banks could be doing more to protect their customers from fake and fraudulent communications trying to steal their personal information, according to Which?
The consumer group said not all banks are using the full technology available to them, potentially leaving security system weaknesses that scammers could exploit.
Phishing scams may spoof banks' genuine email addresses or domains to trick people into divulging sensitive information, such as bank account details, usernames or passwords.
Which? said banks should be implementing a system that protects web addresses they own or use - known as domain-based message authentication, reporting and conformance (DMARC) - to prevent spoofing attacks.
Read more on dailyrecord.co.uk