May 25, 2018
In Ireland the police (Gardai) have alerted the public to be additional careful before of the launch of the new EU data protection law, the General Data Protection Regulation (GDPR).
With the flood of electronic mails from businesses seeking authorization to continue emailing their customers the authorities are worried that cybercriminals will see this as a perfect chance to try and illegally access private data.
Gardaí say that they have already received a number of inquiries that show bogus electronic mails have been sent to people that claim to be from Airbnb asking clients to update details so as to continue their contract. These fake notices will ask users to verify personal or login information using Internet links so that they can carry on to use the service.
There are stringent GDPR laws with regard to the way in which private data is collected, stored and used by businesses – with penalties of up to €20m applying for infringes.
A Garda spokesperson said: “Fresh inquiries have already identified a string involving the sending of bogus notices which claim to be from Airbnb asking clients to update details to continue their contract”.
It went on to ask anybody reviewing a GDPR notice to be very cautious that the notice is real and not an effort at cybercrime or hacking. They reminded people that banks will not request to have information confirmed in this way stating “Banking institutions never ask for private information through electronic mail. If you get one erase it and report it to your bank or financial institution”. If anybody suffers a phishing attempt like this they must get in touch with their local Garda station instantly.
The Garda National Cyber Crime Bureau has issued the following recommendations for dealing with GDPR electronic mail notices:
- Be careful of replying to uninvited electronic mails
- Be certain you have a contract in place with the facility sending you the electronic mail
- Make sure the sender electronic mail address is authentic and from the provider
- Make certain The link (URL) within the electronic mail is authentic by either hovering over it to see it links to where it claims to or by studying the page it leads to as well as its contents
- Get in touch with the service provider or organization and verify that they broadcasted the electronic mail
- Don’t share banking or financial information