Approximately 30% of users have received bogus e-mails claiming to come from banks.
The fraudsters often use fake notifications from banks in order to trick users into handing over account credentials and giving away access to their money, according to the Kaspersky Consumer Security Risks survey carried out by B2B International.
Various services for online transactions (e-banking, e-payment systems and online stores) are now an intrinsic part of modern life for many users.
The B2B International survey shows that 95% of respondents have been online shopping, 91% have used the services of online banking and 74% have used e-payment systems. This trend would never escape the fraudsters’ attention.
According to the survey, 30% of users have received e-mails allegedly coming from a bank which turned out to be bogus forgeries. 22% of respondents reported suspicious messages supposedly sent on behalf of an online store.
Every 10th user (10% of those surveyed) had been automatically redirected at least once to a suspicious site asking them to enter their credit card credentials. Nearly 6% of respondents stated that they have entered financial information on dubious sites.
These are all examples of the activity of cybercriminals engaged in phishing, one of many types of malicious attacks targeting important confidential financial data: credit card numbers, logins and passwords to online banking accounts, etc.
Although many experienced and cautious users probably recognise most phishing attempts, these attacks often end in success: about 4% of respondents reported that they had lost money to cybercriminals. Statistically, 4% is a relatively small figure, however when so many users are attacked each year, even a small success rate translates into big money.
According to the Evolution of Phishing Attacks 2011-2013 survey conducted by Kaspersky Lab in 2013, among the users of the cloud service Kaspersky Security Network, 21% of phishing attacks performed between April and May 2012-2013, involved fake pages of banks and other financial organisations. In absolute figures it means that within just one year 7,5-million users worldwide faced financial phishing.