Electronic fraud: Everything you need to know

The campaign to inform and raise public awareness about online fraud, which started in 2021 with the cooperation of the Ministry of Citizen Protection, the Bank of Greece, the Hellenic Police and the Hellenic Banking Association (EETT), continues and has contributed decisively to the reduction of incidents to an extremely small percentage of all transactions.

In posts on their websites, both the EETT and the Hellenic Financial Ombudsman, return with answers to topical questions in the context of the information campaign.

Types of fraud in electronic payments and investments

Frequently Asked Questions and Answers

Question: In the last few days I have received several e-mails and SMS. In these e-mails my “bank” tells me that «suspicious activity» has been «observed» on my account or card or that my account or card has been "locked or deactivated". The messages contain a link and urge me to immediately follow the instructions therein to solve the problem and unblock my access.

Answer: These messages do NOT originate from your bank (in fact, sometimes they seem to be sent by a bank with which you do not even have a relationship). They are phishing messages designed to trick you into entering your ebanking access codes or your card details on a fraudulent website identical to that of your bank, as well as the One Time Password (OTP) you are receiving at the time, which is required to authorise transactions.

The answer to all these malicious efforts is one simple answer. We never give our personal information to anyone who asks for it. Your bank will never ask you to do so.

Question : I recently posted an advertisement on the internet to sell some of my personal property. I received a phone call from a stranger who told me that he was interested in buying it, in fact without even seeing or checking it. But he asked me to give him my card details or my e-banking codes so that he could deposit the money. Should I give them my details? Should I trust him?;

Answer: No, you shouldn't. No. You do not have to. Never disclose your ebanking codes or your card details or any one-time use codes (OTP) you receive at that time.

Also, in case the buyer claims to have deposited the money in your account, check the exact amount yourself only through your eBanking. Do not rely on any deposit receipts that he or she may provide or send you. They may be fake.

Question: I recently received a phone call from abroad, and the person who called me told me (in English) that he was a technician from a large IT company and that my computer was infected with malware and he could fix the problem. I didn't believe him though and hung up the phone. Was I doing the right thing?

Answer: Yes. Yes. If you continued, it would ask you to install remote access software and thus gain full control over your computer. Then, under the pretext of fixing the problem, the scammer would ask you for your e-Banking login codes and try to transfer money from your accounts himself. Do not trust your computer to strangers. If someone calls you from an unknown number, especially from abroad, and claims to be from any IT company without you having reported a fault on your device, disconnect the call. Do not proceed with the installation of remote management software suggested by an unknown person.

Question: I have been asked to mediate the transfer of money by offering a fee to deposit money into my account. Is there a problem? Is it illegal?;

Answer. If you are approached by e-mail or social media or through advertisements and asked to transfer money (which will have been previously deposited in your account) to third party accounts, usually in other countries, or to give it to them by withdrawing it from an ATM or shop, keeping a percentage as a commission, you should be aware that they are trying to defraud you into brokering the transfer of illegal money (money muling) and that this act is punishable by law.

Therefore:

*do not accept to act as a middleman in the movement of money by other people, usually unknown to you. You may suffer significant repercussions, as by doing so you are engaging in illegal activities, whether you know it or not

*if you receive a suspicious email, do not reply and do not follow any link indicated,

*cross-check the details of the company offering the job and its contact details (especially if it is based abroad),

*never give your bank account details to anyone, unless you have a permanent relationship with them, or they are a member of your immediate family.

*if you believe you have been involved in a money transfer, do not make any other transfer of money that you may be asked to make. Notify your bank, the service where you made the transaction and the police immediately.

Question: In general, what should I do to avoid becoming a victim of online fraud?;

Answer: Your partner bank or banks have posted useful tips on their websites to help you avoid becoming a victim of fraud.

In any case, here are some basic instructions to help you carry out your online transactions as securely as possible:

*You enter your Bank's e-mail address yourself to access the e-banking services. Do not follow search engine results.

