MBank failure and fraud warning: Do not click on the links to “re-transfer”!

May 26, 2025 mBank customers faced serious difficulties with the execution of transfers and direct debits. The financial institution confirmed the occurrence technical problemswhich caused many of the transactions commissioned were not executedeven though users could see the corresponding charges in their accounts. At the same time, there was cybercrime threat – false messages are sent to customers that effort to extort login data.

Interference in mBank systems

In the authoritative communication mBank reported failurewhich included most outgoing transfers and direct debits. Although the funds have been taken from the broadcasters' accounts, they may not appear with the recipients within the planned deadline. As the bank notes, problems did not concern incoming transfers from another institutions, these should be booked in accordance with the timetable.

The Bank shall guarantee that all outstanding transactions to stay completed on Tuesday at the latest, which is May 27, 2025, along with booking another operations. Customers do not gotta take any additional action – transfers will be made automatically after the full functionality of the systems is restored.

mBank warns against cyber attacks

Due to the failure of the bank published an urgent warning addressed to all customers. According to the information provided by the institution, cheaters may effort to exploit the situation, sending false messages (SMS, e-mails), impersonating the bank's authoritative correspondence.

Content of specified messages may include links to alleged payment repetition, which in fact leads to pages extorting login data or card data. mBank powerfully urges you not to click on specified links and do not renew transfers that have already been commissioned.

In its authoritative position, the bank recalls that in the event of an accident does not send any messages requesting re-execution. Real messages only appear on the bank’s website or in the authoritative mobile application.

How do you admit false messages?

Cybersecurity experts have been informing for years that cybercriminals exploit any major failure or disruption in the functioning of banking servicesto conduct phishing attacks. Examples of elements that may indicate that the message is an effort at fraud:

• Language errors or incomprehensible syntax in the message content,
• Unofficial Sender Address or a unusual domain (e.g. alternatively of @mbank.pl appears @mbank-info.com),
• Links to non-mBank websites,
• Pressure on fast action, e.g. "re-transfer within 24 hours",
• Requests for individual data, logins or passwords.

In case of any doubt, the bank recommends that do not respond to suspicious messages and do not click on linksand alternatively contact the bank hotline directly or log into your account through the authoritative application.

What should customers do?

mBank asks customers to be patient and refraining from renewing transferswhich have not yet been implemented. All operations will be performed automatically after the strategy has been restored.

In addition, the bank recommends that:

• Monitor your bank account in the application or via the website,
• Ignore any email or SMS with payment links,
• Report suspicious messages on the hotline or through the contact form,
• Regularly update passwords and activate two-component authentication (2FA) if not yet activated.

A Future Perspective

Although that kind of thing. technical problems are rare, their effects can be serious – especially erstwhile utilized by criminals. The events of May 26, 2025 show how crucial it is vigilance and awareness of digital threats among clients of financial institutions.

Banks, including mBank, are constantly investing in the improvement of IT infrastructure and protective mechanisms, nevertheless Cyber fraudsters besides do not stay passive. It is so crucial that customers be prepared for akin situations and know how to react.