Fake emails coming in the name of the bank will empty your account! Before clicking on the link, definitely check these 3 things

New Delhi. In today’s digital era, where all the work related to banking is done in a jiffy, cyber criminals have also become equally active. Nowadays hackers are stealing people’s hard-earned money by sending fake emails in the name of banks. These emails look so real that anyone can get deceived. But don’t panic, a little caution can save you from going bankrupt.

What is phishing?
Phishing is a method in which hackers send you an email similar to the name of a bank. It is often written that ‘Your account is about to be blocked’ or ‘You have received huge reward points.’ There is a link in the email, on clicking which you reach a fake website which looks exactly like your bank’s website. As soon as you enter your banking ID and password there, all your information becomes available to hackers.

Check these 3 things before clicking on the link in the email.
If you receive a suspicious email from a bank, check these 3 things carefully before pressing ‘Submit’:

• Sender’s Email ID: Pay attention not to the name of the email sender, but to his email ID. Banks always send mail from their official domain ID (eg: @hdfcbank.com or @sbi.co.in). Fake emails often come from free services like @gmail.com, @outlook.com or similar names like customersupport@bank-login.com.
• Language and grammar mistakes: Official emails from banks are written in a professional manner. If the email has spelling mistakes, bad grammar or is trying to scare you by saying ‘click on the link within the next 1 hour or your account will be closed’, then understand that it is fake. Banks never ask for personal information by scaring you like this.
• URL and secure website: Before clicking on the link in the email, move your mouse cursor over it (without clicking). At the bottom you will see the address of the real link. If the website address starts with http://, it is unsafe. Secure banking websites always start with https:// (S stands for Secure) and have a small lock in the address bar.

Ways to avoid phishing

• Do not click on suspicious links.
• Never share OTP, PIN and password.
• Check the ID of the email sender.
• Beware of messages like ‘Do it now otherwise your account will be closed’
• Use only official website/app
• Turn on two-factor authentication (2FA)
• Keep anti-virus and phone updated
• Report suspicious messages
• Avoid banking on public Wi-Fi
• Check account regularly

What to do if the link is clicked by mistake?
If you have accidentally clicked on a fake link, immediately call the customer care of your bank, change the password and get the account blocked.