Security on mobile.de

Be careful of emails or text messages in which you can use a link to access what seems to be a mobile.de login page. Unfortunately, it is possible to fake the sender’s address. This is how scammers try to access your mobile.de contact data in order to then use your dealer account for fraudulent purposes.

This is what fraud attempts could look like:

Example 1: You receive a contact form with a message from what seems to be a prospective customer. The customer tells you that they have seen the same vehicle on a different site – at a lower price! As evidence, the person includes the link to the vehicle concerned. If you click the link, a website opens that looks like the mobile.de login page. If you enter your login data there, the scammers can use them for their very own purposes.

To be on the safe side, always use the homepage www.mobile.de before logging into the Professional Domain!

Example 2: You receive an invoice by email or text message – apparently from mobile.de. To open it, you are supposed to click a link. A link in the email can apparently be used to access your invoice. Under no circumstances should you click this link, as it will install what is known as a trojan on your computer!

A trojan is spyware that secretly sends private information from your computer to the scammers. It can be installed by simply clicking a link – without you having entered your details in a fraudulent website (a phishing or spoof site).

Emails sent by mobile.de never contain a link to your invoice! Your invoice is sent as an attachment in PDF format. The PDF file name includes your customer number, which you should check before opening the file.

Example 3: You receive an email with a sender from a data service provider (e.g. autogenial, Modix). In this case, it is also an attempt to illegally obtain your access data, to enable your account with the data service provider to be used to send fake inventory to mobile.de.

Phishing emails and so-called spoof websites create the appearance of coming from a familiar company (e.g. mobile.de), but are actually fakes. Unfortunately, it is often difficult to identify whether a website, an email or a text message is fake. Sites like this always ask you to divulge confidential data: either by using a form, where you are expected to enter your login data, for example, or by means of a link that leads to a spoof site which is very similar to the original website.

Characteristics of phishing messages

• Urgency and threat: If you do not act immediately (e.g. reverify that you are a user), then there is a threat of seemingly unpleasant consequences: your membership will be cancelled, your membership account will be blocked, or similar consequences. Please do not let threats like this trap you into clicking a link in an email or text message.
• Input of confidential data: You are expected to enter confidential data using a link or a form. You should therefore never click a link in an email or text message in which you are prompted to enter personal data.

The fraudsters are interested in the following information:

• mobile.de dealer login and password
• email address and password
• account data
• credit card details

• Does your customer number appear? mobile.de will always state your customer number in its email communication, in the newsletter and when sending your invoices. Always check whether this number is correct. And even if you’re not quite sure, please forward any suspicious emails to service@team.mobile.de. Never respond to the prompts in the email, and do not click on any links. You can contact us by phone by calling: +49 (0)30 81097-500.

* Use the address www.mobile.de: If you have any doubts, do not click on a link, but instead enter www.mobile.de in a new browser window and then log in (see also: Logging in securely to mobile.de). If you would like to change any of your account data or other details, please contact our customer service.

• Newsletter: The correct sender address for the mobile.de dealer newsletter is: service@team.mobile.de. Suspicions of fraud: If you suspect that unauthorised individuals have obtained your access data, you should change your mobile.de login data and password with immediate effect, along with the password for your email account.

The mobile.de login page enables you to verify that the site is authentic (see below). This verification option can protect you from fake logins (phishing) and spoof websites.

Direct access to the professional domain of mobile.de is not possible using a bookmark. In order to access the professional domain without entering your user name and password, you should use the ‘Save Password’ function available in your browser.

You can use the following criteria to check whether you are actually logging in to mobile.de:

• The Internet address/URL must begin with https: https://login.mobile.de

• When you have a secure connection to mobile.de, you will see a closed padlock or an intact key (usually in the bar at the bottom).

• If you double-click on this symbol, the website’s security certificate will appear. • This is “DigiCert” for mobile.de.

• The most secure way is to enter www.mobile.de and access the login page using the ‘Dealer Login’.