!css

Phishing

Phishing: Fraudsters disguise themselves as a trustworthy entity in order to obtain sensitive information

The email may look like an official email from your employer, a government agency or a large corporation.

How to identify a phishing e-mail?

Most of the time, "phishing" emails are sent in waves to a very large number of Internet users. The alarmist nature of the message encourages some people to connect to a fake website to provide information for example. 

  • Remain alert to signs of inconsistency, spelling mistakes (although they are not systematic!) or syntax error...
  • Carefully read the email addresses (sender and those communicated in the body of the email) which are often close to a letter near the real addresses of companies, authorities ...
  • Pay attention to the presence of a link: systematically check the destination address of the links by hovering your mouse.
  • Listen to your intuition: if a request seems suspicious to you, it is probably because it is!

In case of doubt, contact your usual interlocutor at Societe Generale.

How to limit the risk of fraud

Keep in mind that a company will never ask you for information it already has (for example: for a bank, your bank account number).

  • Avoid visiting sites that do not have the mention "https" in the internet address or the padlock indicating a secure connection.
  • Limit the dissemination of information (social networks, websites, standard mail templates, signature...).
  • Never transmit your personal and confidential data (date of birth, passwords...).
  • Implement secure internal procedures (double checking, compliance with procedures, limited access to sensitive data).
  • Raise awareness among your employees, especially accounting and financial services.
  • Verify the legitimacy of such a request by making a counter-call to a number already referenced or by implementing the procedure provided internally.

What to do about a suspicious email?

  • Do not click on links.
  • Do not open attachments.
  • Don't answer.

If there is a usurpation of the Societe Generale brand, send an e-mail to securite@societegenerale.fr.

What to do in case of proven or suspected fraud?

If you have communicated sensitive information, contact your usual interlocutor at Societe Generale.