Fraudsters are trying to obtain credit and debit card information on the tutti.ch sales platform.
02.07.2024 –Alleged potential buyers contact the seller and want to process payment for the item directly via the sales platform. They pretend that they need the seller's telephone number to do this.
The fraudsters then send a fake text message with a link to the seller in the name of tutti.ch. The seller is told to follow the link to receive the money. Anyone who opens the link is taken to a fake website and asked to enter their card details in order to receive the money. As soon as the fraudsters are in possession of the card details, they make purchases in the name of their victims. In order to finalise the purchases, they contact their victims again and ask for the confirmation code for the 2-factor authentication. Anyone who passes on this code could lose a lot of money.
How to protect yourself from phishing attacks:
- Distrust unknown payment transactions.
- Report fraudulent profiles to the platform operator.
- Never click on links, never open attachments.
- Always check the sender’s e-mail address and URL.
- Log in only via official websites (not via links).
- Keep your web browser and operating system up-to-date.
- Never give out login and card data.
- Use strong passwords and two-factor authentication.
- Never pass confirmation codes on to third parties.
- Check your transactions and payments.