matricula-
Get to know our products for Personal
Bank accounts Bank cards Mortgages Personal loans and credits Savings Investment Retirement Insurance Renting Cars
Become a customer and create your account1 in less than 10 minutes with your mobile
Open your account online
 1 View information document on fees
Branch finder Online appointment Correos Cash
Help Center Contact Security
Simulate your mortgage Code of Best Practices 2022 Digital Banking Services Payment account transfer service Become a customer Más Sabadell
Back
Cybersecurity

These are the latest online scams
Carlos S. Ponz - Wed Jun 19 10:04:56 CEST 2024
Share

New, more sophisticated and hard-to-spot online scams are always coming up, so knowing what they are is the first step in protecting yourself from them.

Cybercriminals are getting more and more creative and try to set up new types of online scams to successfully get away with their criminal activity. Despite their ever-greater degree of sophistication, we consumers can detect them and stay ahead of the game before it gets too late.

Below we share with you some of the latest online scams and give you the key tips on what to do if you suspect you might have fallen victim to one of them.

What are the new types of online scams?

Along with better-known scams such as phishing (where the cybercriminal usurps a person's or company’s identity in order to steal the password of their accounts or card PINs), in recent years other types have emerged which are rapidly becoming more widespread. Knowing them is key to detecting and avoiding them. Some of these are:

  • Fake job offers. In this scam, cybercriminals offer jobs that consist of simple tasks such as giving out likes on social networks or receiving and sending transfers. To avoid falling victim this scam, one must beware of recruiters that contact you with a succulent offer out of the blue.

  • Investment scam. Scammers offer investment opportunities with high returns with a very low initial investment and no risk. If you receive an investment proposal by email, on social media or by phone, be wary of it.

  • WhatsApp scam. Criminals pretend to be a family member or friend urgently requesting a sum of money. Do not trust unknown numbers, nor messages that do not give specific data about the person on the other end.

  • Deepfake. This consists in using artificial intelligence (AI) and machine learning to create manipulated video, audio and image content and usurp the identity of another person. Through the deepfake, the victim is requested to share sensitive information, such as their personal data or login password to their online banking, or directly transfer money to a bank account.

  • Vishing. This is a scam in which, via a telephone call, the criminal pretends to be from a trustworthy company or person in order to obtain personal and sensitive information from the victim. The victim trusts the scammers because they have obtained the victim's information via social media or forums where they have shared their content. In these calls, the victim is informed about a transaction and they must download an application to authorise it.

  • Pharming. The objective here is to redirect users to fraudulent websites or manipulate their computer systems in order to compile delicate information. In pharming, the victim is taken to a fake website, such as their bank’s online banking portal, and there sensitive data is requested of them, such as their password or bank card PIN, without them being aware of the scam.

  • Whaling or CEO fraud. This scam consists of the criminal impersonating an executive in the victim’s company. Then by using an email account very similar to the original and copying his/her signature, the victim is ordered to send confidential information, grant access to their computer system, or is made to transfer them money.

  • Wangiri. In this online scam, a bot repeatedly calls the victim’s phone number and hangs up before he/she picks up. When the user checks the number on the Internet, it takes them to a fake site of a supposedly trusted supplier. Then, if the victim calls the scammers back, they begin to charge them money, because it is a pay call, which notably increases their phone bill.

  • Catfishing or romance scam. This consists of creating a fake digital profile on social media and dating website in order to fool the victim and get them to send money to the con artist or information on where they live. As the scam goes on in time, the victim tends to share more and more sensitive data with the fraudster.

  • Scams on online platforms for trading second-hand goods. On websites and apps for trading second-hand goods, we can find cybercriminals who pose as fake listers or buyers who, under any false pretext, ask you to make transactions outside the application and thus perpetrate their scam. Be wary of anyone who has an air of urgency; verify their profile and think twice before accepting hard-to-resist offers.

How do you protect yourself from these new online scams?

Despite their sophistication, there are certain recommendations for detecting these type of online scams before they get out of hand. According to the Spanish Security Institute (Incibe), the best defence we have against these digital frauds is being wary, because at entities such as Banco Sabadell, for example, we will never ask for sensitive data via text message, email or phone, and nor will we ask you to transfer your funds to a secure account. 

There are, however, other recommendations that you can take to avoid falling victim to an online scam, such as:

  • If you aren’t sure about an email, message or call you have received, ignore it and don’t call, text or email them back.

  • Never click on a link in an email or message if you are not sure who sent it to you. If you do, your device might get infected immediately.

  • Only download applications from your store and ignore the instructions of a message to download an application from another location. The only reliable source for downloading apps is your App Store in iOS or Play Store in Android.

  • Keep your data under lock and key. Don't give out passwords, keys, codes or personal or financial information such as your card details.

  • Beware of requests for money purporting to be from family or friends from numbers you don't recognise. Check their authenticity by other means.

  • In certain sensitive transactions, such as an online purchase, always use dual-factor verification (such as your phone) for a greater degree of security.

  • Always keep your antivirus and operating systems up-to-date, not only on your computers but also your mobile phones.

