"Phishing" is a form of banking fraud based on sending false or fraudulent email messages.


What is it?

"Phishing" is basically a form of unrequested email or spam, which tries to obtain confidential information by substituting the access pages to electronic banking websites, in order to fool users and induce to reveal sensitive information.

In this way, ill-intentioned people receive personal information, financial data, credit card numbers, user names and access passwords, thereby carrying out an identity theft.

When does "Phishing" take place?

When a user receives an email, apparently sent from a well-known financial institution, requesting an update of your personal information, following a link in a seemingly authentic message.

In certain cases, in order to capture the interest and trust of the addressee and make the person respond, the messages may come with warnings of fraud: “Dear Client. We would like to inform you that unscrupulous persons are requesting information from our clients in the name of our institution. Therefore, to check if your account has been affected, please type the requested information in the corresponding places: Card Number, Password…” When the link is clicked, it send the addressee to a page that is almost an exact replica of the original.

How to avoid it

The best way to avoid becoming a victim is being informed regarding this type of electronic fraud. Be careful when providing personal or financial information over the internet. Please, check the following list of tips to prevent this attack:

  • Beware of any email requiring urgent updates of personal financial information.
  • Never follow the links provided in email messages. Check the information by calling the company sending it, which will probably also provide telephone numbers or addresses.
  • Avoid filling up attached forms, templates or information squares included in email messages, particularly when they request personal financial information.
  • Check that your browser has established a secure connection when you provide information over the internet.
  • Make period checks of your account and credit card transactions, to ensure that they are legitimate and to keep a regular control of them.
  • Make sure you have the latest version of your web browser, and update all security patches released for it.
  • Always report to Mercantil Bank (Schweiz) any Phishing attempts; this will help us take timely and adequate measures to safeguard our clients.


Mercantil, empowering your world