There have recently been many reports in the media about attempted frauds where confidential data is “fished” from bank customers (“password fishing” or “Phishing”).
How the fraud works:
Internet users get an email that supposedly comes from their bank. Under a pretext, the users are asked to click on a link in the mail to log in to the online banking site.
However, this link leads to a fake website that looks deceptively similar to a genuine site. The user is asked to enter their log in and authorisation data. The input is then misused for illegal purposes by the fraudsters.
How can you protect yourself in this case?
- Firstly, you can be certain that Commerzbank will never ask you to update your personal details by email or ask you to log in online for any other purposes.
- For this reason alone, you can safely ignore such messages. Never use the links in such emails. In case of doubt, contact our Customer Service.
Furthermore, we recommend the following approach to login:
- Type the address manually in the relevant line in your browser software or use a “bookmark” previously saved in your “Favourites” menu.
- Do not use any links sent in emails, even if the message ostensibly comes from a trusted sender.
- Do not complete any electronic forms in emails that include a request to disclose log in data.
- Use an up-to-date browser. Get regular security updates from the producer of your computer operating systems – e.g. for Windows on https://windowsupdate.microsoft.com .
What to do if you are affected:
If you think you have been the victim of a “phishing” message and fraudsters have gained access to your identification data, please do the following:
- If you have revealed your log in data, immediately deactivate access in your Online Banking/Administration service and contact your Commerzbank branch or Customer Service.
You are also welcome to send us your message via fax to the following fax number: +49 (0) 40 - 3 76 95 400.
We also recommend the following procedure to login:
- Key the address in the browser window manually, or use an entry you have previously created in the “Favourites” menu.
- Do not use any links sent in e-mails, even if the mail appears to be from a trusted source.
- Do not fill in electronic forms in e-mails that ask you to provide logon data.
- Use a current browser. You can obtain security updates from the producer of your operating system, for example from https://windowsupdate.microsoft.com for Windows operating systems.
If the worst happens: what to do if you’ve navigated to the link
If you think you’ve fallen victim to a ”phishing” mail and your logon data has been compromised by fraudsters, here’s what to do:
- If you have made your login data known, please immediately disable your access in the Online Banking/Administration menu and contact your Commerzbank branch or the help desk.