Current phishing wave: Deutsche Bank customers targeted by cyber criminals
Fraudsters are sending text messages and emails on behalf of Deutsche Bank and Commerzbank about the alleged termination of access to the PhotoTan app.
Fraudsters repeatedly try to obtain valuable information such as bank details in various ways.
(Image: Sadi-Santos/Shutterstock.com)
A new wave of phishing is targeting customers of Deutsche Bank and Commerzbank. Fraudsters are sending fake e-mails and text messages asking customers to reactivate the PhotoTAN procedure. But this is just a pretext to obtain sensitive bank data. The consumer advice center's phishing radar also contains references to the phishing wave.
Betrugsversuche (4 Bilder)
The emails have the subject "Security! Reactivate photoTAN procedure". The recipients are asked to reactivate their photoTAN procedure, which was supposedly terminated for security reasons, via a link. They are also asked to disclose their account details.
Commerzbank, ING, HypoVereinsbank and others
Customers of Commerzbank, ING and HypoVereinsbank are also currently receiving an increasing number of fraudulent emails, as shown by the consumer advice center's phishing radar. Sometimes it is about an allegedly necessary data update, sometimes about a security update of the banking app or the renewal of the telephone number. However, the aim is always to obtain confidential bank customer data.
Not only bank customers, but also Ionos customers must exercise caution. In April, Ionos customers were supposed to agree to new EU directives – allegedly for reasons of data security. The maker of password manager Lastpass also warned of a very convincing phishing campaign targeting customers' master passwords. Fraudsters often also use changes to guidelines or the launch of new functions. For example, Sparkasse also warned of phishing emails in which the bank supposedly informs about the "S-ID check".
Although such messages often attract attention due to the impersonal form of address, dubious sender addresses, spelling mistakes and the request to disclose data via a link, this is not always the case. Fraudsters' attempts look increasingly professional, also thanks to AI. Voice phishing, also known as vishing, is also getting better and better. The Federal Office for Information Security has already issued warnings about this and deep fakes.
Banks and other providers, for example of computer games or streaming services such as Netflix, should never ask for sensitive data. It is best to delete phishing emails or text messages immediately. If the sender's address looks very authentic, it is better to ask the sender of the email.
(mack)