Fake Wise / Revolut / N26 / Monzo fintech account phishing — impersonates Wise (TransferWise), Revolut, N26, or Monzo claiming account restriction, suspension, or a pending transfer requiring confirmation, driving to a credential or payment-data harvest page; Wise has 16M+ users, Revolut 40M+ — rapid fintech adoption created a large, under-cautious victim pool; FTC 2024: fintech impersonation phishing up 180%; APWG 2024: Wise and Revolut in top-10 most impersonated financial services brands

Phishing emails impersonating Wise (TransferWise), Revolut, N26, or Monzo claiming the recipient's account has been temporarily restricted, suspended, or that a pending international transfer requires immediate confirmation — driving to a credential or payment-data harvest page. Key facts: (1) FTC 2024: fintech account impersonation phishing grew 180% year-over-year as consumers rapidly adopted these platforms for international money transfers, currency exchange, and everyday banking — creating a large, under-cautious victim population that lacks the same skepticism they apply to traditional bank emails; APWG 2024: Wise and Revolut entered the top-10 most impersonated financial services brands globally, alongside PayPal, Chase, and Bank of America; (2) Wise processes over $12 billion in cross-border transactions monthly for 16M+ customers, while Revolut serves 40M+ users in 35+ countries — the sheer scale means phishing campaigns targeting Wise/Revolut users reach enormous audiences, and the international nature of these platforms creates anxiety about account restrictions blocking time-sensitive cross-border payments; (3) The "transfer pending confirmation" hook is particularly effective because users may genuinely expect to receive confirmation requests for large or unusual international transfers, making the urgency feel legitimate; "failure to confirm within 24 hours" creates time pressure that bypasses careful scrutiny of the sender domain; (4) Legitimate Wise and Revolut notifications arrive only from verified domains (@wise.com, @revolut.com, @n26.com, @monzo.com) and never require users to verify or confirm transfers via external links — all account actions are performed within the official app or website. Warning signs: sender domain not wise.com, revolut.com, n26.com, or monzo.com; account restriction or transfer confirmation requiring sign-in on non-official domain; tight confirmation deadline with threat of cancellation; no reference to specific transfer amount, currency pair, or recipient name.