Overview

• Customers of Deutsche Kreditbank (DKB) are receiving phishing emails claiming account verification is required under updated GDPR compliance.
• Sparkasse clients are being targeted with fake emails demanding 'S-pushTAN' extensions, citing legal obligations under the Bundesbankengesetz.
• Deutsche Bahn users are reportedly receiving fraudulent account suspension notices designed to harvest personal data.
• The Verbraucherzentrale advises recipients to ignore these emails, move them to spam, and verify requests through official bank or service channels.
• Phishing campaigns increasingly use legal-sounding language, urgent threats, and deceptive links to appear credible and pressure victims into compliance.