TSB customers have reported a significant increase in phishing attacks connected to the recent TSB IT incident. A total of 176 complaints have been made since April 30 as hackers seize the opportunity to try and attack the vulnerable bank's customers. Nearly four weeks on from the banking meltdown the issue has not been averted and it has become an easy payday for hackers and scammers. With people’s apps and online banking being down this has allowed hackers to make off with thousands of pounds worth of savings from peoples accounts due to similar looking emails requesting personal account information, something a bank would never do over email.
The scammers are using one of the most common types of breach; phishing attacks. This is the process of sending out texts or emails to customers to a variety of customers, many whom may have made themselves known by venting their frustration through social media. This emails often ask for personal information such as passwords and security details or link someone to a legitimate looking fraudulent website.
On the 22nd of April TSB planned an upgrade to the banks online service over a weekend and told customers they would not be able to access their online banking till the Sunday. This did not happen, and customers had to wait longer to access their online banking some reported they were seeing other peoples bank details when logging in. TSB had planned to shift the accounts of its customers from an older IT system on to a new one however when customer complaints poured in they realised it might not have gone as smoothly as they thought.
Phishing attacks are one of the oldest method of cyber-attack and the most common. It is important that you are aware of how to spot a phishing attack compared to a real email.
Think before you click – When receiving an email with a link in it and you are unsure of its authenticity its vital to look at the signs before clicking. Hover over the link and see if the URL is what you are expecting. The email may refer to you as customer rather than your name, take this as a sign that it may not be from the recipient you expect.
Know the signs – If they are asking you for information that isn’t normally taken over an email then be wary of what information you give. Stay informed about the latest techniques, new ones pop up all the time and you could be the next victim.
Take action – If you are unsure of anything then contact the company who has supposedly sent you the email to confirm whether the email is authentic or fake before you click or give away any information.
For further advice on Phishing signs check out our article of tips.