The latest opportunistic campaign by criminals is cleverly designed to play on the anxiety of NatWest customers who find themselves locked out of their accounts.
In one of the phishing e-mails (purporting to be from Stephen Hester, the head of RBS), there are apologies for the problems at RBS and a statement that “a security upgrade” requires customers to update their information.
If customers follow the web link in the e-mail, they’re taken to an “incredibly realistic” replica of the NatWest website. If they do enter their account details on the fake site, the fraudsters will be able to log in to their account and steal all their money.
Criminals on the ball
Alan Woodward, a professor of computing at Surrey University, explained: “This shows how on the ball these opportunistic criminals are. Imagine not being able to access your bank account and then getting one of these e-mails. I specialise in security but I could see myself thinking: ‘Oh, it’s from NatWest’ and then clicking on the link, which takes you to an incredibly realistic website.”
Given the number of NatWest customers and the volume of e-mails that the scammers send, coupled with frustration at not being able to access accounts, Professor Woodward believes some people are going to fall for it “especially if they are desperate.”
What should you do if you’ve received a NatWest phishing e-mail?
