Social engineering scams are becoming increasingly common, and scammers are using more sophisticated methods. One example is when a scammer convinces a victim to install a programme on their computer or phone through remote access, giving them control over the device. Two common remote-access programmes are AnyDesk and TeamViewer.

Once the scammer gains access, they can display one screen to the victim while operating another screen that the victim can’t see. This enables the scammer to deceive the victim by presenting them with false information. The scammer might also get the victim to sign a different contract than the one shown on the screen. 

How to protect yourself from being scammed remotely:

• Never install a programme at the request of someone else. We, like other legitimate companies, would never request access to your computer or mobile phone in order to perform any actions.
• If someone asks you to install a programme, hang up. Scammers are often skilled at building trust and using their words to convince you. They present the installation as an aid, but don’t be fooled by it.

Scammers often call or text and pretend to be from SEB, the Swedish Tax Agency, Swedish Pensions Agency, Microsoft or another known and credible party. It often happens late at night, or in the middle of the night. It’s almost always urgent and an emergency, they claim. They often want you to start your BankID and authorise a login. The scammers then steal money from your account. This is called vishing, which means ‘voice phishing’.  When the scammers use SMS, it’s called ‘smishing’. 

The scammers might claim something like this:

• They need to stop an alleged scam on your account or card
• They can recover money you have been cheated out of
• They can help you with your tax refund
• You’ve won money
• A loved one has fallen on hard times and needs your help
• They can help you with a housing allowance or higher guaranteed pension
• Your computer has a virus or other problem they can help you with
• You need to download some software

Our best advice is to end your call or text conversation and never give them any information whatsoever. If we at the bank have in fact detected a problem with your card or account and get in touch with you, we can see this without your having to log in.

Important. Protect yourself against fraud (Swedish Police Authority)

Read more about scams (from Säkerhetskollen) 

Through online platforms, social media or phone calls, you might receive offers from very persistent salespeople to invest in ‘amazingly lucrative’ schemes. In recent years, these schemes have been associated with bitcoin investments and are often promoted using the names of celebrities who were never consulted and completely disavow the scheme. There is usually pressure to act fast before the offer expires. 

Our best tip is: if an offer sounds too good to be true, it probably is. Reputable companies that comply with the law are not allowed to advertise financial investments using hyperbole, and they must always disclose the risks involved in investing. Scammers rarely follow these regulations, which gives you another reason to hang up or report the online advert. In addition, people who have fallen victim to these scammers sometimes receive calls from someone who claims to be co-operating with Interpol and offers to track down the scammer. However, this person is often the same scammer attempting to swindle them out of more money. 

Such schemes are entirely fictional and therefore difficult to comprehend. It’s always wise to refrain from investing if you do not understand what is involved. Another good tip is to check whether the company has a licence to operate and is not on the Financial Supervisory Authority’s warning list. 

Investment fraud (Swedish Financial Supervisory Authority) 

Romance scams are fraudulent acts where scammers establish trusting relationships with their victims. Their goal is to seduce the victim using charm and promises of love in order to financially exploit them or take advantage of them in other ways. A romance scam typically starts when a scammer initiates contact, often in a seemingly random way through a dating site, Facebook or other social media platform. Sometimes scammers may try to meet with you in person. They typically start by making you feel appreciated, liked and in love. The contact can be intense, occurring through text messages, chats and phone calls. A scammer might promise you the world, only to eventually ask for favours and money – often, a lot of money. In many cases, scammers use a false identity, stolen photos and made-up stories to deceive victims. 

How you can protect yourself:

• Always be careful about how much personal information you share on social media and other online sites.
• Never send money to someone you do not know well or have not met. If someone asks you for money, think twice and talk to someone you trust about it.
• Watch out for the warning signs – a sudden declaration of love, request for money and reluctance to meet in person. Romance scammers often claim to have impressive professions.
• If it seems too good to be true, listen to your gut. It probably is just that.

