How to recognise scams!

Card transactions have become an integral part of everyday life. This also attracts fraudsters who are constantly trying to steal money from their potential victims with new scams. We present the most common types of fraud and show how you can protect yourself.

Phishing

Phishing is a widespread scam that comes in many forms and is often the first step in card fraud. Criminals trick their victims into disclosing their personal data such as their PINs, SMS codes, card data and CVC/CVV numbers or passwords. For example, to do this they use fake websites or QR codes, links in emails, phone calls or text messages (SMS, WhatsApp, Messenger, etc.). Armed this data, the fraudsters attempt to steal money from their victims.

How can I protect myself?

Think of LINDA! Each letter of LINDA's name stands for a mnemonic that can be used to prevent phishing:

What else can I do?

Good to know

Good to know

Your bank or card provider will never contact you by e-mail or text message to ask for personal information or card details.

Fake shops/merchandise fraud

“Merchandise fraud” means that fraudsters offer products or services but do not deliver them or only deliver inferior goods. They often use fake online shops that look like genuine and reputable websites which usually show low-priced offers to attract victims.

How do I recognise fake shops?

The following features are typical of fake shops:

How can I protect myself?

Good to know

Good to know

If an offer sounds too good to be true, it usually is!

Account takeover

Account takeover is a scam in which criminals steal the login details of their victims and then take over their account - for example in an online shop, in e-banking or with a payment service. As soon as they have access, they make purchases using the victim’s name, trigger or approve payments, change limits or set new passwords. The perpetrators usually use fake messages, fraudulent links or manipulated QR codes to obtain access data, SMS codes or authorisations.

How do I recognise account takeover?

Typical signs that an account takeover is taking place are:

How can I protect myself?

Fraud on online marketplaces

In this scam, criminals contact users of platforms such as Tutti, Ricardo or Facebook Marketplace and pretend to be legitimate buyers. A quick agreement on the purchase is followed by a fake email, text or WhatsApp message that appears to come from the online marketplace. Sellers are redirected via a link or QR code to fake websites that look deceptively similar to the real post office, bank or TWINT websites. Anyone entering data into these sites transmits it directly to the fraudsters whose aim is to obtain payment and card data.

How do I recognise fraud on online marketplaces?

How can I protect myself?

Good to know

Good to know

You never have to enter credit or debit card details or e-banking access data to receive money!

Scamming

In scamming, fraudsters try to lure their victims with particularly tempting offers: a great romance, fast money, the perfect apartment or that dream job. In essence, however, these approaches are all aimed simply at one thing - taking money out of their victims' pockets. The scammers use pretexts and empty promises to get their victims to make advance payments.

How do I recognise scams?

How can I protect myself?

Shoulder surfing

Shoulder surfing is a scam in which criminals attempt to obtain PIN or access data surreptitiously. For example, when you enter your data into an ATM, payment terminal, laptop or your smartphone. The criminals often stand close behind their victims or record the data entry using a smartphone held inconspicuously or a mini camera mounted on the terminal. As soon as the fraudsters obtain the data, they try to steal the card or device so they can withdraw cash or make payments with the combination of a stolen card/device and a stolen PIN or access data.

How do I recognise shoulder surfing?

The following behaviour by criminals is typical of shoulder surfing:

How can I protect myself?

Vishing

Vishing, a combination of the words "voice" and "phishing", is an attempt by criminals to deceive their victims with a phone-call. The callers often pretend to be bank employees or police officers and come across as very convincing. They use real names, real logos in messages or fake telephone numbers that look like the financial institution's number on the display. Their goal: The intention is to induce victims to disclose personal data, access data, SMS codes or authorisations so that the card, account or banking app can be taken over and payments initiated.

How do I recognise vishing?

How can I protect myself?

Good to know

Good to know

Banks, card issuers, payment service providers or the police never ask for passwords, SMS codes, app authorisations or QR codes over the phone.

Stolen or lost cards

A stolen or lost debit or credit card can be used by fraudsters for contactless transactions of up to CHF 80 without entering a PIN. Card issuers have therefore defined a limit to protect cardholders. Once this is reached, a PIN is requested. This prevents criminals from completing multiple transactions in quick succession.

How can I protect myself?