Bank and mortgage customers are still being targeted heavily in phishing scams according to a new report.
Cybersecurity experts at NormShield investigated the top 50 global banks and found that more than 1,900 potential phishing internet domains were registered in the first half of 2019. These domains are used to try to make emails and links contained in them appear to be from genuine organizations.
Scammers rely on people clicking on these links and believing that the sites they are taken to are genuine, before handing over personal details such as passwords, account details, and date of birth.
Around 15% of the new potential phishing domains registered in the first 6 months of 2019 used SSL security certificates – the ones that mean a secure ‘padlock’ is displayed in web browsers – which can mean customers are lulled into an even greater sense of (false) security.
"Phishing continues to pose significant challenges to both banks and consumers," said Mohamoud Jibrell, CEO of NormShield. "Banks need to continually monitor domain registrations and focus on the most likely domains that may be used to trick customers."