Fraud alert: Scam messages impersonating Spain's CaixaBank
In the body of the message, the sender tells the clients that they must click on a link and access the bank's (fake) website to activate a new security system
The National Cybersecurity Institute of Spain (Incibe) has launched an alert about a campaign of fraudulent "phishing" emails that try to impersonate the financial institution CaixaBank.
In this campaign, emails sent by a false sender on behalf of CaixaBank have been detected, with the subject: "As of 01/19/2022 you cannot use your Card."
In the body of the message, the sender tells the clients that they must click on a link and access the bank's (fake) website to activate a new security system.
When customers click on the link, they are taken to a supposed CaixaBank page, but in reality it is a fraudulent website (web spoofing), whose sole objective is to capture their data.
The institute does not rule out that bank clients are receiving other messages, with a different subject but the same fraudulent intentions.
The National Cybersecurity Institute reminds users of banking services that if they receive an email supposedly from a bank or another company, they should "never" access it from the link included in the email:
"Do it directly through the customer area" in the company's official website, highlights this organization.
Ignore the message
The best thing to do if you receive such an email is to ignore it, according to experts.
"If you or any employee of your company has received an email with these characteristics, ignore it. This is an attempted fraud," recommend the Incibe experts.
For those who have inadvertently accessed the link and entered the credentials to access their bank account, Incibe recommends changing the password to access online banking as soon as possible, as well as contacting their bank to report the situation.