On World Consumer Day, the Federal Office for Information Security (BSI) published its annual review of digital consumer protection for 2024. The analysis shows that phishing attacks and data leaks remain the biggest digital threats to consumers.
Phishing is becoming more sophisticated
While phishing attacks used to focus primarily on the financial sector, criminals are now increasingly targeting well-known brands in the logistics, gambling database usa online retail, streaming, and government sectors. The goal is to lure users into a trap by making fraudulent emails and websites appear particularly credible. With the help of artificial intelligence, these attacks are becoming increasingly sophisticated—a worrying development.
Data leaks: A ticking time bomb for personal data
In addition to phishing attacks, data leaks also pose a serious threat. Customer data repeatedly falls into the hands of cybercriminals, which customer service analytics how to make sense of all the data can have serious consequences for those affected. According to a BSI analysis of 354 known data leaks, names and usernames were affected in 86.7% of cases. Email addresses (41.8%) and personal address data (40.7%) were also among the most frequently compromised information.
More security through modern authentication
BSI President Claudia Plattner warns: “The increasing use of digital services requires a high standard of protection. One of the biggest vulnerabilities remains authentication—that is, access to online accounts. Conventional, password-based procedures are not secure enough.”
The BSI therefore strongly recommends the list provider use of two-factor authentication (2FA) to better protect online accounts. Passkeys, which enable passwordless login and offer the highest security standards, are particularly promising. Providers are urged to consistently implement such modern solutions and actively educate users about secure authentication methods.
Digital security: support and information for consumers
The BSI offers comprehensive information on cybersecurity – via its website, social media channels, a newsletter, and a nationwide awareness campaign. Anyone who falls victim to cybercrime can also contact the BSI’s own service center for support.