Cyber criminals misuse the Sparkasse's name and corporate design to lead customers into a phishing trap.
Users receive an email in the name of the savings bank
Apparently the terms of use have changed and confirmation from the customer is required.
This is a phishing attempt.
Be careful, there are currently fake emails in the name of the Sparkasse circulating. The fraudsters claim that the terms of use have changed in some cases and that confirmation is necessary.
The email is as follows:
Delivered on March 5th, 2020
Dear Mr. ...,
we must inform you that our terms of use have partially changed or additions have been made.
So that our customers are always informed about all changes and make them binding, we must ask you to accept them. Confirmation is necessary in order to continue to use all functions.
You can either confirm the adjustments online directly or in your local branch. Online process: Here
If you do not agree with the changes in their entirety, you can revoke your consent within 14 days.
You will be informed about the further process by post: Shipping address:
[NAME]
[STREET]
[RESIDENCE]
We ask for your understanding,
your customer service
At first glance, apart from the typo of the “zü”, there are no other indications of attempted fraud. We click on the link provided and end up on a website with a login mask in the bank's corporate design. The URL shows that this obviously cannot be an original page. The Sparkasse has absolutely nothing to do with this email!
Anyone who logs in here falls directly into the scammers' trap and loses their login data to them. The cyber criminals can now interact with your account as they wish. This means making purchases in your name and also selling all the data on the dark web.
[mk_ad]
This is how you can recognize a phishing attempt:
- Most of the time you will not be addressed personally. Scammers use phrases like “Dear Customer” or no salutation at all.
- The pretext is unrealistic. Also pay attention to grammatical and spelling errors.
- The return address is not the service address of the named company.
- The login page link does not match the link of the correct page.
- The links to data protection, general terms and conditions, legal notice, etc. do not work.
- As a general rule, your bank or companies such as Amazon or PayPal do not ask you to provide personal information via email.
Related to the topic: PayPal phishing: “Your account has been used…”
If you enjoyed this post and value the importance of well-founded information, become part of the exclusive Mimikama Club! Support our work and help us promote awareness and combat misinformation. As a club member you receive:
📬 Special Weekly Newsletter: Get exclusive content straight to your inbox.
🎥 Exclusive video* “Fact Checker Basic Course”: Learn from Andre Wolf how to recognize and combat misinformation.
📅 Early access to in-depth articles and fact checks: always be one step ahead.
📄 Bonus articles, just for you: Discover content you won't find anywhere else.
📝 Participation in webinars and workshops : Join us live or watch the recordings.
✔️ Quality exchange: Discuss safely in our comment function without trolls and bots.
Join us and become part of a community that stands for truth and clarity. Together we can make the world a little better!
* In this special course, Andre Wolf will teach you how to recognize and effectively combat misinformation. After completing the video, you have the opportunity to join our research team and actively participate in the education - an opportunity that is exclusively reserved for our club members!
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )



