Suporte online

Fraud Risk Awareness

Phishing: How not to become a victim of Phishing

Phishing is the fraudulent attempt to obtain sensitive information such as usernames, passwords and credit card details by disguising oneself as a trustworthy entity in an electronic communication.

How do you prevent becoming a victim of phishing?

  • Do not click on links or icons in unsolicited emails.
  • Do not reply to these emails. Delete them immediately.
  • Be alert to hyperlinks that contain misspellings of the actual domain name. In some cases, it could be one character.
  • Never give anyone your confidential information, such as login usernames or passwords.
  • Never send your personal or confidential information. Personal information includes identity documents, driver?s licenses, passports, addresses and contact details. Confidential information includes usernames, password and PIN numbers.

Email Spoofing: How not to become a victim of Email Spoofing

Email spoofing is the creation of email messages with a forged sender address. Because the core email protocols do not have any mechanism for authentication, it is common for spam and phishing emails to use such spoofing to mislead or even prank the recipient about the origin of the message.

How do you prevent becoming a victim of email spoofing?

  • Ensure the domain visible in received emails is associated with the business it purports to be from.
  • Ensure that permissions are enabled to allow your employees are able to view full email extensions on their computers.
  • Do not believe the content of unsolicited emails blindly. If you are worried about what is alleged, use your own contact details to contact the sender to confirm.
  • Don't ignore reports from colleagues about mysterious emails coming from your accounts.

Business Email Compromise (BEC)

Business email compromise attacks is a form of cyber crime which uses email fraud to attack commercial, Government and non-profit organizations to achieve a specific outcome which negatively impacts the targets organization.

How do you prevent becoming a victim of BEC?

  • Never list your main email address publicly anywhere online - in forums, in online advertisements, on blogs, social media or any place where it can be harvested by spammers.
  • Use a separate email address for the internet which is not linked to your personal or business email account.
  • Any unplanned or urgent payment instructions should be questioned. Always check with the person issuing the directive in-person or via a credible channel ? preferably one where you can see them.
  • Any requests for a change in beneficiary account details should be verified by contacting the sender using normal, legitimate historically sound contact details.

Online Banking Fraud

Online Banking Fraud is a fraud or theft committed using online technology to illegally remove money from a bank account and/or transfer money to an account in a different bank. Internet Banking Fraud is a form of identity theft and is usually made possible through techniques such as phishing.

How do you prevent becoming a victim of Online Fraud?

  • Check your account activity regularly.
  • Keep your PIN and passwords secret.
  • Use a strong password for online banking.
  • Change passwords periodically.
  • Do not give out account info over the phone.
  • Do not give out any account info over the phone.
  • Use anti-virus protection software, firewalls and spyware blockers.
  • Use secure mailboxes only.

Payments Fraud

Payment fraud is any type of false or illegal transaction completed by a cybercriminal. The perpetrator deprives the victim of funds, personal property, interest or sensitive information via the Internet. Payment fraud is characterized in three ways: Fraudulent or unauthorized transactions. Lost or stolen merchandise.

How do you prevent becoming a victim of Payments Fraud?

  • Change your passwords regularly.
  • Include numbers, symbols and letters.
  • Avoid using obvious personal information.
  • Never submit financial information through a website that does not have multi factor authentication.
  • Avoid using automatic login features that save username and password.
  • Be sure to log out before ending the session

Counterfeit card fraud

Counterfeit card fraud is perpetrated with a card that has been illegally manufactured using information stolen from the magnetic strip of a genuinely issued card. In some instances, Lost, Stolen and old cards are re-encoded with information stolen from a genuine card for purposes of committing counterfeit card fraud. The information needed for counterfeit card fraud is usually stolen through card skimming.

How do you prevent becoming a victim of Card Fraud?

  • Never let the card out of your sight when making payments.
  • If you have a debit, cheque and credit card, don?t choose the same PIN for all of them,  so that if you lose one, the others will still be safe.
  • Chip Credit cards also require a PIN for transactions at points of sale (paying for goods/services).
  • Do not send e-mails that quote your card number and expiry date.

Mitigation recommendations

Key/basic controls and good practice:

  • independent verification of changes to signatories, account numbers, etc; regular review of users; reconciliations; etc.
  • Secure your smartphone by enabling the lock screen and security function, be it a pattern password or fingerprint screen lock.
  • Install mobile security and antivirus software from a trusted security vendor.
  • Clear the browser cache on your PC and Mobile device regularly.
  • Stay alert for phishing attacks and tactics to prevent additional scams and to think before they click!
  • Enable and use multi-factor authentication to increase security on their device or computers.
  • Report scams to:, or our web platform ? fale conosco?

© 2016 FNB - First National Bank
Todos os direitos reservados