003ch3\u003e\u003ca href=\"#items-to-check-immediately\" class=\"anchor\" id=\"items-to-check-immediately\"\u003e\u003c/a\u003eItems to Check Immediately\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck your accounts under your name using the Integrated Account Management Service or AccountInfo.\u003c/li\u003e\n\u003cli\u003eCheck for any unknown accounts, unknown automatic transfers, or signs of unknown card or loan applications.\u003c/li\u003e\n\u003cli\u003eContact your financial institution to inquire about blocking remote account openings, restricting withdrawals, and resetting your password.\u003c/li\u003e\n\u003cli\u003eDelete any remote control apps, apps from unknown sources, or text-forwarding apps installed on your smartphone, and run a security scan.\u003c/li\u003e\n\u003cli\u003eIf a copy of your ID has been leaked, check whether you can request a reissue and register with financial institutions to prevent fraud.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"#checklist-for-identifying-ghost-account-recruitment\" class=\"anchor\" id=\"checklist-for-identifying-ghost-account-recruitment\"\u003e\u003c/a\u003eChecklist for Identifying “Ghost Account” Recruitment\u003c/h2\u003e\n\u003cp\u003eIf any of the following items apply, stop the transaction immediately and verify the situation.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThey offer payment based on a “per-transaction fee” rather than a salary.\u003c/li\u003e\n\u003cli\u003eThey ask you to receive an unknown payment into your account and then transfer it to another account.\u003c/li\u003e\n\u003cli\u003eThey ask you to send loan repayments or security deposits to a personal account rather than a company account.\u003c/li\u003e\n\u003cli\u003eThey request a photo of your ID, your account password, OTP code, or verification code.\u003c/li\u003e\n\u003cli\u003eThey ask about your account number, whether you can provide a card, or whether you can make withdrawals before discussing the actual job details.\u003c/li\u003e\n\u003cli\u003eThey give instructions exclusively via messaging apps like KakaoTalk or Telegram, and their official business information is unclear.\u003c/li\u003e\n\u003cli\u003eThey say, “Never tell your bank,” “This is necessary for tax purposes,” or “It will improve your credit score.”\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"#prevention-guidelines\" class=\"anchor\" id=\"prevention-guidelines\"\u003e\u003c/a\u003ePrevention Guidelines\u003c/h2\u003e\n\u003cp\u003eThe most important rule is simple: Use your account only for purposes you have personally verified, and never give anyone the means to access your account.\u003c/p\u003e\n\u003ch3\u003e\u003ca href=\"#principles-for-individuals\" class=\"anchor\" id=\"principles-for-individuals\"\u003e\u003c/a\u003ePrinciples for Individuals\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eWhile you should be cautious even about sharing just your account number, providing your card, password, OTP, or verification code is especially dangerous.\u003c/li\u003e\n\u003cli\u003eIf the source of deposited funds is unclear, do not use or transfer the money; report it to your bank first.\u003c/li\u003e\n\u003cli\u003eVerify loan consultations only through a financial institution’s official app, website, or customer service hotline.\u003c/li\u003e\n\u003cli\u003eEven if a job posting pretends to be for financial work, refuse any position that requires you to receive funds, re-transfer money, or deliver cash.\u003c/li\u003e\n\u003cli\u003eShare the principle of “reporting unknown deposits to the bank first” with your family as well.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"#principles-for-businesses-and-operators\" class=\"anchor\" id=\"principles-for-businesses-and-operators\"\u003e\u003c/a\u003ePrinciples for Businesses and Operators\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not require settlement tasks using personal accounts in job postings.