Our site places cookies on your device to give you the best experience. You can change your cookie settings at any time. Our 隐私声明 has more information on how to do this. 我很高兴,请关闭此消息

  • CAF home
  • 个人
  • 公司
  • 慈善机构
  • CAF Bank
CAF: 慈善机构 Aid Foundation CAF: 慈善机构 Aid Foundation 跳至主要内容
Search

Search
登录网上银行
open login menu close login menu

Log in
Search box
open menu close menu Menu Close
  • 往来账户
  • Loans
  • Savings
  • 帮助和支持
  • Security
  • 关于CAF银行
  1. Home
  2. >
  3. 关于 CAF
  4. >
  5. Be aware - types of threat

官方指定23年bob娱乐app在线入口(2023趋势信息)


在线欺诈威胁一直在演变。了解要寻找哪些警告标志有助于确保您和您的组织的安全。

常见的欺诈类型

在网上银行和远程工作的时代,欺诈的威胁越来越大。您不再需要保护办公室中的一台计算机,而是需要保护从许多不同位置访问云服务的多个帐户。骗子正在使用先进的技术来绕过您的安全措施。

别担心,您可以通过了解情况来帮助保护您的组织。以下是常见的欺诈类型以及如何发现它们。

  • 社会工程
  • 发票欺诈
  • 购买诈骗
  • 恶意软件和间谍软件
  • 网络钓鱼和诈骗电子邮件
  • 社交媒体欺诈
  • 钓鱼和电话诈骗

社会工程

欺诈者会使用一系列技术来诱骗您分享银行信息或转账——通常是通过电话、短信或电子邮件。犯罪分子通常使用不止一种方法来建立一定程度的信任。这些策略被称为社会工程。

它们可能特别有效,因为人通常比技术更容易操纵。保护自己免受社会工程攻击的最佳方法是了解所使用的技术种类。其中一些非常微妙,很难被发现。


如何保护自己

1. Resist pressure – a criminal will try to prompt you into action by creating a sense of urgency or making you feel guilty. Would a senior manager really email you to arrange an emergency payment?

2. Beware of emotion – social engineers may act emotionally to try and dissuade you from challenging them.

3. Check who you’re talking to – they can often imitate your colleagues, partners, suppliers or friends. If something seems unusual, contact that person yourself using known contact details.

4. Be suspicious of saviours – a fraudster may create a problem for you, then offer to resolve it in exchange for your information or money.

5. Don’t divulge information – if you don’t know who you’re talking to, don’t answer lots of questions. What might seem innocuous can help them collect sensitive data, so be guarded.

发票欺诈

随着越来越多的信息一直在线共享,欺诈者现在有可能找出您的供应商和客户是谁,然后开始发送假发票。

这些尝试可能很有说服力,可能会让粗心大意的人措手不及。它通常始于一封简单的电子邮件请求,要求修改交易的付款细节,看起来是真正的联系方式。

阅读我们的银行诈骗指南 for tips on spotting and preventing invoice fraud.


真实的客户故事

一位客户收到一封来自现有供应商要求他们向供应商的新银行账户付款。这来自一个已知的电子邮件地址,因此客户更改了详细信息并付款了。

在类似的情况下,在接受报价后,另一位客户被要求将部分付款发送到另一个银行帐户以支付材料费用

在这两个例子中,事实是欺诈者侵入了供应商的电子邮件帐户并提供了欺诈性的银行详细信息。只有当真正的供应商要求付款时,这些骗局才被发现。不幸的是,当欺诈被发现时,这笔钱早已不复存在。

购买诈骗

使用互联网支付商品和服务既快捷又方便。但网上购物确实存在风险。了解如何发现假冒网站、要问自己的问题以及可以采取的避免被骗的步骤。


什么是购买骗局?

购买诈骗是指欺诈者通常以折扣价在线销售商品和服务,以欺骗感兴趣的买家。您被骗为订购的商品付款,该商品不存在且永远不会交付。


注意这些危险信号

• 优惠看起来好得令人难以置信,或数量有限,敦促您尽快行动
• 您看到了优惠在网站、社交媒体或其他在线网站上发布广告市场
• 您被说服在收到商品或服务之前汇款
• 您被要求通过银行转帐而不是安全的付款方式付款。

问自己这些问题

1. Is the offer to good to be true? Do a little research to check if the advertised deal is fair, when compared to similar goods or services

2. Is the website secure? Look for a closed padlock and ‘https’ in the website address bar, to check the website connection is secure

3. Is the website genuine? Is the company name in the URL may be slightly different to what you would expect? Is the site badly designed, or can you see spelling or grammatical errors?