This may interest youHow to have better cybersecurity in any online transaction

If you suspect you have been a victim of some type of scam, contact us immediately so we can help you. We remind you that our service team is available 24 hrs, seven days a week, at (+34) 963 085 000.

Photography by Anastasia Nelen on Unplash
Share


Link
matricula-

Do you suspect that the security of your accounts has been compromised?

Visit our Help Centre, where we tell you what to do if, for example, your account passwords or card details have been stolen.

 Go to the Help CentreGo to the Help Centre

The latest
Cybersecurity   - 11/11/2024

How do you shop online securely? Carlos S. Ponz

Visiting trustworthy websites and being wary of emails with suspicious-looking links will mean a more secure online shopping experience.

Shopping online is quick, easy and convenient. Having immediate access to digital services has substantially improved our lives, but it has also meant the proliferation of a wide range of scams. It is important to keep abreast of the different types of Internet fraud we might fall victim to, as we will be better equipped to protect ourselves, and to follow a series of recommendations.

Below we explain the key points to make your online shopping experience as secure and pleasurable as possible.

Security tips for your online purchases

With some simple recommendations, you can significantly reduce the risk of falling victim to an online scam. Here are some of the most important:

  • Be wary of unrealistic offers. Don’t blindly trust in e-commerce sites that attempt to sell products far below their market price. For example, if you find that €2,000 camera that you’ve had your eye on for a sale price of just €400, don’t be tempted, as it might just be a scam.

  • Beware of offers that come to you by email, WhatsApp or other channels if you haven’t requested them. If it turns out to be a scam, it might inject a virus or malware in your device if you should happen to click on the links included in these messages. For example, if you click on an infected link, the criminal might then hack your account or steal your identity. If you do receive a suspicious message, we recommend ignoring it and deleting it immediately without clicking on the link it contains.  

  • Keep informed to avoid falling victim to a ‘ghost’ company. Make sure that the e-commerce site you want to buy from has a telephone and a postal address which you can contact in case of problems.

  • Read other users’ opinions. Be wary of e-commerce sites with 100% positive opinions and also those which you don’t find any information about on the Internet.

  • Keep your antivirus updated. Always having an updated version of your antivirus is very important in online shopping, both on your computer and your phone. In this regard, it is also a good idea to have the operating systems on your devices updated to their latest version.

  • Never make a purchase connected from a public Wi-Fi network. You should always make purchases from your own network or from places where you have the utmost trust in the person or institution which is providing the Wi-Fi connection you are operating through.

  • Secure URLs. In e-commerce portals, it is crucial that there be a padlock in the browser bar. Click on the padlock and make sure that the address is written properly. 

Discover the keys to your most secure digital banking

Your bank card, a security guarantee

Along with these recommendations, your Banco Sabadell card is also a great ally for enhanced security in your online purchases.

Whenever you need to, you can deactivate your card from being able to make online payments. To deactivate this option, view “your cards” in the Banco Sabadell app, select the one you want to switch off, and in the bottom menu, within “Settings”, you will find the option “Do you want to use your card online?”. With a simple tap you can turn off this option and turn it back on when you want.

In shopping with EMV Chip, your PIN will be requested to reduce the risk of fraud, thanks to its cardholder validation system.

In contactless payments, we will ask for your PIN for purchases that exceed a predetermined amount.

You can adjust the limits on your card for purchases and cash withdrawals.

In the case of suspected loss or theft of your card, you can switch it off temporarily from the Banco Sabadell app. What’s more, if we detect certain unusual patterns or transactions, we will get in touch with you immediately.

Are you having trouble using your card for online purchases? Find out why at our help centre.

Photography by Vitaly Gariev on Unplash

Read article
Cybersecurity   - 04/07/2024

How to prevent yourself becoming a target of the CEO or Man In The Middle frauds Carlos S. Ponz

The CEO and Man In The Middle fraud are two of the most common phishing attacks, so here's how to avoid and detect them.

The CEO and Man In The Middle fraud are two of the most common phishing attacks, so here's how to avoid and detect them.The most common digital fraud in companies include those related to phishing, a type of cybercrime that consists of fraudulently acquiring confidential information, such as account passwords or bank card information. Within phishing, there are two new types that are becoming particularly popular among cybercriminals, especially in holiday seasons: the CEO and the Man In The Middle scam

This article explains what they are and offers a series of tips on how to avoid them.

What is CEO fraud? 

The CEO fraud is the use of an identity of someone with authority in a company, such as the chief financial officer (CFO) or chief executive officer (CEO), to try to defraud employees who have access to the company's accounts or other relevant assets. Using this fraud, the criminal tries to get money transferred or obtain confidential information from the organisation that can be used to his or her benefit.

One of the most common ways in which this CEO fraud occurs is through the registration of a company's website domain that is very similar to the real one. Then, the criminal sends an email to someone with a position of authority within the company, pretending to be someone in charge, asking them to urgently and confidentially send a certain amount of money to an account controlled by the cybercriminal.

What is the Man In The Middle fraud?

The Man In The Middle attack involves the criminal intercepting the communication between two people connected to a network. This allows them to obtain highly confidential information (such as bank details or the victim's physical address) that will later facilitate the phishing of either person, so that they can ask the CFO of the company to make a payment to them.

