Phishing attack warning

You will receive an unexpected e-mail that looks like it is coming from a bank or financial services company. The e-mail will ask you to send account details and sometimes a PIN by return e-mail or will direct you to a web site that is a fraudulent – and often convincing – duplication of the Bank or financial services company's office site.

The e-mail may scare you by saying “ your account has been or may be frozen”, “your credit card has been cancelled”, “we are updating our software, please confirm your data”, or any number of other creative ploys. Unsuspecting people who fall victim to these ploys sends their personal information and the “phishers”, in turn, commit identity theft and other fraudulent activities, such as withdrawing your money or using your credit card at their leisure.

• Remember that no bank will ever ask you for personal, account, or PIN information by e-mail.
• If you need to go to your banking or online service, use your own tried and trusted method (e.g. by using your own link in your Internet “Favorites” or by typing the site's URL into your browser window yourself).
• Never reply to the suspected phishing e-mail to figure out if it is legitimate. Please just delete this type of e-mail.
• If an e-mail looks suspicious, contact the bank cited in the suspected phishing e-mail with a phone number you know to be genuine, to verify if the e-mail is authentic.
• If you wish to use online banking services, please access websites through reliable methods, such as through “Favorites” you have saved, or type the URL directly into the address bar.
• If you are suspicious that a website you log onto is fake, exit it immediately and do not follow any instruction given by the website.
• Do not reply to any e-mail requesting that you disclose personal information, such as a password, account number, or other confidential information, or any e-mail requesting that you update information or confirm the correctness of information.
• Never open an attached link in an email message, especially a message from an unknown source, as there is a high risk of it being fraudulent. Sometimes those links can even appear to be from the Bank's website, but once you click on them you will be lead to a fraudulent website. There are no limitations in creating links, and it can be difficult to differentiate between fraudulent and genuine URLs. It is strongly advised that you type the URL in the Web browser by yourself.
• Do not send personal information or confidential financial data to any website if it does not have any security system to encode data because information will be sent just like unencrypted regular mail. If you have to input any confidential information, you must ensure that the website has a security system by looking for a key sign on the browser. Please beware of similar websites created to trick customers into disclosing personal information. You must be sure that the website has notifications about the confidentiality of its information and security systems. You must also read the information carefully.
• Check your transactions. When being informed of account or credit card balances, or receiving confirmation letters, carefully check the amounts and services to see if they are correct or not. Report to the bank immediately if any transaction is not correct.
• Report to the bank immediately if you find any incident you suspect might be an enticement. If you believe that any individual is attempting to deceive you by pretending to represent the bank or other companies within the SCB Group, please contact the SCB Call Center at 02-777-7777 (24 hours a day).

Remember that SCB or its staff will never ask customers to disclose their identity number, and PIN or any other confidential information via regular e-mail or on an unsecured web site. If at any time you suspect that an e-mail may be fraudulent, contact the SCB Information Security Division atsecurity@scb.co.th

ABCDBank

Dear ABCDBank customer,

Recently there have been a large number of indentity theft attempts targeting ABCDBank customers. In order to safeguard your account, we require that you confirm your banking details.

This process is mandatory, and if not completed within the nearest time your account may be subject to temporary suspension.

To securely confirm your ABCDBank account details please go to:

https://web.ca.abcdbank.com/signin/scripts/login/user_setup.jsp

Thank you for you prompt attention to this matter and thank you for using ABCDBank!

ABCDBank® Identity Theft Solution

Do not reply to this email as it is an unmonitored alias

A member of ABCDBank
Copyright © 2004 ABCDBank

• Check the name and last name appearing on new or renewal cards. Sign the signature panel on the back of your card as soon as you receive it.
• Treat your credit cards the same as you would do for cash or valuable items. Beware of pickpockets. Regularly check that all credit cards are with you.
• Never keep your PIN code in the same place as your card and never write it on the back of the card. Never share your passwords.
• Choose effective passwords that you can easily remember but that cannot be easily guessed. Avoid using telephone numbers, car license plate numbers, or any information appearing on identification cards such as addresses or birthdays as thieves will use this information to try to guess passwords and PINs in order to use the card.
• Keep the Security Code CVV on the back of the card secret.

