RELATED LINKS
RELATED LINKS
I WANT
RELATES LINKS
RELATES LINKS
Services
Related Links
Use and Management of Cookies
We use cookies and other similar technologies on our website to enhance your browsing experience. For more information, please visit our Cookies Notice.
- Personal Banking
- SCB Cybersecurity
- Personal Banking
- SCB Cybersecurity
SCB Cybersecurity
SCB Cybersecurity brings together knowledge, certifications, and the latest security updates to help customers understand and use financial services with confidence.
- Cybersecurity Trust
- Cybersecurity Trends
- Keep Yourself Safe
- FAQ
- Help & Contact
- Glossary
SCB Cybersecurity
In today’s fast-paced digital world, cybersecurity is the foundation of trust and the highest priority for Siam Commercial Bank (SCB). We continuously develop and maintain secure systems to safeguard customer data and financial transactions.
SCB Cybersecurity brings together knowledge, certifications, and the latest security updates to help customers understand and use financial services with confidence.
In today’s fast-paced digital world, cybersecurity is the foundation of trust and the highest priority for Siam Commercial Bank (SCB). We continuously develop and maintain secure systems to safeguard customer data and financial transactions.
SCB Cybersecurity brings together knowledge, certifications, and the latest security updates to help customers understand and use financial services with confidence.
Cybersecurity Trust
Global Standards & Certifications
PCI DSS
SCB is certified under the Payment Card Industry Data Security Standard (PCI DSS) version 4.0.1 service provider – the international benchmark for organizations that store, process, or transmit payment card and sensitive authentication data.
PCI DSS
SCB is certified under the Payment Card Industry Data Security Standard (PCI DSS) version 4.0.1 service provider – the international benchmark for organizations that store, process, or transmit payment card and sensitive authentication data.
This certification ensures enhanced protection for cardholder information and strengthens trust in payment systems. Overseen by the PCI Security Standards Council (PCI SSC), which was founded by Visa, Mastercard, American Express, Discover, and JCB, PCI DSS sets global requirements for credit card data security. SCB’s compliance confirms our systems meet international standards, reducing risks of unauthorized access and ensuring safe transactions in the digital era.
ISO/IEC 27001
SCB is also certified under ISO/IEC 27001, the global standard for Information Security Management Systems (ISMS).
ISO/IEC 27001
SCB is also certified under ISO/IEC 27001, the global standard for Information Security Management Systems (ISMS).
ISO/IEC 27001 outlines best practices for managing information security risks, ensuring that critical data and systems are protected in terms of Confidentiality, Integrity, and Availability.
This certification reflects SCB’s commitment to safeguarding information resources and delivering secure, reliable services to customers.
NIST Cybersecurity Framework (CSF)
SCB adopts the NIST Cybersecurity Framework to manage cybersecurity risks, with independent audits verifying our practices. This ensures our systems and processes align with international standards, providing effective protection for customer data and services.
NIST Cybersecurity Framework (CSF)
SCB adopts the NIST Cybersecurity Framework to manage cybersecurity risks, with independent audits verifying our practices. This ensures our systems and processes align with international standards, providing effective protection for customer data and services.
Security Features & Protection Technologies
Technology Against Deepfake
SCB adopts facial authentication technology for online transactions, integrating Liveness Detection and Face Recognition technologies to help reduce the risk of identity fraud.
Technology Against Deepfake
SCB adopts facial authentication technology for online transactions, integrating Liveness Detection and Face Recognition technologies to help reduce the risk of identity fraud.
These systems can detect attempts to spoof or manipulate facial images (Presentation Attack Detection) through automated facial analysis. This helps prevent the use of images, videos, or digitally altered media, while ensuring accurate identity verification before approving transactions.
We regularly test and enhance the systems, referencing current threats and emerging attack patterns. This ensures that our security measures remain aligned with international standards and that risks are managed effectively.
Mobile Banking Security
SCB continuously designs, develops, and enhances the security of its mobile banking services, prioritizing both financial security and customer experience.
Mobile Banking Security
SCB continuously designs, develops, and enhances the security of its mobile banking services, prioritizing both financial security and customer experience. Our systems comply with regulatory standards for financial institutions, including requirements on approved device types and usage guidelines as well as monitoring unusual transaction patterns to detect and prevent unauthorized access.
Encryption
SCB uses data encryption for data storage and transmission, ensuring sensitive customer information remains unreadable or inaccessible to unauthorized parties.
Encryption
SCB uses data encryption for data storage and transmission, ensuring sensitive customer information remains unreadable or inaccessible to unauthorized parties.
These measures safeguard personal and financial information. SCB continuously maintains, develops, and enhances its encryption practices, following widely adopted industry security standards. This ensures that customers can safely access services and conduct transactions through digital channels in their everyday lives.
Threat Management & Cyber Resilience
Continuous Cyber Threat Management
SCB proactively strengthens cybersecurity, by integrating threat intelligence analysis, ongoing monitoring, and simulated attack testing. We ensure that our personnel, processes, and technologies remain resilient and aligned with the ever evolving threat landscape.
Continuous Cyber Threat Management
SCB proactively strengthens cybersecurity, by integrating threat intelligence analysis, ongoing monitoring, and simulated attack testing. We ensure that our personnel, processes, and technologies remain resilient and aligned with the ever evolving threat landscape.
SCB leverages proactive threat intelligence to understand risks, attack techniques, and exploited vulnerabilities. This knowledge is applied to the Bank’s environment to assess risks and implement preventive measures before similar threats can impact actual systems.
At the same time, SCB employs threat monitoring systems to detect and analyze irregularities in system usage and status, enabling early identification and response to potential risks.
For testing, we conduct simulated attack scenarios to evaluate the readiness of personnel, processes, and technologies, while also validating the effectiveness of existing defense mechanisms.
Insights gained from analysis, monitoring, and testing are continuously used to refine prevention, detection, and response measures. This ensures that customer services and transactions remain secure and uninterrupted.
Cybersecurity Resilience Exercises
We collaborate with external agencies, such as the National Cybersecurity Committee and the Securities and Exchange Commission to conduct cybersecurity capability and readiness exercises that help strengthen our effectiveness in detecting and responding to cyber threats.
Cybersecurity Resilience Exercises
We collaborate with external agencies, such as the National Cybersecurity Committee and the Securities and Exchange Commission to conduct cybersecurity capability and readiness exercises that help strengthen our effectiveness in detecting and responding to cyber threats.
Vulnerability Exposure Policy
SCB provides a channel for external parties to report any potential security vulnerabilities they may discover in the Bank’s systems. This allows the Bank to investigate and remediate risks that could compromise system functionality.
Vulnerability Exposure Policy
SCB provides a channel for external parties to report any potential security vulnerabilities they may discover in the Bank’s systems. This allows the Bank to investigate and remediate risks that could compromise system functionality.
Reported issues are assessed and addressed according to the Bank’s security protocols to mitigate risks and improve security measures.
This approach enables us to gain security insights from diverse perspectives, ensuring that customer data and services are protected appropriately.
Cybersecurity Trends
Keep Yourself Safe
A checklist to strengthen your security while using our services.
FAQ
Online & Mobile Banking Security
We use multiple layers of security, including:
- Multi-factor authentication (e.g. OTP, biometric verification)
- 24/7 transaction monitoring and alerts
- Data encryption
- Session Security
- SCB will never ask for your PIN or OTP via email/ SMS.
- Be cautious of messages that sound urgent, threatening, or pressure you to act immediately.
- Do not click links or open attachments from unknown/ unfamiliar sources.
- Always check the sender’s name and URL carefully.
Call SCB immediately at 02-777-7575 for investigation and prompt action.
- Hang up immediately.
- Do not share any personal or banking information.
Look out for unusual behavior such as:
- Requests for personal data or OTP
- Calls from unofficial numbers claiming to be the bank
- Threatening or urgent language pressures you to act immediately
- Offers that seem “too good to be true”
Passwords & Authentication
- Use a mix of uppercase, lowercase, numbers, and special characters.
- Avoid personal details e.g. date of birth, name, phone number.
- Do not use the same password across different services.
Card & ATM Security
- Check ATMs for irregularities before use.
- Cover the keypad when entering your PIN.
- Regularly review account activity for suspicious transactions.
Device & App Security
- Always update your operating system and banking apps to the latest version.
- Download banking apps only from official stores (Google Play, Apple App Store, Huawei AppGallery).
- Avoid using public Wi-Fi for financial transactions.
- Immediately change passwords for all accounts using the same credentials.
- Contact the bank to suspend or block your account/card.
- Collect evidence and consider filing a police report.
- Monitor your account activity closely.
Help & Contact
Customer Support Channels
SCB Customer Service Center
Report incidents, cybersecurity risks, fraudulent websites
Call: 02 777 7777 (24/7)Report
Cyber Threats
Report fake websites, dangerous links, suspicious apps, or other cybersecurity concerns
security@scb.co.th
Tip: Attach URLs, screenshots, and incident details to facilitate quicker investigation
Victim of Fraud
For urgent account suspension, emergency reporting, or suspected account takeover
Call: 02 777 7575 (24/7)