\u003c/li\u003e\n\u003cli\u003eProcess customer refunds through accounts in the business’s name and follow standard accounting procedures.\u003c/li\u003e\n\u003cli\u003eDo not allow employees to receive company funds into their personal accounts.\u003c/li\u003e\n\u003cli\u003eDocument procedures for reporting suspicious transactions and internal approval processes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"#red-flags-from-real-life-cases\" class=\"anchor\" id=\"red-flags-from-real-life-cases\"\u003e\u003c/a\u003eRed Flags from Real-Life Cases\u003c/h2\u003e\n\u003ch3\u003e\u003ca href=\"#case-1-a-request-to-immediately-return-funds-claiming-a-mistaken-transfer\" class=\"anchor\" id=\"case-1-a-request-to-immediately-return-funds-claiming-a-mistaken-transfer\"\u003e\u003c/a\u003eCase 1: A Request to Immediately Return Funds Claiming a “Mistaken Transfer”\u003c/h3\u003e\n\u003cp\u003eA stranger sends 800,000 won and says, “I sent this by mistake; please send it back to this account.” If you transfer funds to the account provided by the other party, your account could be used as a conduit for the stolen funds. You should report this to your bank and return the funds according to the bank’s instructions.\u003c/p\u003e\n\u003ch3\u003e\u003ca href=\"#case-2-part-time-job-offering-purchase-agency-settlement\" class=\"anchor\" id=\"case-2-part-time-job-offering-purchase-agency-settlement\"\u003e\u003c/a\u003eCase 2: Part-time Job Offering “Purchase Agency Settlement”\u003c/h3\u003e\n\u003cp\u003eA company claiming to be a shopping agency tells you that customer funds will be deposited into your personal account and instructs you to transfer the amount minus a certain fee to another account. A legitimate company would have procedures in place, such as an account in the business’s name, tax invoices, payroll payments, and contracts. A system that repeatedly routes funds through personal accounts is extremely dangerous.\u003c/p\u003e\n\u003ch3\u003e\u003ca href=\"#case-3-requests-for-deposits-or-repayments-before-loan-approval\" class=\"anchor\" id=\"case-3-requests-for-deposits-or-repayments-before-loan-approval\"\u003e\u003c/a\u003eCase 3: Requests for Deposits or Repayments Before Loan Approval\u003c/h3\u003e\n\u003cp\u003eSomeone impersonating a financial institution employee asks you to transfer your existing loan balance to a specific individual or an unfamiliar corporate account in order to approve a refinancing loan. The Financial Services Commission warns that requesting loan repayments to third-party accounts is a fraud scheme involving “ghost accounts.” You must verify the authenticity of the request through the official app or the main customer service number.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"#at-a-glance-response-chart\" class=\"anchor\" id=\"at-a-glance-response-chart\"\u003e\u003c/a\u003eAt-a-Glance Response Chart\u003c/h2\u003e\n\u003cdiv class=\"overflow-x-auto\"\u003e\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eSituation\u003c/th\u003e\n\u003cth\u003eWhat Not to Do\u003c/th\u003e\n\u003cth\u003eWhat to Do\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003eRequest to lend bankbook or card\u003c/td\u003e\n\u003ctd\u003eAccepting money and lending it out\u003c/td\u003e\n\u003ctd\u003eRefuse immediately and report the ad or account\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eUnexpected Deposit\u003c/td\u003e\n\u003ctd\u003ePersonally forward the funds\u003c/td\u003e\n\u003ctd\u003eReport it to the bank’s customer service center or branch\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eVoice Phishing Money Transfer Scam\u003c/td\u003e\n\u003ctd\u003eContinue talking to the scammer\u003c/td\u003e\n\u003ctd\u003eCall 112 or 1332, and request a payment freeze from the financial institution\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003ePersonal Information Leak\u003c/td\u003e\n\u003ctd\u003eProviding Additional Verification Codes\u003c/td\u003e\n\u003ctd\u003eChange your password; check your account status; confirm