• Pay very cautious attention when paying by credit card in order to avoid being charged for multiple payment transactions or having data stolen.
• To prevent having the wrong card returned, check carefully that any returned card is actually yours.
• Check name, card number, and payment amount on sales slips before signing them. Keep sales slips to reconcile with monthly statements.
• Do not leave sales slips or statements unattended. Store them in a safe place or destroy them to protect your data.
• Do not give your credit card number to telesales people if you haven't decided to make a purchase.
• Make sure that no other person can see your password when making cash withdrawals from ATMs. Check to see if there are any suspicious devices which may be used for skimming.
• Do not trust anybody offering assistance to secure your credit card if it is stuck in an ATM. If you are unsure, please contact the SCB Call Center at 02 -777-7777 (open 24 hours a day) to cancel your card.
• To keep you updated on your credit card movements, please notify the Bank if there are any changes in your personal data such as telephone number, cell phone number, and home or email addresses.
• Do not disclose any financial or credit card data to untrusted persons or websites. Do not lend your credit card to others.
• Store the Bank's call center telephone number. If your card is lost or stolen, please call our customer service to block it at 02 777 7777, 24 hours a day.
• Do not take a photo of either side of your credit card to keep on your smart phone or post on social media.

• To prevent credit card data being stolen when shopping online, please apply for Verify by Visa for Visa cards or MasterCard Secure Code for MasterCards.
• Do not purchase goods and services from untrusted merchants or websites without a seller's address.
• Always keep purchase documents for goods and services.
• Make sure that your smart phone, tablet, or computer has the latest version of virus or malware scanner programs installed.
• Please use only secured web browsers, or visit website URLs beginning with “https://” as it is a method for increasing your security by encoding data exchanged between users and service providers. If the information is intercepted it will be illegible.
• Do not use a computer provided for public use or another person's computer for online financial transactions or shopping.
• Connecting your computer to an unknown free Wi-Fi network is strongly discouraged.
• Do not open, install, or run any file attached to an unknown email message.
• Do not allow a web browser to remember your log in user ID /password. Clear your cache and history regularly.
• SCB does not have any policies that seek clients' personal data by telephone or email. Please do not respond if you receive phone calls or email messages asking for personal data.

• Do not use the web browser option to remember passwords automatically when you log in to the SCB Easy Net website.
• Equip your computer with anti-virus software. Update the program to ensure you are running the most current version to prevent the computer being infected with new viruses.
• Update operating system security patches. Make sure your browser software is up-to-date to reduce security risks.
• Clear your web browser cache and history after you are finished, especially if you share a computer with others. This will delete your account data.
• If you use a Windows operating system, do not select the "share file" and "printer" options. Turn these off when there is Internet connection.
• Periodically back up your important data.
• Use data encryption techniques to protect very important data.

• Choose effective passwords that contain at least 8 characters and consisting of numbers and letters.
• Avoid using user IDs, phone numbers, birthdays, or any other personal data.
• Memorize your password and ID instead of writing it down.
• Change passwords every 3 months.
• Use different passwords between SCB Easy Net ,online banking applications and other systems.
• Avoid repetitions and do not use numbers and letters more than twice
• Make sure no one can see you entering your PIN. Do not share your password with others.
• Never disclose your password or PIN to anyone, even Bank staff.

• Never disclose a one-time password to anyone.
• Please notify the Bank if you change you cell phone number. (please call our customer service at 02 777 7777, 24 hours a day.)

• Do not share email addresses with those you do not know well.
• Do not open emails from unknown persons or companies.
• Delete e-mail messages containing rumors and chain letters and do not forward them. Viruses can travel to your computer through email messages. Do not open unknown or suspicious email messages.
• Be careful in responding to email messages requesting your personal data, particularly those purporting to be from the Bank. The Bank does not have any policies requesting important personal data, user IDs, or passwords by email.

Spyware is a program that seek to enter your computer while you surf the Internet and can load without your being aware of it. They store our internet behavioral patterns and other data such as names, last names, addresses, email addresses, and possibly passwords and credit card numbers.

• Be cautious about downloading programs from unknown websites.
• Be cautious with email messages offering free programs to get rid of spyware.
• Be very careful if a window pops up asking you to click "Yes" while you are on the Internet. You can click "X" instead of clicking in the area of the advertisement. If you click "Yes", it will confirm an installation which might be spyware.
• While you are on any website which requires you to fill in personal data for registration, please make sure that the website can be trusted. If unnecessary, please avoid such registration.
• If you suspect that you may have installed a spyware program, you can check it against the list of installed programs and remove any unknown ones.
• Install an Anti-Spyware program to scan spyware which may have been installed on your computer. The program will notify you and delete the spyware promptly.
• Avoid downloading software or programs from unknown sources