What should be done in the event of a phishing attack? How do you recognise phishing and how can you protect yourself against it? Here you can find out the most important things.
A seemingly legitimate email asking you to change your password. If you aren't sceptical at this point, you could be a victim of phishing. We will show you how to recognize phishing and how to protect yourself.
Overview:
» Phishing is a form of online fraud in which scammers impersonate a well-known organization or person in order to obtain sensitive information such as usernames, passwords or credit card numbers.
» Hackers use fake emails, text messages, phone calls, or websites as bait.
» Phishing can lead to identity theft and financial loss.
The term phishing is a combination of the words "password" and "fishing" and can be thought of as "fishing for passwords".
However, the precise definition of phishing encompasses much more than simply stealing passwords. Hackers know no limit when it comes to hunting down personal information. A common phishing method is using a fake email. Often, it seems to come from well-known companies or organizations. The email will ask you to do something, such as change your password. If you trust the email and follow the instructions, you will fall into the trap: The scammers steal sensitive information such as your password, credit card number, bank account information or national insurance number, which they can use for illegal debits, forged documents or other criminal activities.
If you think you won't fall for phishing emails, you should be careful. Phishing attacks are very sophisticated these days. They disguise themselves under seemingly trustworthy cloaks by using the names of well-known organizations such as the Post Office, Amazon or the police. This builds trust, which scammers use to exert pressure. Be vigilant, even if an email appears to be from a well-known organization.
» Phishing emails: The most common form of phishing, usually in the form of bulk phishing emails.
» Smishing: Phishing via SMS or Whatsapp.
» Voice phishing or vishing: Phone call phishing.
» Social media phishing: Attack via a social media account.
» In-app messaging: Phishing emails sent within an app (e.g. Outlook phishing or Gmail phishing).
» URL phishing: Phishing emails that contain a link to a fake website.
From fake emails in the name of well-known companies to perfectly replicated bank login pages: Today's phishers are extremely resourceful and use various tricks to lure their victims into their traps. The methods of phishing can constantly change, which is why it is important to be vigilant and keep yourself informed about current phishing cases. Are you receiving a dubious email that you're not sure if it's from a reputable provider? Do some research online. Other consumers may have already reported similar cases.
✓ Be generally suspicious about questions about personal data.
✓ Phishing emails often contain a direct request for payment.
✓ Look closely at the email address. You can often see from the ending that the e-mail cannot have been sent by the supposed company.
✓ The perpetrators often choose words that suggest urgency.
✓ You can often recognize a phishing e-mail by spelling or grammatical errors.
✓ Be sceptical about missing or dubious contact details.
✓ Shortened links from providers like bit.ly or TinyURL are very popular in URL phishing.
I didn't pay attention for a moment and then it happened: You have been the victim of a phishing attack. But it's not too late. Follow these 6 steps to escape the cyber attack unscathed:
1. Block your bank account or credit card
If you have given your account details to fake sources, you should have your card blocked as soon as possible. With Swiss Bankers you can easily block your card yourself in your app.
2. Change your password
In the event that the perpetrators have obtained your email access or other login data, you should change the password in question as soon as possible. The following applies: The more creative, the better. The more varied the combination of letters, numbers and special characters, the more secure the encryption.
3. Also check your other accounts
Not sure if credentials for other accounts are affected? Contact the provider of the online shops, social platforms and (financial) service providers that you use regularly.
4. Never transfer money
No matter how often and how aggressively you are asked for payments: Never transfer money to unknown accounts.
5. Contact the authorities
Get advice from the police, consumer protection or legal advice.
6. File a complaint
Report the incident to the responsible police station and file a complaint. In the event of a phishing attack, you have full legal protection at your disposal.
» Phishing is dangerous because it can infect the recipient's system with malware that steals personal information.
» If attackers gain access to this data, they can use it for a variety of criminal activities.
» Even 'simple' phishing of personal data can lead to illegal account debits, identity theft and attacks on critical infrastructures.
» It is important to be cautious and delete suspicious emails or messages to reduce the risk of phishing attacks.
In the digital world, phishing attacks are a widespread threat. Software companies are constantly expanding their products to protect users from cybercrime. Here are some solutions that may help you avoid attacks.
• Latest anti-phishing software scans your inbox for the latest phishing emails, protecting you from potential attacks.
• Download antivirus programs. They identify phishing websites and protect against malware phishing.
• Keep software and operating systems up to date. Regular updates protect against the latest phishing techniques and tactics.
• Use multi-factor authentication (MFA) to effectively prevent attacks. If someone tries to steal your login credentials when phishing, the MFA will stop the process.
• Look for security certificates such as a valid SSL/TLS certificate. A lock icon in your browser's address bar indicates that the connection to the website is encrypted and your data is protected.
In addition to these software solutions, it is important to keep yourself regularly informed about current phishing e-mails on the Internet. Increased awareness and caution when surfing can help prevent phishing attacks.
New software solutions to combat phishing are being developed at a rapid pace. At the same time, the methods used by cybercriminals are becoming more diverse. Therefore, exchanging information with other people about current phishing trends is helpful in protecting yourself and potential victims from attacks.
In addition, the Federal Reporting and Analysis Centre for Information Assurance MELANI is available to you in the fight against phishing. If you identify a phishing email, forward it to reports@antiphishing.ch. This will help track down the perpetrators and contribute to online security.
At Swiss Bankers, we have set ourselves the goal of actively working with our customers to combat phishing. If you have been a victim of abuse, please let our customer service know. Either by phone on +41 31 710 12 15 or by email to info@swissbankers.ch. Together we can take action to combat phishing attacks and increase security online.