Beware of phishing for mBank clients!
Recently, a new phishing campaign targeting mBank clients has emerged. Attackers are using fraudulent emails and SMS messages to invite users to update their login details via a fake form. These messages contain links to sites with suspicious domains, such as “mbank-cz.pw”.
After clicking on such a link, the user is redirected to a fraudulent page that at first glance looks like the official mBank website and even has a valid HTTPS certificate. However, by entering their login details on this page, the user is providing sensitive information directly to the attackers. He is then prompted to provide additional personal information, which can lead to a complete takeover of his bank account.
How to protect yourself from these attacks?
- Check the URL carefully: before logging into Online Banking, always verify that you are on the official mBank domain.
- Ignore suspicious prompts: the bank never asks you to change your login details via email or SMS. If you receive such a prompt, consider it suspicious.
- Contact Customer Support: if in doubt, contact mLink on 222 111 999 for information and assistance.
- Update your security settings regularly: make sure your passwords are strong and change them regularly. Activate two-factor authentication, if available.
For more information on current threats and recommendations, visit the official mBank security page.
Be vigilant and protect your personal data from fraudsters!