4. Is the supplier legitimate and credible? Check Gov.uk to see if it’s a registered company and search online for any warnings or poor reviews about the firm

5. What am I committing to? Read the supplier’s terms and conditions and privacy notice.

 

降低风险

1. Use Get Safe Online’s 诈骗网站检查器工具 to see if a website is likely to be legitimate or fake [i.e. embedded hyperlink into the text 'website scam checker tool'

2. Never pay by bank transfer, if you don’t know the seller. Use a debit or credit card, secure payment site or other payment method that offers some protection against fraud

3. Never share your bank account or card details, unless you’re sure who you are dealing with

4. Check your bank and card statements to ensure the correct amount has been debited

5. Provide training, to build a security aware culture among staff and volunteers and ensure everyone understands your fraud prevention policies and processes. 

恶意软件和间谍软件

Malware 是恶意软件的通用名称 – 通常在您不知情的情况下安装到您的计算机上,作为黑客访问您的数据的一种方式。常见症状是计算机运行缓慢、弹出消息或被重定向到恶意网页。恶意软件的影响可能包括中断组织服务的运行、窃取信息或丢失关键数据。

间谍软件是一种特定类型的恶意软件,它会监视和记录您的活动以在您不知情的情况下窃取个人信息。

阅读我们的指南 to discover simple tips for safeguarding your organisation’s systems and operations.

网络钓鱼和诈骗电子邮件

网络钓鱼是指欺诈者发送嵌入了网站链接的电子邮件,要求您在这些网站上提供机密的个人或财务信息。这些电子邮件可以设计得看起来合法,网站甚至可能看起来像您熟悉的网站。


真实的客户故事

来自同事的电子邮件可能并不总是看起来的样子。某慈善机构的财务经理接到财务总监的紧急请求,要求代行政长官支付一笔大笔款项。财务总监承诺第二天会发送授权付款的文件,因为他要带女儿去医院,当天剩下的时间都无法使用。

财务总监回复了一封网络钓鱼电子邮件,这使欺诈者可以访问到他的电子邮件帐户。然后他们用它向毫无戒心的财务经理发送欺诈性请求。


如何保护自己

如果您有任何疑问,请不要回复。切勿点击您不希望或看起来可疑的电子邮件中的链接。最安全的做法是使用您确定真实的联系方式与公司取得联系。

If you get an email claiming to be from us asking for personal information. or your Online banking log-in details, forward it straight away to us at scamreporting@cafonline.org

社交媒体欺诈

社交媒体欺诈 is any scam or malicious activity in which a fraudster uses social media to steal personal information or money. There are numerous ways social media can be used to commit fraud, these are constantly evolving and changing. Fraudsters usually impersonate known contacts or legitimate entities such as businesses or official bodies.

如何保护自己

1. Social media companies offer free privacy checks – use these to ensure you aren’t exposed. These checks can be found in a social media site's 'safety centre'

2. Never buy via social media unless paying through a protected method – always check the PayPal URL and if unsure, consult the app

3. Adjust your privacy settings – make sure that your personal information is private, and previous posts can only be seen by accounts you know

4. Be cautious with your personal social media accounts – consider what information you have shared on social media. Could it be used to cause you harm if a fraudster had access to it?

5. Multi-factor authentication – use an authenticator app or check the security tab of a social media website to set up multi-factor authentication when logging in

6. Consider authenticity – if something is too good to be true, such as a deal or offer, then it probably is. This can be the case with 'celebrity' impersonations, fake sweepstakes, giveaways etc.

社交媒体欺诈的例子

1. Hacking into a social media account – gaining access to a social media account to steal personal information and bank account details. Avoid using obvious or default passwords

2. Phishing – a message is sent containing a harmful link from an account to that account’s ‘friends’. Be wary about clicking on any link in a message, even from someone you know, unless you are expecting it

3. Fake shop or product is created in a social media marketplace – fraudsters use this method to collect payments, bank account details and personal information. 'Too good to be true' or 'limited time offers' are techniques often employed by scammers

4. Information scraping – social media posts and comments on a bank's or other provider's social media pages may hint that you are a customer; fraudsters can use this information as a starting point to attempt to commit fraud

5. Illegitimate apps – fake apps, which request access to social media as a form of log in. in order to steal your login details and passwords.


