Amid increasingly frequent phishing scams, i.e. e-mails sent on behalf of financial institutions with a malware in attachment, the National Bank of Serbia recommends financial institutions to apply in the provision of electronic services secure and efficient methods for the verification and confirmation of the sender’s identity.
– In this context, financial institutions sending e-mail notifications to their clients should consider the possibility of having these e-mails digitally signed, which would enable the verification of the sender’s identity even before the e-mail is opened – the central bank says on its website.
In line with the above, financial institutions should familiarize their clients with the methods of establishing the identity of e-mail senders, i.e. of establishing whether the e-mail was really sent by a financial institution, as well as with the manner of dealing with undesired e-mails (e.g. not opening the attachment from such e-mail, deleting the message from one’s inbox and notifying the financial institution concerned of its receipt so as to enable the institution to take appropriate steps).
– Please note that pursuant to the Decision on Minimum Information System Management Standards for Financial Institutions, financial institutions whose clients are faced with phishing are required to inform the NBS thereof – the press release says.