With a growing second-hand market, advertising scams are becoming more common. With low prices and great deals, fake advertisers can lure you into pre-paying for products that don’t exist or get you to use your BankID to verify your identity as a buyer. When you sell things on the second-hand market or similar platforms, scammers may contact you and pretend they want to make a purchase. They ask for your card details so they can supposedly deposit money on it, and tell you that you need to identify yourself using your BankID. What happens is that your card details are used to make a payment for something completely different, so your BankID has acted as a form of authorisation for that payment. 

Never give your card details to anyone who requests to deposit money onto it. Always be vigilant when using your BankID and thoroughly review anything you sign.

Scammers use viruses or Trojans to gain control of your computer or monitor all your activity on it. They collect information in this way to use for illegal purposes. They can also redirect you to fake websites even if you have entered a correct website address (this is known as pharming). Viruses and Trojans can be hidden in fake links within emails, text messages or social media posts and may look harmless at first glance. Avoid clicking on links you’re not sure about, and continuously update your firewalls and virus protection to make this type of attack more difficult.

Read about online security (in Swedish)

Skimming, or card hijacking, involves scammers copying the information found on the magnetic strip of a debit, credit or bank card. Using this information, they create a new card that they then use to make payments in your name. The code is captured by hidden cameras close to the payment terminal or ATM. Skimming can happen anywhere that cards are used and where it’s possible to read the magnetic strip. To prevent this, it’s important to hide your code by placing your hand over the keypad. When only the chip is used, so that only half the card is inserted in a payment terminal, skimming is not possible because the strip cannot be read. Currently, most terminals in Europe are chip-based, and the rest of the world is also switching to these types of terminals. 

A scammer may be watching you when you use an ATM in order to access your four-digit code and then steal your card. Hide your code by always placing your hand over the keypad. 

When you sell things online and the buyer does not live in Sweden, payment can be made by cheque. Unfortunately, many scams happen using forged cheques. So, avoid using cheques if you do not know the buyer. 

More and more young people are being exploited as so-called money mules. Criminals are heavily exploiting youth who are lured or coerced into moving, withdrawing or transferring money through their bank accounts. Requesting a simple favour like transferring money is quick and may seem tempting because of the promise of easy money. But acting as a money mule is a criminal offence that can result in devastating consequences. So, talk to your child about how to protect themselves and their accounts. 

As a guardian, keep the following in mind:

• You can view your child’s account, so you can see what your child does with their money and detect any unusual transactions.
• Show interest in the online activities of your child or the young people around you. Ask questions like ‘What did you do online today’? 
• If you suspect that money has appeared in your child’s account that could be linked to money laundering, contact the bank and then report it to the police.

How to protect yourself from being exploited as a money mule:

• Don’t let anyone use your bank account to deposit, transfer or withdraw money. Think about whose money it is and what it will be used for.
• Be suspicious of ‘job offers’ that promise fast money and big earnings with no experience needed on your part.
• Do not accept money via Swish if the purpose is to pass it on to someone. Accepting money from criminal activities makes you yourself guilty of money laundering.
• Don’t give out your personal identification number or bank details.

Protect your devices and online information (in Swedish)

How SEB protects your information (in Swedish)

Scammers can try to hijack your identity by using your personal identification number, changing your address and ordering new documents of value to be sent to the wrong address. Here are four useful services that can help protect you:

• With the Swedish Tax Agency’s service ‘Block unauthorised change of address’ (your registered address), you can reduce the risk of fraud and identity theft in just a few minutes. Block unauthorised change of address (Swedish Tax Agency)
• With Adressändring’s free ‘Address lock’ service, you can block anyone who wants your mail to be sent elsewhere. Address lock (Adressändring)
• If you subscribe to the monitoring service of the credit reference agency UC, you will receive a text message within 24 hours whenever someone uses your personal identification number to apply for credit or make an enquiry via UC. See minuc.se, in Swedish
• Make sure you have notifications enabled for your BankID app. This way, you will be notified if someone requests a new BankID in your name. Locate the BankID app in your phone’s settings and switch on notifications.