Fake Natwest sites that seem safe
What’s the threat?
Scammers have created fake Natwest sites that include ‘https’ and a green padlock in the browser’s address bar. These are security certificates issued by organisations and companies that indicate that a site encrypts personal data, and is therefore safe to use.
Victims are tricked into visiting the site by clicking a link in a scam email that claims Natwest is introducing “new online banking authentication procedures”. The email urges you to confirm your personal details to let you continue to access your account.
This scam would be unexceptional were it not for the ‘https’ and padlock, which the fraudsters know is what many people check for online before submitting personal data. But they’re not able to use the legitimate Natwest URL: https://personal.natwest.com. Instead, the fake site uses https:// natweist.com (see screenshot, taken from Action Fraud). That rogue ‘i’ is a giveaway that the site is a scam, but won’t be spotted by everyone.
Natwest said it knew about the scam and is working with Action Fraud to stop it. In a statement, the bank encouraged customers “to be vigilant to unexpected emails purporting to be from the bank and to look out for the tell-tale signs like spelling mistakes”.
How can you stay safe?
This is a reminder that complacency is the enemy of security online. While you should always look for padlocks and ‘https’ in a website’s web address, remember to also double-check that the URL is spelt correctly.
We expect this particular scam to be removed, but there will be others using the same tactic. If you’re a Natwest customer, read the bank’s advice at www.snipca.com/25426, and report scams to phishing@natwest.com.