They create spoofed bank websites
Bank phishing emails usually include links that will take you to a spoofed bank website, where you are requested to divulge your financial and personal information.
What are the signs?
Spoofed bank websites look nearly identical to their legitimate counterparts. Such websites will often feature a pop-up window asking you to enter your bank credentials. Real banks don’t use such windows.
These websites usually display:
- Urgency: you will not find such messages on legitimate websites;
- Poor design: be cautious with websites that have flaws in their design or errors in spelling and grammar;
- Pop-up windows: they are commonly used to gather sensitive information from you. Don’t click on them and do not submit personal data on such windows.
What can you do?
- Never click on links included in emails leading to your bank’s website.
- Always type the link manually or use an existing link from your ‘favourites’ list.
- Use a browser that allows you to block pop-up windows.
- If something important really needs your attention, you will be alerted about it by your bank when you access your on-line account.
- If in doubt, give your bank a call.