For clients bank a wave of fraudulent attacks is currently heading in order to get their money. Through phones or e-mails, attackers try to obtain login details to direct banking or numbers payment cards.
She released a new warning today Czech Banking Association. They point out that no bank ever requires banking clients, payment card numbers or confirmation codes from SMS messages in this way.
“We are currently facing a wave of phone calls in which fraudsters impersonate our employees and ask their clients for their digital banking credentials and payment card numbers in order to block a client’s account of an alleged hacker attack,” warns Filip Hrubý, spokesman Czech Savings Banks.
“Phone calls sound very professional, and fraudsters often make them in the middle of the night to reach clients unprepared and vulnerable. We have registered several hundred such phone calls in the last week, “Hrubý continues.
Login data for digital banking, or data from payment cards, are also requested by fraudsters from bank clients in e-mails and SMS messages, which, according to the association, are almost indistinguishable from the official communication of banks.
“Compared to previous flights, the level of attacks has increased. The Czech used is at a decent level, although the text still contains indicators of the author’s non-Czech origin, such as occasional spelling and grammatical errors. Social engineering is also more involved in communication – a selected group of clients by age, urgent phone calls in the early morning or late at night, threats of fines, “says Pavel Šikola, head of the security department in Equa bank.
“We have been facing email phishing attacks almost continuously since the beginning of this year. What has recently begun to emerge in recent days are sophisticated telephone calls (so-called vishing), which in the form of social engineering extract sensitive information from clients, which they then misuse. So far, we have registered two of these cases, “says Markéta Šilhánová, head of the security department at Raiffeisenbank.
“We have recorded several cases of so-called vishing (voice phishing), in which the bank’s client is mostly contacted by telephone with information that his account has been compromised. The fraudster will advise him to transfer the money to another account. In some cases, he even wants access data to online banking, “the spokesman explains Commercial banks Pavel Zúbek.