From Cyprus Police:
Phishing, smishing and vishing
Phishing (by email), smishing (via sms to phone) and vishing (by telephone) are the main methods used for
scams targeting bank customers. The main feature of each of these is the way in which the fraudster in any case
approaches his potential victim.
Fraudulent Phishing
scams targeting bank customers. The main feature of each of these is the way in which the fraudster in any case
approaches his potential victim.
Fraudulent Phishing
The term "phishing" refers to fraudulent emails designed to deceive their recipients and to disclose to their
fraudsters their personal and financial information or security codes.
How does it work;
The fraudster approached his potential victim by sending him a misleading email message.
These emails:
- They may be very similar to the messages sent to their customers by the banks.
- Copy the logo, the features and the style of the actual emails.
- Ask you to download an attachment to your device or click on a link.
- They use terminology that gives the sense of urgency.
What can you do;
- Keep the software up-to-date, including the browser, antivirus, and operating system.
- Be especially careful if a "bank" email asks for sensitive information (for example, your bank account
password via internet banking).
- - Carefully check the email: compare the address with the previous real messages from your co-operation bank.
- Check for spelling errors and grammar or syntax errors.
- Do not respond to a suspicious email, instead forward it to the bank you are working with, typing your email
address yourself.
- Do not directly click on the link and download the attached file, instead type the electronic link address
in your browser browser.
- In case of any doubt, check the website or call your bank.
Cybercriminals are based on the fact that people are busy and hastily. This, combined with the fact that
fraudulent emails seem to be legitimate, maximizes the risk of falling victim.
Take special care when using a portable device. It may be harder to detect a phishing attempt on your mobile
phone or tablet.
Vishing
The term "Vishing" (combination of the words "Voice" and "Phishing") is a telephone fraud that aims to deceive
the victim to reveal his or her personal and financial information or security codes and / or to transfer money to
fraudsters.
What can you do;
- Be careful with sudden and unexpected telephone calls.
- Keep the phone number from which they have called you and let them know that you will return them to the
phone call.
To verify their identity, look for the business phone number and contact them directly.
- Do not verify the person who is calling you with the phone number he gave you (may be a fake or fake number).
- Scammers can find your basic contact information over the internet (eg from social media). Do not assume
that the person calling you declare his true status because he has such information.
- Do not give the PIN code of your credit or debit card or your bank account password via e-banking. The bank
you are working with will never ask for such information.
- Do not transfer money to another bank account upon request. Your bank will never ask you to take such action.
- If you think this is a phony phone call, report it to your bank.
Smishing
The fraudster approached his potential victim by sending him a misleading email message.
These emails:
- They may be very similar to the messages sent to their customers by the banks.
- Copy the logo, the features and the style of the actual emails.
- Ask you to download an attachment to your device or click on a link.
- They use terminology that gives the sense of urgency.
What can you do;
- Keep the software up-to-date, including the browser, antivirus, and operating system.
- Be especially careful if a "bank" email asks for sensitive information (for example, your bank account
password via internet banking).
- - Carefully check the email: compare the address with the previous real messages from your co-operation bank.
- Check for spelling errors and grammar or syntax errors.
- Do not respond to a suspicious email, instead forward it to the bank you are working with, typing your email
address yourself.
- Do not directly click on the link and download the attached file, instead type the electronic link address
in your browser browser.
- In case of any doubt, check the website or call your bank.
Cybercriminals are based on the fact that people are busy and hastily. This, combined with the fact that
fraudulent emails seem to be legitimate, maximizes the risk of falling victim.
Take special care when using a portable device. It may be harder to detect a phishing attempt on your mobile
phone or tablet.
Vishing
The term "Vishing" (combination of the words "Voice" and "Phishing") is a telephone fraud that aims to deceive
the victim to reveal his or her personal and financial information or security codes and / or to transfer money to
fraudsters.
What can you do;
- Be careful with sudden and unexpected telephone calls.
- Keep the phone number from which they have called you and let them know that you will return them to the
phone call.
To verify their identity, look for the business phone number and contact them directly.
- Do not verify the person who is calling you with the phone number he gave you (may be a fake or fake number).
- Scammers can find your basic contact information over the internet (eg from social media). Do not assume
that the person calling you declare his true status because he has such information.
- Do not give the PIN code of your credit or debit card or your bank account password via e-banking. The bank
you are working with will never ask for such information.
- Do not transfer money to another bank account upon request. Your bank will never ask you to take such action.
- If you think this is a phony phone call, report it to your bank.
Smishing
The term "smishing" (a combination of the words "SMS" and "Phishing") refers to the attempt of fraudsters to
obtain personal and financial information or security passwords through SMS messages.
How does it work; The text message will usually ask you to click on a link or call a phone number to verify,
update, or re-activate your account. But ... the electronic link leads to a fake website and the phone number
leads to the impostor who claims to represent the legitimate business.
What can you do;
- Do not click on links,
- Do not hurry. Take your time and carry out the necessary checks before answering.
- Never reply to a text message (sms) requesting your PIN or password to your bank account or any other
personalized security credentials (for example, e-banking user name).
- If you think you may have responded to a deceptive text message (sms) and provided your bank
account information, contact your bank immediately.
obtain personal and financial information or security passwords through SMS messages.
How does it work; The text message will usually ask you to click on a link or call a phone number to verify,
update, or re-activate your account. But ... the electronic link leads to a fake website and the phone number
leads to the impostor who claims to represent the legitimate business.
What can you do;
- Do not click on links,
- Do not hurry. Take your time and carry out the necessary checks before answering.
- Never reply to a text message (sms) requesting your PIN or password to your bank account or any other
personalized security credentials (for example, e-banking user name).
- If you think you may have responded to a deceptive text message (sms) and provided your bank
account information, contact your bank immediately.
