Unfortunately, fraud attempts via the Internet and telephone are not uncommon. But beware – now cybercriminals are trying to use an unusual pretext.
Munich – like that Federal Office for Security and Information Technology (BSI), waves of phishing are primarily targeting bank customers. Again and again they are the focus of bold scammers. Whether via SMS or Whatsappe-mail or phone calls – criminals regularly try to use perfidious scams such as quishing or brazen phishing emails to get their victims’ sensitive data and money. No expense or effort is spared. The methods are becoming more sophisticated. According to the Brandenburg police, the average amount of damage per victim and known phishing case is several thousand euros. Mainly private individuals are to be found among the victims.
Last Friday (August 18) warned the Consumer Center before another scam. Target this time: Commerzbank customers. They are contacted via e-mail, but the unusual pretext under which it is sent is unusual. We have summarized below why special caution is required and how those affected can recognize this as a fraudulent e-mail.
Commerzbank customers affected by new scams
According to the consumer advice center, the e-mail is not about the typical fraudulent patterns with demands to update or confirm various data. No temporary account blocking is discussed either, although it is in the subject line. Confirmation of identity is only mentioned in passing. The primary concern would be an alleged refund after a double charge on the Commerzbank credit card.
The fraudulent email was structured as follows:
- Impersonal salutation.
- Followed by the stated reason for the email and an apology for “any inconvenience”.
- A solution is then proposed. This provides for reimbursement via a reimbursement form.
- The confirmation of identity is only mentioned in a short subordinate clause. As a result, the focus is on a different topic and the actual goal, the tapping of personal data by the criminals, is obscured.
- Finally, there is the typical button with a supposed link to the website.
Like the consumer portal CHIP reported, the button does not lead to the Commerzbank website, but to a bold replica.
The consumer center strongly advises against clicking on the link or responding to the message. Those affected are advised to move the e-mail to the spam folder without reply. Under no circumstances should data be disclosed.
Fraudulent e-mails: How Commerzbank customers recognize phishing e-mails
This is how quickly you can recognize the fake Commerzbank message currently circulating as a phishing email:
- Dubious sender address
- Determination of the link by means of a so-called “mouse-over”. For a “mouse-over” position the pointer of the computer mouse over the link without clicking on the link.
- You can then read a preview of the link in the status bar of the mail client or webmail without having to follow the link. For example, you can see whether the link leads to the Commerzbank website or whether the link contains suspicious keywords that indicate a phishing attempt.
Although bank security procedures have improved over the years, well-organized criminals still manage to gain access to data and bank accounts using sophisticated fraudulent tactics. Careless clicks can be very expensive – so you should always look out for abnormalities in e-mails. (Vivian Werg)