*Make sure you are navigating in the Bank's secure environment. Check that the link you are logging in to (https://www.........gr) corresponds to your Bank's e-mail address. Click on the padlock icon to check that the connection is listed as secure.

* Carefully check the transaction described in the Bank's message (e.g. via sms, viber or mobile app) with the OTP one-time code before confirming it.

*Avoid using public or shared networks.

*Never store your passwords on any of your devices.

* Change your security passwords at least every six months.

*Enhance the security of your devices by keeping your anti-malware software up to date and updating their operating system regularly.

*Check that the e-mail address details of the e-mails you receive correspond to the name of the person who appears as the sender, especially when a) this person is on your contact list, b) is allegedly your bank or c) another known product and service provider.

*Comprehend and delete messages of questionable origin that you receive on your electronic devices and applications and do not follow links that include and refer to websites.

*Do not disclose to third parties (e.g. interested buyers, prospective customers), via telephone, mobile phone, email, Internet form, social media and other means, confidential information such as your username, password, card details (number, CVV and PIN), OTP (One Time Password) and other numeric codes.

*Always use the most up-to-date versions of Internet browsers (e.g. Chrome, Microsoft Edge, etc.), which ensure advanced security design.

* Contact your Bank immediately in case of any suspicion of leakage of your security codes.

Question. Lately I have been receiving frequent phone calls from unknown numbers, during which a supposed representative of an investment company suggests investment opportunities «tailor-made for me», with fast and guaranteed returns. I wonder if I should trust him with my money.

Answer:Attention there is a serious risk of being deceived.

• Don't trust those who promise you safe investments with high, fast and guaranteed profits.

*If you wish to make an investment, first make sure that the company is licensed by the Securities and Exchange Commission or another European authority. Make sure that it is either covered by the Deposit and Investment Guarantee Fund (DIF), or that it participates in the Guarantee Fund or other foreign entity that guarantees your investment. Visit the following sites: www.cmc.gov.gr www.ethe.org.gr www.smexa.gr https://www.syneggiitiko.gr/

Question: In case I fall victim to online fraud and report it to my Co-operation Bank, is there any other body I can contact directly? Also, if I am a victim of investment fraud, is there a body to which I can turn?;

Answer: Yes, in both cases you should report the fraud:

*at your nearest police station or

*The Directorate of Cybercrime (DIDHE) of the Hellenic Police

-Telephone : 11188

-Fax: 213-1527471

-Email: ccu@cybercrimeunit.gov.gr

-via the portal at: https://goo.gl/vOHdVb

• Postal address: 173 Alexandras Avenue, P.O. Box 11522, Athens, Greece

Question: I have recently seen on TV and heard on the radio about a campaign to raise awareness and public awareness of online fraud under the slogan «All it takes is a pause to avoid online fraud». Where can I go to find more information about this campaign?;

Answer: You can refer to the website of the Hellenic Banking Association (HBA) (https://www.hba.gr/info/PhishingCamp) for more information on this campaign, which is the result of a collaboration between the Ministry of Citizen Protection, the Bank of Greece, the Hellenic Police and the Hellenic Banking Association. It started at the end of 2021 and continues in 2022.

Question: Where can I refer to for more information on the various typologies of online and investment fraud that exist?;

Answer: On the website of the Hellenic Banking Association (HBA) there is all the material of the various public information and awareness campaigns on electronic fraud, such as:

*that on «cyber fraud» (CyberScams), https://old.hba.gr/News/Details/1509 and

*that concerning money traffickers (European Money Mule Action - EMMA). https://old.hba.gr/News/Details/36

Furthermore, on the EETT's website there are useful notices on various types of fraud (e.g. SIM card change fraud, «alleged technical support» fraud, telephone fraud, etc.) in the context of the continuous information and awareness-raising of the trading public.

More advice on how to avoid being deceived is available in a special banner on the Hellenic Police website ( www.hellenicpolice.gr ). In addition, information and advice on incidents of online fraud can be found on the website of the Directorate of Cybercrime www.cyberalert.gr .