I WANT
RELATED LINKS
I WANT
RELATED LINKS
RELATES LINKS
I WANT
RELATES LINKS
Services
Related Links
Use and Management of Cookies
We use cookies and other similar technologies on our website to enhance your browsing experience. For more information, please visit our Cookies Notice.
- Personal Banking
- FAQ
- Security Tips
- Personal Banking
- ...
- Security Tips
SharePhishing
Phishing attack warning
“Phishing” (pronounced as fishing) is the latest and fastest growing from of information theft. The process is called “Phishing” because it uses e-mail lures and scare tactics to “fish” for sensitive personal information – including passwords, credit card numbers, and account information – from a wide “sea” of unsuspecting PC Users. One e-mail Phishing expedition can potentially reach millions of internet users.
You will receive an unexpected e-mail that looks like it is coming from a bank or financial services company. The e-mail will ask you to send account details and sometimes a PIN by return e-mail or will direct you to a web site that is a fraudulent – and often convincing – duplication of the Bank or financial services company's office site.
The e-mail may scare you by saying “ your account has been or may be frozen”, “your credit card has been cancelled”, “we are updating our software, please confirm your data”, or any number of other creative ploys. Unsuspecting people who fall victim to these ploys sends their personal information and the “phishers”, in turn, commit identity theft and other fraudulent activities, such as withdrawing your money or using your credit card at their leisure.
- Remember that no bank will ever ask you for personal, account, or PIN information by e-mail.
- If you need to go to your banking or online service, use your own tried and trusted method (e.g. by using your own link in your Internet “Favorites” or by typing the site's URL into your browser window yourself).
- Never reply to the suspected phishing e-mail to figure out if it is legitimate. Please just delete this type of e-mail.
- If an e-mail looks suspicious, contact the bank cited in the suspected phishing e-mail with a phone number you know to be genuine, to verify if the e-mail is authentic.
- If you wish to use online banking services, please access websites through reliable methods, such as through “Favorites” you have saved, or type the URL directly into the address bar.
- If you are suspicious that a website you log onto is fake, exit it immediately and do not follow any instruction given by the website.
- Do not reply to any e-mail requesting that you disclose personal information, such as a password, account number, or other confidential information, or any e-mail requesting that you update information or confirm the correctness of information.
- Never open an attached link in an email message, especially a message from an unknown source, as there is a high risk of it being fraudulent. Sometimes those links can even appear to be from the Bank's website, but once you click on them you will be lead to a fraudulent website. There are no limitations in creating links, and it can be difficult to differentiate between fraudulent and genuine URLs. It is strongly advised that you type the URL in the Web browser by yourself.
- Do not send personal information or confidential financial data to any website if it does not have any security system to encode data because information will be sent just like unencrypted regular mail. If you have to input any confidential information, you must ensure that the website has a security system by looking for a key sign on the browser. Please beware of similar websites created to trick customers into disclosing personal information. You must be sure that the website has notifications about the confidentiality of its information and security systems. You must also read the information carefully.
- Check your transactions. When being informed of account or credit card balances, or receiving confirmation letters, carefully check the amounts and services to see if they are correct or not. Report to the bank immediately if any transaction is not correct.
- Report to the bank immediately if you find any incident you suspect might be an enticement. If you believe that any individual is attempting to deceive you by pretending to represent the bank or other companies within the SCB Group, please contact the SCB Call Center at 02-777-7777 (24 hours a day).
Remember that SCB or its staff will never ask customers to disclose their identity number, and PIN or any other confidential information via regular e-mail or on an unsecured web site. If at any time you suspect that an e-mail may be fraudulent, contact the SCB Information Security Division atsecurity@scb.co.th
ABCDBank
Dear ABCDBank customer,
Recently there have been a large number of indentity theft attempts targeting ABCDBank customers. In order to safeguard your account, we require that you confirm your banking details.
This process is mandatory, and if not completed within the nearest time your account may be subject to temporary suspension.
To securely confirm your ABCDBank account details please go to:
https://web.ca.abcdbank.com/signin/scripts/login/user_setup.jsp
Thank you for you prompt attention to this matter and thank you for using ABCDBank!
ABCDBank® Identity Theft Solution
Do not reply to this email as it is an unmonitored alias
A member of ABCDBank
Copyright © 2004 ABCDBank
Credit Card Safety Tips
- Check the name and last name appearing on new or renewal cards. Sign the signature panel on the back of your card as soon as you receive it.
- Treat your credit cards the same as you would do for cash or valuable items. Beware of pickpockets. Regularly check that all credit cards are with you.
- Never keep your PIN code in the same place as your card and never write it on the back of the card. Never share your passwords.
- Choose effective passwords that you can easily remember but that cannot be easily guessed. Avoid using telephone numbers, car license plate numbers, or any information appearing on identification cards such as addresses or birthdays as thieves will use this information to try to guess passwords and PINs in order to use the card.
- Keep the Security Code CVV on the back of the card secret.
- Pay very cautious attention when paying by credit card in order to avoid being charged for multiple payment transactions or having data stolen.
- To prevent having the wrong card returned, check carefully that any returned card is actually yours.
- Check name, card number, and payment amount on sales slips before signing them. Keep sales slips to reconcile with monthly statements.
- Do not leave sales slips or statements unattended. Store them in a safe place or destroy them to protect your data.
- Do not give your credit card number to telesales people if you haven't decided to make a purchase.
- Make sure that no other person can see your password when making cash withdrawals from ATMs. Check to see if there are any suspicious devices which may be used for skimming.
- Do not trust anybody offering assistance to secure your credit card if it is stuck in an ATM. If you are unsure, please contact the SCB Call Center at 02 -777-7777 (open 24 hours a day) to cancel your card.
- To keep you updated on your credit card movements, please notify the Bank if there are any changes in your personal data such as telephone number, cell phone number, and home or email addresses.
- Do not disclose any financial or credit card data to untrusted persons or websites. Do not lend your credit card to others.
- Store the Bank's call center telephone number. If your card is lost or stolen, please call our customer service to block it at 02 777 7777, 24 hours a day.
- Do not take a photo of either side of your credit card to keep on your smart phone or post on social media.
- To prevent credit card data being stolen when shopping online, please apply for Verify by Visa for Visa cards or MasterCard Secure Code for MasterCards.
- Do not purchase goods and services from untrusted merchants or websites without a seller's address.
- Always keep purchase documents for goods and services.
- Make sure that your smart phone, tablet, or computer has the latest version of virus or malware scanner programs installed.
- Please use only secured web browsers, or visit website URLs beginning with “https://” as it is a method for increasing your security by encoding data exchanged between users and service providers. If the information is intercepted it will be illegible.
- Do not use a computer provided for public use or another person's computer for online financial transactions or shopping.
- Connecting your computer to an unknown free Wi-Fi network is strongly discouraged.
- Do not open, install, or run any file attached to an unknown email message.
- Do not allow a web browser to remember your log in user ID /password. Clear your cache and history regularly.
- SCB does not have any policies that seek clients' personal data by telephone or email. Please do not respond if you receive phone calls or email messages asking for personal data.
Online Services
Prevention Guideline for Online Banking
SCB provides internet banking services through PCs, note books, tablets, or smart phones to enable customers to perform transactions, such as balance inquiries, withdrawals, fund transfers, utility payments, or the purchase of goods and services by themselves. When using online banking services, users must exercise discretion regarding the confidentiality of user names, passwords, or PINs due to the increasing threat of attempts to obtain user names, passwords, or credit card numbers for transactions. Using this technique, called “phishing”, an e-mail containing a link will be sent to users. When a user clicks on the link it will connect to a fake website that will steal your confidential information in order to unauthorized conduct transactions.
- After completing all your transactions, you must always log out to prevent any unauthorized access.
- Do not disclose confidential information, such as credit card numbers, account numbers, or passwords to others.
- Make sure the Web page status turns to HTTPs:// from HTTP:// before proceeding with online transactions.
- Set a password for logging into your smart phone or tablet that is difficult to guess to prevent any unauthorized access to perform transactions on your behalf in the event that your smart phone or tablet is lost or stolen.
- You must download and use bank applications only.
- You should not use a jailbroken or rooted smart phone or tablet whose operating systems have been adjusted, which makes them vulnerable to information theft if they are used to conduct online transactions.
- Install virus or malware scanner programs and use a firewall to protect your computer from malware such as Trojans which can steal and send information from of your computer. Please update the programs to ensure that you are running the latest version.
- You must not use or install non-licensed operating systems and programs to avoid hidden programs such as Trojans or spyware.
- In the event that you are required to perform online transactions, you should avoid using public internet connections, including free wifi, which may be a fake wifi account created by fraudsters to capture confidential information such as User IDs and passwords.
- You should use your own smart phone or tablet when performing financial transactions and avoid using leased PCs or PCs with multiple users, such as PCs available at libraries or internet cafes.
- Closely monitor news, updates from SCB websites, The Bank of Thailand, or other media to learn new financial crime methods which that can pose a threat to anyone.
- Consider changing your passwords periodically for accounts using the same password. Never repeat a password.
- The Bank stresses that there is no policy that calls for sending an email or SMS with a link for you to click to access your account or to install any applications on smart phones or tablets for use with SCB Easy Net. The Bank never requests any personal data by email. Please log in through a Favourite or Bookmark created by yourself directly to www.scbeasy.com and to other websites of the Bank.
- As soon as you change your personal information, such as name, address, or telephone number, you must inform the bank immediately to enable the bank to contact you in the event of any incident concerning your account.
- Check you account on a regular basis and contact the bank immediately if you find any irregularity.
- In the event of the following suspicious incidents please act accordingly:
- You do not see the secure “https://...” mode after logging on to the bank's website, close the browser immediately and do not perform any transactions.
- Despite being linked to securely with “https://...”, a warning message regarding SSL Certificate still pops up. If this happens you must close the browser immediately and not perform any transactions.
- If you suspect you may have visited a phishing website, please call our customer service at 02-777-7777, 24 hours a day. to immediately change your password or block or close accounts from which data is suspected to have been stolen.