that account opening is blocked\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eMy Account Has Been Frozen\u003c/td\u003e\n\u003ctd\u003eIgnoring the issue or providing arbitrary explanations\u003c/td\u003e\n\u003ctd\u003eSubmit evidence clarifying the facts to the bank’s incident response department\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\u003c/div\u003e\n\u003ch2\u003e\u003ca href=\"#conclusion\" class=\"anchor\" id=\"conclusion\"\u003e\u003c/a\u003eConclusion\u003c/h2\u003e\n\u003cp\u003eStraw accounts are a key tool used by criminal organizations to hide stolen funds. Statements such as “Just lend me your bank account,” “Just send me the money that was deposited,” or “It was a mistaken transfer, so please return it immediately” are all red flags. The safest course of action is to never hand over your account access credentials, never move funds from unknown sources without authorization, and always follow official procedures through the bank, police, the Financial Supervisory Service, or the Korea Deposit Insurance Corporation.\u003c/p\u003e\n","tags":["Mule account","Voice phishing","Electronic Financial Transactions Act","Financial fraud prevention","Mistaken transfer"],"faqs":[{"question":"What exactly is a \"cannon account\"?","answer":"A \"straw account\" refers to an account where the account holder is different from the person who actually controls or uses it. Voice phishing organizations do not receive the stolen funds directly; instead, they use these accounts as intermediaries to make it difficult to trace the funds and freeze the payments."},{"question":"Can an account become a \"ghost account\" just by providing the account number?","answer":"Simply providing your account number doesn’t necessarily mean your account will be used for fraudulent purposes, but it’s dangerous to accept money from unknown sources and then transfer it or hand it over in cash as instructed by someone else. You must never provide any means of accessing your account, such as your card, password, OTP, or verification code."},{"question":"What penalties could I face if I lend my bank account to someone else?","answer":"Under the Electronic Financial Transactions Act, acts such as transferring or acquiring access devices, or renting, storing, delivering, or distributing them in exchange for compensation, are subject to punishment. “Easy-to-Find Information on Everyday Laws” states that violations of this law may result in imprisonment for up to five years or a fine of up to 30 million won."},{"question":"Is it a problem if I just transferred the money I earned from a high-paying part-time job?","answer":"This could be a problem. That’s because such tasks are sometimes actually used to transfer funds obtained through voice phishing or for money laundering. If your job involves transferring money received into your account to another account or handing it over in cash, it’s safest to stop immediately and consult with a financial institution or law enforcement agency."},{"question":"What should I do if I receive a deposit from an unknown sender and am then contacted saying it was a mistaken transfer?","answer":"Do not transfer money directly to the account provided by the other party; instead, report it first to the customer service center or a branch of the bank where the funds were deposited. Even if it is a genuine mistaken transfer, it is safer to have the funds returned through the official procedures of the financial institution or the Deposit Insurance Corporation."},{"question":"Can someone open a bank account using my personal information without my knowledge?","answer":"If your ID photo, verification code, account password, or permissions for remote control apps are leaked, the risk of identity theft or account takeover increases. You should check the accounts registered under your name, and if you find any unfamiliar accounts, report them to your financial institution and the police to clarify the situation."