It's bad enough that many people feel unsettled by the upcoming EU General Data Protection Regulation (GDPR).
However, the situation becomes even worse when fraudsters take advantage of this uncertainty and construct fake emails requesting data comparison or verification. Unfortunately, these alleged verifications then end up on fraudulent websites that elicit sensitive data from unsuspecting and confused customers. An example case: Barclaycard!
As a result of a change in the EU General Data Protection Regulation (EU-GDPR), we are legally obliged to verify the identity of our customers at regular intervals. Please ensure that your information is correct during the verification process. If we discover any discrepancies, we are legally required to deactivate your account until your identity is clearly clarified.

It all sounds plausible, right? At first glance you can't tell exactly whether this is serious or a scam. Visually, this email seems convincing at first, major errors in spelling and sentence structure cannot be easily recognized, but fortunately there are always one or two comma errors in phishing emails, as well as the hoped-for word error in the third paragraph of the short text .
The phishing website
So it's clear: Despite the plausible-sounding argument, this email is a fake. If you follow the instructions, you will end up on a website that is based on Barclaycard's website. Small note: This fake website gives itself a pseudo-reputability by pointing out fake emails.
If you now submit to the supposed login, a detailed questionnaire awaits you on the next page. This is about personal data, but also sensitive banking data. We warn against providing truthful information here!
Step by step: This is what you should do if you have been a victim of a phishing attack!
Basically, security software can help preventatively !
Despite all caution, it can still happen from time to time that you have fallen victim to a phishing attack and have unintentionally disclosed your personal data to third parties. The important thing is: Don't panic, but act immediately! So that you actually know what to do in an emergency, here are our step-by-step instructions:
1. Contact the company for which your personal user or login information was stolen immediately. Please call customer service to have your account blocked. Banks in particular have a blocking hotline that can be reached around the clock and is available specifically for such and similar cases. Describe your case and your account or user area will no longer be accessible with the old login data.
2. Log in to your user account and check whether you can still log in. If this is still possible, go immediately to the area where you can change your current login details. Set a new password and, if possible, also change the user name and contact address.
3. Check immediately whether account changes or transactions have already been made , because criminals are usually very quick. Check whether, for example, goods have been purchased or debits have been made for which you are not responsible. If this is the case, inform the customer service of the respective provider immediately.
4. Document all abnormalities . Take screenshots, print out bank statements and the phishing email, or forward the email to the company in whose name the cybercriminals sent the phishing email.
5. Contact a lawyer who specializes in internet fraud , describe your case and submit all documents related to the fraud. You should contact the lawyer even if you have not yet reported any damage.
By the way, there is also hope in phishing that stolen funds, for example from online banking, will be replaced by banks. The basis for this is the Civil Code. According to § 675u BGB, payment service providers are obliged to replace the stolen payment amounts in the event of unauthorized payment transactions. However, this only applies if the person concerned has fulfilled their duty of care. Further information on the legal basis in the event of damage can be found here .
If you enjoyed this post and value the importance of well-founded information, become part of the exclusive Mimikama Club! Support our work and help us promote awareness and combat misinformation. As a club member you receive:
📬 Special Weekly Newsletter: Get exclusive content straight to your inbox.
🎥 Exclusive video* “Fact Checker Basic Course”: Learn from Andre Wolf how to recognize and combat misinformation.
📅 Early access to in-depth articles and fact checks: always be one step ahead.
📄 Bonus articles, just for you: Discover content you won't find anywhere else.
📝 Participation in webinars and workshops : Join us live or watch the recordings.
✔️ Quality exchange: Discuss safely in our comment function without trolls and bots.
Join us and become part of a community that stands for truth and clarity. Together we can make the world a little better!
* In this special course, Andre Wolf will teach you how to recognize and effectively combat misinformation. After completing the video, you have the opportunity to join our research team and actively participate in the education - an opportunity that is exclusively reserved for our club members!
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )


