Phishing attack warning

“Phishing” (pronounced as fishing) is the latest and fastest growing from of information theft. The process is called “Phishing” because it uses e-mail lures and scare tactics to “fish” for sensitive personal information – including passwords, credit card numbers, and account information – from a wide “sea” of unsuspecting PC Users. One e-mail Phishing expedition can potentially reach millions of internet users.

So how exactly does phishing work?
How can you protect yourself against a phishing attack
An example of the phishing e-mail

Credit Card Safety Tips

How to keep Credit Cards and Pin Codes secure
Precautions to pay by credit card and recommendations
Credit Card Protection for Online Shopping

Online Services

Prevention Guideline for Online Banking

SCB provides internet banking services through PCs, note books, tablets, or smart phones to enable customers to perform transactions, such as balance inquiries, withdrawals, fund transfers, utility payments, or the purchase of goods and services by themselves. When using online banking services, users must exercise discretion regarding the confidentiality of user names, passwords, or PINs due to the increasing threat of attempts to obtain user names, passwords, or credit card numbers for transactions. Using this technique, called “phishing”, an e-mail containing a link will be sent to users. When a user clicks on the link it will connect to a fake website that will steal your confidential information in order to unauthorized conduct transactions.

  • After completing all your transactions, you must always log out to prevent any unauthorized access.
  • Do not disclose confidential information, such as credit card numbers, account numbers, or passwords to others.
  • Make sure the Web page status turns to HTTPs:// from HTTP:// before proceeding with online transactions.
  • Set a password for logging into your smart phone or tablet that is difficult to guess to prevent any unauthorized access to perform transactions on your behalf in the event that your smart phone or tablet is lost or stolen.
  • You must download and use bank applications only.
  • You should not use a jailbroken or rooted smart phone or tablet whose operating systems have been adjusted, which makes them vulnerable to information theft if they are used to conduct online transactions.
  • Install virus or malware scanner programs and use a firewall to protect your computer from malware such as Trojans which can steal and send information from of your computer. Please update the programs to ensure that you are running the latest version.
  • You must not use or install non-licensed operating systems and programs to avoid hidden programs such as Trojans or spyware.
  • In the event that you are required to perform online transactions, you should avoid using public internet connections, including free wifi, which may be a fake wifi account created by fraudsters to capture confidential information such as User IDs and passwords.
  • You should use your own smart phone or tablet when performing financial transactions and avoid using leased PCs or PCs with multiple users, such as PCs available at libraries or internet cafes.
  • Closely monitor news, updates from SCB websites, The Bank of Thailand, or other media to learn new financial crime methods which that can pose a threat to anyone.
  • Consider changing your passwords periodically for accounts using the same password. Never repeat a password.
  • The Bank stresses that there is no policy that calls for sending an email or SMS with a link for you to click to access your account or to install any applications on smart phones or tablets for use with SCB Easy Net. The Bank never requests any personal data by email. Please log in through a Favourite or Bookmark created by yourself directly to and to other websites of the Bank.
  • As soon as you change your personal information, such as name, address, or telephone number, you must inform the bank immediately to enable the bank to contact you in the event of any incident concerning your account.
  • Check you account on a regular basis and contact the bank immediately if you find any irregularity.
  • In the event of the following suspicious incidents please act accordingly:

    - You do not see the secure “https://...” mode after logging on to the bank's website, close the browser immediately and do not perform any transactions.
    - Despite being linked to securely with “https://...”, a warning message regarding SSL Certificate still pops up. If this happens you must close the browser immediately and not perform any transactions.
    - If you suspect you may have visited a phishing website, please call our customer service at 02-777-7777, 24 hours a day. to immediately change your password or block or close accounts from which data is suspected to have been stolen.
    - If you find a website which has a malicious purpose, you can report it to the Financial Crime & Security Services Division, Retail Banking Group, or email to 24 hours a day.


Guidance for Using ATMs safety

Threats arising from using ATMs are known ATM skimming. Scammers will install a skimmer in the ATM slot in order to copy card data on the magnetic stripe of the card. After obtaining the card data, the scammer will also steal your PIN by installing a pinhole camera in an attempt to get a clear view of the keypad and record all the ATM PIN actions or attach a fake keyboard over the real one to copy PINs. After that, the scammer will embed the copied information on a fake card and use it to withdraw money at ATMs.

Remarks : Skimmers are devices which read data on electronic cards, such as credit cards and ATM cards.


  • Before using the card, always observe any irregularity in the ATM, such as :

    • Irregularities in the ATM and its slots. Thieves may use a hidden skimmer to steal personal information.
    • Look for any irregularity in ATMs and their slots, such as key pads or buttons that are thicker than usual.
    • Any leaflet box on the ATM. Thieves may hide a tiny spy camera in the box to record you PIN.
    If you find such irregularities, you can contact the SCB Call Center at 02-777-7777 , 24 hours a day.
  • Use one hand to cover the hand you use to type your PIN to thwart any hidden camera.
  • Apply for SMS Alert service to receive alert messages to your mobile phone immediately when there is any movement in your account. SMS Alert will alert you to any debit which may not be performed by yourself so that you can notify the bank of the irregularity and block the card in a timely manner.
  • Do not trust people you are not acquainted who offers to help explain an ATM transaction that you do not understand or are not familiar with. ATM transactions must be voluntarily performed by account owners.
  • Do not give your ATM card to another person under any circumstance, and please be careful of any person attempting to approach you while performing a transaction.
  • Try to use the same ATM so that you can easily notice any irregularities in the ATM.
  • Use ATMs located in a safe area with sufficient light, such as ATMs located at 24-hour convenience stores or bank branches.
  • If an ATM is out of order and your card gets stuck in the machine, please contact the SCB Call Center at 02-777-7777 to block the card immediately. (It is likely that thieves may have put the ATM out of order to convince cardholders to use another nearby machine with a skimmer installed.)
  • Be alert when withdrawing large amounts of money alone or when performing transactions in an area where security is not tight enough.
  • Use strong passwords and periodically change them.
  • Do not give your ATM card and password to others to make transactions on your behalf
  • Do not trust any strangers who want to assist you when your card is seized by a machine. If you are not sure, please contact the SCB Call Center at 02-777-7777 (24 hours a day) to block the card.
  • Regularly check your ATM activities.
  • Periodically change your ATM PIN to prevent any unauthorized usage.

Other Security Tips

How to Use Computers Safety
How To Protect Your Password
How to Use One - Time Passwords
Recommendations for Email Users
Beware of Spyware
How to avoid Spyware

Contact us

Leave Us a Message

For any enquiry and suggestion