},{"question":"Can I trust someone who tells me to send a loan payment to their personal account?","answer":"Please be cautious. The Financial Services Commission warns that requests to repay loans via someone else’s bank account are a form of voice phishing that uses “ghost accounts.” You should verify any requests for loan-related payments through a financial institution’s official app, website, or customer service hotline."},{"question":"If I'm registered as the holder of a \"ghost account,\" will my financial transactions be restricted?","answer":"That is possible. A notice from the Financial Supervisory Service posted on Policy Briefing explains that if a person involved in transactions using “ghost accounts” is registered as a violator of financial order, they may face disadvantages when applying for new loans, using credit cards, opening bank accounts, or purchasing insurance."},{"question":"If I've already sent money to a voice phishing scammer, where should I report it?","answer":"You should immediately contact the National Police Agency at 112, the Financial Supervisory Service at 1332, and the customer service center of the financial institution through which the funds were sent or received to report the incident and request that the payment be stopped. It is important not to delay, as the longer you wait, the greater the likelihood that the money will be transferred."},{"question":"What should I do if I see an ad recruiting people for \"ghost accounts\"?","answer":"It is safer to use the platform’s reporting feature, report illegal financial activities to the Financial Supervisory Service, or file a police report rather than contacting the advertiser. Phrases such as “Buying bank accounts,” “High returns for lending your account,” and “Get a commission just by sending your credit card” are clear red flags."}],"sources":[{"url":"https://easylaw.go.kr/CSP/CnpClsMainBtr.laf?ccfNo=2\u0026cciNo=2\u0026cnpClsNo=1\u0026csmSeq=1771\u0026menuType=onhunqna\u0026popMenu=ov","title":"Easy-to-Find Information on Everyday Laws: Prohibition on Transfer of Access Devices, etc.","type":"source"},{"url":"https://www.law.go.kr/LSW/LsiJoLinkP.do?docType=JO\u0026joNo=000600000\u0026languageType=KO\u0026lsNm=%EC%A0%84%EC%9E%90%EA%B8%88%EC%9C%B5%EA%B1%B0%EB%9E%98%EB%B2%95\u0026paras=1","title":"National Law Information Center: Article 6 of the Electronic Financial Transactions Act","type":"source"},{"url":"https://www.fsc.go.kr/po010101/86250?curPage=1\u0026srchBeginDt=\u0026srchCtgry=\u0026srchEndDt=%2F1000\u0026srchKey=\u0026srchText=","title":"Financial Services Commission: 10 Tips for Preventing Voice Phishing Scams","type":"source"},{"url":"https://www.korea.kr/news/policyNewsView.do?newsId=148810541","title":"Republic of Korea Policy Briefing: Financial Transactions Restricted for Up to 12 Years for Those Involved in \"Ghost Account\" Transactions","type":"source"},{"url":"https://www.fsc.go.kr/po010101/82205?curPage=4\u0026srchBeginDt=\u0026srchCtgry=1\u0026srchEndDt=\u0026srchKey=\u0026srchText=","title":"Financial Services Commission: Guidance on Improvements to Transaction Limits for Accounts with Transaction Limits and Sanctions Against Accounts Used for Fraud","type":"source"},{"url":"https://fins.kdic.or.kr/ir/aplygudn/MtrsGvbkSprtProc/selectScrn.do","title":"Korea Deposit Insurance Corporation Financial Security Portal: Procedures for Assistance in Recovering Accidental Money Transfers","type":"source"},{"url":"https://www.payinfo.or.kr/gatePay.html","title":"Integrated Account Information Management Service: All My Accounts at a Glance","type":"source"},{"url":"https://www.kfcpf.or.kr/front/protect/reportingAgency.do","title":"Guide to Financial Fraud Relief: Reporting Agencies and Payment Suspensions","type":"source"}],"images":[{"id":113,"url":"https://injoys.com/rails/active_storage/blobs/redirect/eyJfcmFpbHMiOnsiZGF0YSI6MTA4NywicHVyIjoiYmxvYl9pZCJ9fQ==--f1d905bcb97bbfa1e4bd3a93349467ecfb666677/ChatGPT%20Image%202026%E1%84%82%E1%85%A7%E1%86%AB%207%E1%84%8B%E1%85%AF%E1%86%AF%209%E1%84%8B%E1%85%B5%E1%86%AF%20%E1%84%8B%E1%85%A9%E1%84%92%E1%85%AE%2010_03_04.webp","is_representative":true,"generation_method":"upload","mime_type":"image/webp","original_filename":"ChatGPT