如果您认为自己是社交媒体欺诈的受害者

Our IT security experts advise that you first change your password and second contact the social media provider's support.

钓鱼和电话诈骗

如果您接到某人打来的电话,询问您的个人信息,您很可能是网络钓鱼诈骗的目标。通常,来电者会自称是银行职员、警察或其他受信任的人。

在通话期间,他们会迅速说服您转账,以保护它免受其他想象中的威胁。他们通常会要求您提取现金并将其交给欺诈者,或者分享他们可以用来获取您的财务信息的个人财务信息。

另一个例子是计算机接管骗局。冒充银行、电信或 Internet 服务提供商的陌生来电者请求访问您的 PC 或在线银行服务以帮助解决问题。

然后您会被要求访问网站或在您的计算机上输入命令。这会远程控制您的计算机。从那里,诈骗者可以尝试获取您的银行帐户详细信息。

如何保护自己

1. Be wary of unsolicited calls – especially if you’re asked to provide personal information, or to grant access to your computer or software applications.

2. Don’t be afraid to hang up – if you’re suspicious or feel vulnerable, simply end the call. They may stay on the line, so make a call to a colleague to make sure the fraudster isn’t still connected.

3. Watch out for call spoofing – fraudsters can fake the telephone number shown on your caller ID to make it look like a genuine bank telephone number. If you’re suspicious at all, contact us yourself.

4. Never share your details – we will never ask you for your PIN number or full security details over the phone

5. Don’t give out your card – we’ll never send someone to collect your CAF Bank Business card from you.

永远记住,犯罪分子可能已经知道您的姓名、地址或帐户分类代码——这仅意味着他们已经知道做了他们的研究。如果一个电话听起来很可疑,那它很可能是可疑的。

真实的客户故事

我们的客户接到了一个自称为其互联网提供商工作的人打来的电话。来电者声称客户的宽带存在问题,并要求提供一些细节来解决问题。这包括客户网上银行账户的安全细节。担心被断线,客户通过电话提供了详细信息。

电话结束后,客户收到了CAF银行的短信,通知他们他们的账户已经设置了一个新的收款人。客户打电话给我们解释情况并确保没有付款。

Thanks to the customer having text alerts active on their account and contacting us swiftly, this case had a positive outcome.

看到可疑的东西了吗?

找到向我们报告的最佳方式。

联系我们

CAF Bank Limited 由审慎监管局授权并受金融行为监管局和审慎监管局(金融服务登记号:204451)。

CAF Bank Limited 注册办公地址为 25 Kings Hill Avenue, Kings Hill, West Malling, Kent ME19 4JQ。在英格兰和威尔士注册,编号为 1837656。

  • 个人
  • 立即捐赠
  • CAF慈善账户
  • CAF慈善信托
  • CAF慈善遗产服务
  • CAF美国捐助基金
  • 捐赠给慈善机构
  • 您的慈善事业
  • 资源中心
  • 公司
  • CAF 收入多少
  • CAF 公司账户
  • 企业责任
  • 聘用员工
  • 企业社区
    投资
  • 慈善机构
  • 日常银行业务
  • 借款
  • Social 投资
  • 投资
  • 筹款服务
  • 专家建议
  • CAF Bank
  • 往来账户
  • Loans
  • Help and support
  • 关于CAF银行
  • Security
  • About us
  • 治理
  • 国际捐赠
  • 研究和评论
  • Careers
  • 新闻办公室
  • 可持续性
CAF home
Facebook上的CAF
推特上的CAF
youtube上的CAF
领英上的CAF
C Instagram 上的 AF
  • 联系我们
  • Help
  • Sitemap
  • 辅助功能
  • Privacy

现代奴隶制声明

慈善机构 Aid Foundation © |注册慈善机构编号 268369
25 Kings Hill Avenue, Kings Hill, West Malling, Kent ME19 4TA
10 St. Bride Street, London EC4A 4AD
Telephone: 03000 123 000