Overview

• Phishing campaigns are targeting Deutsche Kreditbank (DKB), Sparkasse, and Deutsche Bahn customers with fraudulent emails citing GDPR compliance, S-pushTAN extensions, and payment data updates.
• Emails use professional branding, urgent deadlines, and threats of account suspension to pressure recipients into clicking malicious links and sharing personal information.
• Sparkasse phishing emails reference §§ 3–8 of the Bundesbankgesetz to demand S-pushTAN updates, while Deutsche Bahn emails claim outdated payment data requires immediate action.
• The Verbraucherzentrale advises consumers to delete suspicious emails, avoid clicking links, and verify requests through official apps or websites to protect against fraud.
• These scams aim to steal sensitive data for financial gain and identity theft, with stolen credentials being used for fraudulent loans, contracts, and other crimes.