Image 2026년 7월 9일 오후 10_03_04.png","translations":{"ko":{"alt":"방패와 잠금장치가 통장·카드·모바일뱅킹을 보호하고 사기 자금 흐름을 차단하는 벡터 그림","caption":"대포통장 악용과 보이스피싱 피해금 이동을 막기 위한 계좌 보호와 공식 확인 절차를 시각화했습니다.","description":null},"en":{"alt":"Vector scene of a shield and lock protecting bank cards, a passbook, and mobile banking from scam money flows","caption":"The illustration visualizes account protection and official checks against mule accounts and voice-phishing money transfers.","description":null},"ja":{"alt":"盾と鍵が通帳、カード、モバイル銀行を守り、不審な資金移動を遮断するベクター図","caption":"不正利用口座や電話詐欺の資金移動を防ぐための確認と保護を表しています。","description":null},"es":{"alt":"Escena vectorial con escudo y candado protegiendo tarjetas, libreta bancaria y banca móvil de flujos fraudulentos","caption":"La ilustración muestra cómo proteger cuentas y verificar transferencias sospechosas vinculadas al fraude financiero.","description":null},"id":{"alt":"Ilustrasi vektor perisai dan gembok melindungi kartu, buku rekening, dan mobile banking dari aliran dana penipuan","caption":"Ilustrasi ini menggambarkan perlindungan rekening dan pemeriksaan resmi untuk mencegah penyalahgunaan rekening.","description":null},"pt":{"alt":"Cena vetorial com escudo e cadeado protegendo cartões, caderneta bancária e banco móvel de fluxos fraudulentos","caption":"A ilustração mostra a proteção de contas e a verificação oficial contra transferências suspeitas e golpes financeiros.","description":null},"zh-hant":{"alt":"盾牌與鎖保護存摺、銀行卡和行動銀行，阻擋可疑資金流的向量圖","caption":"這張圖呈現如何透過帳戶保護與正式查核，防範人頭帳戶和語音釣魚資金轉移。","description":null}}},{"id":114,"url":"https://injoys.com/rails/active_storage/blobs/redirect/eyJfcmFpbHMiOnsiZGF0YSI6MTA5NCwicHVyIjoiYmxvYl9pZCJ9fQ==--7be392e49d422a11b102a7f933e0a7dcd157f85d/ChatGPT%20Image%202026%E1%84%82%E1%85%A7%E1%86%AB%207%E1%84%8B%E1%85%AF%E1%86%AF%209%E1%84%8B%E1%85%B5%E1%86%AF%20%E1%84%8B%E1%85%A9%E1%84%92%E1%85%AE%2010_09_09.webp","is_representative":false,"generation_method":"upload","mime_type":"image/webp","original_filename":"ChatGPT Image 2026년 7월 9일 오후 10_09_09.png","translations":{"ko":{"alt":"모르는 입금 알림과 차단된 재송금 경로, 은행 상담과 확인 절차를 보여주는 벡터 그림","caption":"모르는 입금이 들어왔을 때 직접 재송금하지 않고 은행을 통해 확인·반환하는 과정을 시각화했습니다.","description":null},"en":{"alt":"Vector scene showing an unknown deposit alert, blocked retransfer path, bank support, and verification steps","caption":"The illustration shows how suspicious deposits should be checked and handled through the bank instead of resent directly.","description":null},"ja":{"alt":"不明な入金通知、遮断された再送金経路、銀行相談と確認手続きを示すベクター図","caption":"不明な入金を直接送り返さず、銀行で確認して正式に処理する流れを表しています。","description":null},"es":{"alt":"Escena vectorial con aviso de depósito desconocido, reenvío bloqueado, atención bancaria y verificación","caption":"La ilustración muestra que un ingreso sospechoso debe verificarse con el banco antes de cualquier devolución.","description":null},"id":{"alt":"Ilustrasi vektor notifikasi dana tak dikenal, jalur transfer ulang yang diblokir, layanan bank, dan verifikasi","caption":"Ilustrasi ini menunjukkan cara menangani dana tak dikenal melalui bank, bukan langsung mentransfernya kembali.","description":null},"pt":{"alt":"Cena vetorial com alerta de depósito desconhecido, reenvio bloqueado, atendimento bancário e verificação","caption":"A ilustração mostra que depósitos suspeitos devem ser verificados pelo banco antes de qualquer devolução.","description":null},"zh-hant":{"alt":"不明入款通知、被阻擋的轉匯路徑、銀行諮詢與查核流程的向量圖","caption":"這張圖呈現遇到不明入款時，應透過銀行查核與正式流程處理，而非自行轉回。","description":null}}}],"published_at":"2026-07-09T22:23:44+09:00","updated_at":"2026-07-09T22:23:44+09:00","license":"cc_by","translation_status":"reviewed","available_locales":["ko","en","ja","es"],"data_locales":["ko","en","ja","es","id","pt","zh-hant"],"url":"https://injoys.com/en/articles/daepotongjang-voice-phishing-prevention"}