Typically, in a Man In The Middle fraud, criminals will use email address phishing of a company's suppliers to divert payments to a fraudulent account. It can also happen the other way round: spoofing a customer's email address to divert their charges to a fraudulent account. 

This may interest you: Check out the new online fraud attacks

Tips to avoid becoming a victim of a CEO or Man In The Middle phishing attack

In order to avoid becoming a victim of a cyberattack, the most important recommendation is to be cautious. If you have any doubts about a request you receive informing you of a new subscription account, the best thing to do is not to trust it. Remember that Banco Sabadell will never request confidential data from you by text message, email or phone call, nor will we request that you transfer your funds to a secure account.

In addition, we recommend that you follow other tips to minimise the chance of suffering any of these frauds, such as:

  • First, always check email addresses, paying special attention to any differences that you may notice in the email.

  • Check by a different method other than email (such as the bank's app) any change in the direct debit of a payment suddenly and without prior warning.

  • So, if you receive an email informing you that there has been a change in the account to which a payment has been sent, you will usually receive a simultaneous phone call from the impersonator to confirm the fraudulent activity. Never trust any such call and always check the authenticity of the exchange by contacting the supplier on the telephone number originally given to you.

  • The first time you make a transaction with a new supplier, always confirm that the details of the payee and the bank address for payment are identical to those included in the previously established contract or on the order form and that there are no changes.

  • Remember never to share your passwords or your company's passwords with anyone so as not to allow them to be compromised. 

  • It is crucial to inform a company's employees about the possible fraudulent activity that they may be exposed to, especially in relation to being cautious when they are required to make a payment.

  • And it is important for any company to implement internal protocols for verifying payment requests received by telephone or email. 

This may interest youHow to increase the cybersecurity of any online transaction

If you have any queries, Banco Sabadell has a customer service team at your disposal 24x7 on 963 085 000.

Photograph by Andrea Piacquadio on Pexels.

Read article
Cybersecurity   - 20/06/2024

These are the most common online scams and how you can avoid them Carlos S. Ponz

There are countless Internet scams out there, but you can reduce your chances of falling victim to one if you follow certain guidelines.

Although there is a plethora of cyberthreats on the Internet, knowing the most common ones is essential to keep alert and aim to avoid them. Below we analyse the most common online scams and give you some recommendations to reduce your chances of falling victim to one of them.

What are the most common online scams

Although there is a wide variety of online scams, these are the most frequent:

  • Phishing. This is a type of computer crime that features the attempt to fraudulently acquire confidential information, such as the password to your bank accounts or detailed information on your credit cards. The cybercriminal impersonates a bank or a company and, abusing the user’s trust, asks them for their account password or card PIN number.

  • Smishing. This is a variant on phishing where the fraudsters try to impersonate a bank, company or institution using SMS. Generally, the message asks the victim to call a special billing number or access a link to a fake website using a false pretext. If the recipients opens the link, the cybercriminal may infect their device or access sensitive information.

  • Vishing. The aim here is to steal the victim’s bank data or make financial transactions. This is a phone scam in which the criminal calls and pretends to be from a company, organisation or trustworthy person in order to obtain personal and sensitive information from the victim. In these calls, the victim is sometimes informed of a transaction and they are requested to download an application to authorise it or they are informed of attempted fraudulent operations and requested to make a transfer to keep their money safe.

Important: remember that Banco Sabadell will never request confidential data from you by text message, email or phone call, nor will we request that you transfer your funds to a secure account.

This may interest youCheck out the new online fraud attacks

How to avoid online scams

Each of us can take certain actions to enhance our level of security and avoid falling victim to an online scam. Some of the more important are:

  • Periodically updating your card PIN and password to access your remote banking. Regularly change your passwords and use a different one for each of your accounts, making sure they are as strong as possible (for example, creating passwords at least 8 digits long that include upper and lower-case letters, numbers and special characters). Remember never to physically write down the passwords anywhere or share them with anyone.

  • Never give out your username or password. Never share your passwords with anyone else to prevent them from being compromised. Banco Sabadell will never ask you for this information. For this reason, do not share any password or confidential data, such as transaction keys or card details (PIN, CVV or numbering), even if the sending party identifies itself as Banco Sabadell.

  • Keep a close eye on your security. Always check the information on the most recent login to your online banking on the Banco Sabadell website. Remember to always use email in secure mode and distrust those emails that come from unfamiliar sites or those containing incoherent information. Also avoid entering your passwords and or opening a session in your online banking on public computers.

  • Always keep your devices updated. Keep both your mobile phone’s operating system and apps updated. Also remember not to install apps from unknown sources and use official and certified sites, such as Google Play Store or the App Store. Install an antivirus program on your computer and your mobile phone.

  • Always browse on secure websites. When using the Internet, make sure that the websites you connect to are: https:// and not http://. Look carefully at the address and if it begins with https, it will have a padlock. When you click on the padlock, check that the address is written properly.

If you have any queries, Banco Sabadell has a customer service team at your disposal 24x7 on 963 085 000.

Photography by Magnet.me on Unplash

Read article