Companies communicate with their customers through email, phone calls, or text messages. However, relying solely on the number or sender to confirm authenticity can be dangerous. Learn about this scam technique and how to avoid being deceived by communications that seem legitimate.
Spoofing is when cyber criminals impersonate people or public or private organizations (like a bank) to trick people. Criminals can falsify the sender of emails, sandwich fake SMS messages in a legitimate thread, or alter a phone number or caller ID to appear trustworthy.
But to what end? To earn your trust so that you'll release personal information, bank details or your digital banking login, download malicious programs, or make payments.
Think before you click or reply
Cyber criminals’ favourite spoofing mechanisms are:
If they’re pretending to be your bank, they might say they’re calling from the anti-fraud department about a fraudulent payment from your account. They might also ask you to download the new version of an app or software to protect your devices. Don’t believe them!
Be wary if...
Spoofing at work
Companies of all sizes, including SMEs, can also be a target of this identity theft technique. Scammers tailor their communications, pretending to be a supervisor, colleague, or provider, aiming to persuade staff to make an urgent payment, disclose sensitive information (such as customer data), or download an infected document.
Training employees to detect suspicious communications and implementing technical solutions to protect the email is crucial to prevent this threat. At Santander we offer you, Cyber Guardian. A centralized cybersecurity platform to help you detecting and blocking suspicious messages 24/7, educating employees to recognize malicious communications, and identifying areas to improve your online security.
Our cyber security pledge
Santander runs several initiatives to help customers and non-customers understand cyber security and stay safe online.
We use financial education to teach people about finances and cybersecurity so they can bank online safely, protect their personal details, and avoid falling victim to fraud. What’s more, our online training Cyber heroes and award-winning fictional podcast on cybersecurity, Titania, are helping us get closer to diverse audiences through interactive and innovative content.
Phishing: When somebody tries to trick you using email
Vishing: A telephone call that aims to steal your personal or financial data
Smishing: When an SMS isn’t from your bank
Skimming: Illegal capture of a card information using a device