I have received an e-mail asking for a password or credit card information

This is a phishing email that criminals use to trick victims into revealing their passwords and other personal information.

Phishing is used by fraudsters to obtain confidential information from unsuspecting Internet users. This may involve access data from e-mail accounts, online auctioneers (e.g. eBay) or access data for e-banking. The fraudsters exploit the good faith and helpfulness of their victims by sending them e-mails with fake sender addresses. In the e-mails, the victim is informed, for example, that his account information and access data (e.g. user name and password) are no longer secure or up-to-date and that he should change them using the link provided in the e-mail. However, the link then does not lead to the original page of the respective service provider (e.g. the bank), but to a website set up identically by the fraudster.

No reputable service provider would ever ask its customers to provide passwords or credit card details by e-mail or telephone.

Never follow the instructions in the text of suspicious or unexpected mail messages or messages from unknown senders, do not click on any attachments and do not follow any links. The criminals keep coming up with new scenarios to trick recipients into reacting carelessly.

The most important rules of conduct for dealing with e-mails help to protect yourself against such machinations:

  • Distrust e-mails that you receive unsolicited: Particularly trustworthy companies are often misused as fake sender addresses.
  • Be careful if you receive e-mails that demand action from you and otherwise threaten with consequences (loss of money, criminal charges, account or card blocking, missed opportunity, misfortune).
  • Do not click on any attachments in suspicious e-mails and do not follow any links.

You can report such phishing emails to us without comment.

We then recommend that you delete the phishing email. We analyse such e-mails and inform the appropriate provider to have the phishing website deactivated.


This answer did not help me / I would like to report an incident.



Last modification 08.05.2013

Top of page