- If you find a website which has a malicious purpose, you can report it to the Financial Crime & Security Services Division, Retail Banking Group, or email to Security@scb.co.th 24 hours a day.
ATM
Guidance for Using ATMs safety
Threats arising from using ATMs are known ATM skimming. Scammers will install a skimmer in the ATM slot in order to copy card data on the magnetic stripe of the card. After obtaining the card data, the scammer will also steal your PIN by installing a pinhole camera in an attempt to get a clear view of the keypad and record all the ATM PIN actions or attach a fake keyboard over the real one to copy PINs. After that, the scammer will embed the copied information on a fake card and use it to withdraw money at ATMs.
Remarks : Skimmers are devices which read data on electronic cards, such as credit cards and ATM cards.
- Before using the card, always observe any irregularity in the ATM, such as :
- Irregularities in the ATM and its slots. Thieves may use a hidden skimmer to steal personal information.
- Look for any irregularity in ATMs and their slots, such as key pads or buttons that are thicker than usual.
- Any leaflet box on the ATM. Thieves may hide a tiny spy camera in the box to record you PIN.
- Use one hand to cover the hand you use to type your PIN to thwart any hidden camera.
- Apply for SMS Alert service to receive alert messages to your mobile phone immediately when there is any movement in your account. SMS Alert will alert you to any debit which may not be performed by yourself so that you can notify the bank of the irregularity and block the card in a timely manner.
- Do not trust people you are not acquainted who offers to help explain an ATM transaction that you do not understand or are not familiar with. ATM transactions must be voluntarily performed by account owners.
- Do not give your ATM card to another person under any circumstance, and please be careful of any person attempting to approach you while performing a transaction.
- Try to use the same ATM so that you can easily notice any irregularities in the ATM.
- Use ATMs located in a safe area with sufficient light, such as ATMs located at 24-hour convenience stores or bank branches.
- If an ATM is out of order and your card gets stuck in the machine, please contact the SCB Call Center at 02-777-7777 to block the card immediately. (It is likely that thieves may have put the ATM out of order to convince cardholders to use another nearby machine with a skimmer installed.)
- Be alert when withdrawing large amounts of money alone or when performing transactions in an area where security is not tight enough.
- Use strong passwords and periodically change them.
- Do not give your ATM card and password to others to make transactions on your behalf
- Do not trust any strangers who want to assist you when your card is seized by a machine. If you are not sure, please contact the SCB Call Center at 02-777-7777 (24 hours a day) to block the card.
- Regularly check your ATM activities.
- Periodically change your ATM PIN to prevent any unauthorized usage.
Other Security Tips
- Do not use the web browser option to remember passwords automatically when you log in to the SCB Easy Net website.
- Equip your computer with anti-virus software. Update the program to ensure you are running the most current version to prevent the computer being infected with new viruses.
- Update operating system security patches. Make sure your browser software is up-to-date to reduce security risks.
- Clear your web browser cache and history after you are finished, especially if you share a computer with others. This will delete your account data.
- If you use a Windows operating system, do not select the "share file" and "printer" options. Turn these off when there is Internet connection.
- Periodically back up your important data.
- Use data encryption techniques to protect very important data.
- Choose effective passwords that contain at least 8 characters and consisting of numbers and letters.
- Avoid using user IDs, phone numbers, birthdays, or any other personal data.
- Memorize your password and ID instead of writing it down.
- Change passwords every 3 months.
- Use different passwords between SCB Easy Net ,online banking applications and other systems.
- Avoid repetitions and do not use numbers and letters more than twice
- Make sure no one can see you entering your PIN. Do not share your password with others.
- Never disclose your password or PIN to anyone, even Bank staff.
- Never disclose a one-time password to anyone.
- Please notify the Bank if you change you cell phone number. (please call our customer service at 02 777 7777, 24 hours a day.)
- Do not share email addresses with those you do not know well.
- Do not open emails from unknown persons or companies.
- Delete e-mail messages containing rumors and chain letters and do not forward them. Viruses can travel to your computer through email messages. Do not open unknown or suspicious email messages.
- Be careful in responding to email messages requesting your personal data, particularly those purporting to be from the Bank. The Bank does not have any policies requesting important personal data, user IDs, or passwords by email.
Spyware is a program that seek to enter your computer while you surf the Internet and can load without your being aware of it. They store our internet behavioral patterns and other data such as names, last names, addresses, email addresses, and possibly passwords and credit card numbers.
- Be cautious about downloading programs from unknown websites.
- Be cautious with email messages offering free programs to get rid of spyware.
- Be very careful if a window pops up asking you to click "Yes" while you are on the Internet. You can click "X" instead of clicking in the area of the advertisement. If you click "Yes", it will confirm an installation which might be spyware.
- While you are on any website which requires you to fill in personal data for registration, please make sure that the website can be trusted. If unnecessary, please avoid such registration.
- If you suspect that you may have installed a spyware program, you can check it against the list of installed programs and remove any unknown ones.
- Install an Anti-Spyware program to scan spyware which may have been installed on your computer. The program will notify you and delete the spyware promptly.
- Avoid downloading software or programs from unknown sources
