Security - Phishing and Vishing
It is important to note that BDO Unibank will NEVER ask you for your personal information or account details via email. If you ever doubt the legitimacy of any email claiming to originate from BDO,
please contact Online Banking at firstname.lastname@example.org. BDO is continuously working to ensure your security against phishing schemes.
What is it?
Phishing is a process used by fraudsters to acquire sensitive information such as usernames, passwords and credit card details by pretending to be an email or message from a trustworthy organization such as your bank with the aim of tricking you into providing personal or security related information.
Phishing is usually carried out by email, text message or instant messaging and often directs you to enter details at a fake website which looks almost identical to the real one, however some phishing scams are able to create pop-ups that appear whilst you are using a banking site.
You may receive emails, directing you to websites that ask you to enter your personal information. The aim of many of these email scams is to take you to websites that may look like the genuine site but are in fact ‘spoof’, or fake, web sites. When you click on a link or enter your personal details, the information is sent to someone other than your bank or other service providers. This means that someone else may be able to access to your accounts.
You should also be cautious when receiving unsolicited phone calls from people claiming to represent your bank or another business, especially where you are asked to provide information about your login credentials or card details. ‘Vishing’ is the term used for this process, where the caller’s objective for contacting you is attempting to obtain these details for their financial gain.
BDO will never...
- Send you an email or text message containing a link to a log in page
- Send urgent or time-sensitive emails, text messages or correspondence, or make telephone calls that ask you just to provide updates or confirm sensitive data like your account number, passcode or security details
- Advise you by email, phone or text message that your account or internet banking facility will be suspended if you do not follow the message instructions
- Come to your home to collect your payment card or password
- Contact us immediately if any of the above happens to you
- Ask you to enter your login ID and passcode when logging onto your accounts online through our internet banking facility
- When we do a client callback to confirm a transaction we will ask you to confirm your transaction details, and you may be asked for some additional personal or account related information
- We may send you emails, i.e. e-news, with information or promotions about our products and services across our group of businesses
What to do
- Never give out your security information such as your PIN, login ID’s, passcodes, or account or card details to unexpected callers or email requests
- If you receive an email or text message that asks for your personal information, do not click on any link or provide any security details. Please forward suspicious emails or details of text messages that ask for your personal information to email@example.com and then delete it from your inbox without responding
- Check your bank statements on a regular basis. Contact us immediately if you notice any unusual transactions
- Never hand over your bank card or PIN to someone to anyone who comes to your home address. Only a fraudster would ask you for your card or PIN
- Protect yourself and your computer by having up-to-date anti-virus software, operating systems and firewalls