Bank customers in the scuttle of cheaters. One click and the account disappears

Santander Bank Polska has once again become the target of cyber criminals. Fraudsters have started a new phishing campaign in which they impersonate the bank and send fake e-mails. As the CSIRT KNF warns, i.e. a team of responding to the computer security incidents of the Polish financial sector, clicking on the given link is associated with a serious threat to customer money.

What is the attack?

The attack consists in sending emails informing about the alleged update of the banking system. Bathers warn that if the user does not react within 24 hours, access to Santander Bank services will be blocked. The whole is prepared in broken Polish, which is suggested by a foreign source of attack, but the time pressure used can make some customers manipulate.

The content of the message contains a clear “Start update now” button. Clicking leads to the website reminiscent of the bank’s official portal. There, criminals try to extort the login and password for electronic banking. In the case of data provided, further actions are possible, including transfers performed by fraudsters or complete acquisition of the account.

How to protect yourself?

Experts remind you that the real login address for online banking Santander To www.centrum24.pl. Every other, especially in the “.com” domain, is a serious warning. It is also worth remembering that banks never require this type of “system update” by e -mail, which clearly indicates an attempt to fraud.

The event shows that phishing is still an effective method of extorting data. Despite simple warning signals, such as language errors or unusual addresses of the pages, many customers can still fall victim to the attack, acting impulsively. CSIRT KNF calls for special caution and ignoring such messages.