30.06.2025
LHV Pank would like to remind the public that today’s fraud schemes no longer rely on poor technical skills but rather on lapses in attention and excessive trust. Criminals manipulate individuals to gain access to their personal data. Therefore, in addition to scam phone calls and fraudulent emails, the risk of fraud increasingly lurks on fake websites that mimic legitimate services, including banks. The best defence for safeguarding personal data and assets remains vigilance.
‘Most people have heard of major fraud cases involving stolen data and funds, yet unfortunately, the number of fraud incidents is not decreasing,’ Annika Goroško, the Head of Retail Banking at LHV, said. According to her, one of the main reasons is the lack of attention during routine activities and the difficulty people have in identifying scams. ‘Criminals do not need sophisticated tools when people voluntarily and often in good faith share their data just in response to a phone call or message,’ Goroško explained. ‘The best defence is a simple rule: whenever you are asked to provide your personal data or PINs online, pay extra attention. It is also worth remembering that your bank will never ask for your PIN or send links via SMS.’
What makes fraud prevention more difficult is the large number and variation of scam tactics in circulation. In addition to scam calls, fake SMS messages, and phishing emails, more passive schemes are spreading, involving phishing websites that closely mimic real institutions. On these websites, the user is tricked into entering their bank card details or logging into counterfeit internet banks. For example, in May and June alone, LHV identified nearly 100 fake websites imitating the login page of LHV Pank. Similar phishing websites have appeared using the names and branding of other banks and service providers as well.
‘Many people end up on phishing websites via search engines. They type in the name of a bank, for example, and click on the first link without checking the web address,’ Goroško explained. ‘A phishing website address may differ from the real one by just a single letter or symbol, and the site’s layout is often identical to the official version. To access your bank’s website, it is safest to type the address directly into the browser to ensure you are on the legitimate page.’
LHV employs monitoring systems that enable the early detection of fraudulent websites and their rapid removal from the internet. But user awareness also plays a crucial role here. ‘We truly recognise our clients: many phishing pages and fake campaigns have come to our attention thanks to their vigilance,’ Goroško said. ‘Every tip, screenshot or forwarded suspicious message helps us respond faster and warn other clients.’
‘Fraudsters are getting more sophisticated and the visual quality of their schemes is also improving. That is why it is so important for people to recognise red flags and talk about them with friends and family. Vigilance is the best defence against falling victim to fraud,’ Goroško added.
Most common types of scams
- Phishing emails and SMS messages that lead to fraudulent websites
- Impersonation calls claiming to be from a ‘bank’, ‘police’ or other institution
- Fake online stores that either fail to deliver goods or collect card details for later misuse
How to protect yourself?
- Never enter your data on an unfamiliar website. Always check the web address.
- Check the email address of the sender: addresses resembling @lhv.ee may be fake.
- Do not click on links sent via SMS. LHV never sends links in text messages.
- PIN2 is your digital signature. Always read carefully what you are authorising before entering it.
- Excessively high payment limits are not secure. Adjust them conveniently when needed.
- If something feels suspicious, stop the action immediately and contact your bank.