Don’t Be The Next Phishing Victim!!

Don’t Be The Next Phishing Victim!!

Banks will never email, SMS or call you to request for your internet banking access personal information.

“Phishing” is a type of email to bait you into fake websites. The fake websites lure victims to disclose confidential personal information, including user ID and passwords.


GO TO THE CORRECT URL:
a. Never click on a link in an email or pop-up window to go to a site. Always enter the bank’s correct URL such as www.cimbclicks.com.my

b. Configure your custom SecureWord to verify that the login page is the genuine CIMB Clicks website. Do not proceed when you do not see your custom SecureWord.

c. Look for the padlock icon on your browser’s status bar. The icon denotes valid SSL digital certificate.

d. Do not continue if there are “SSL warning” messages.

2. ACCESS FROM SECURE DEVICES:
a. Install and update your computer’s security software. Ensure that your computer is equipped with the latest version of anti-virus software.

b. If you have to logon to CIMB Clicks in public places, study your environment and make sure no one is observing you when you enter your User ID and password.

3. SECURE ONLINE SESSIONS:
a. Create hard to guess password. Prevent outsiders from guessing your password. Don’t choose one that is easily identified with you. E.g. birthday, address. Memorize your password and change it regularly.

b. Always log off and clear your computer’s cache after each banking session. Logging off and cache clearing may eliminate all traces of your visits from the computer’s memory.

c. Keep your personal banking information strictly to yourself. Never disclose this information to anyone. Eg. Login ID, Password, ATM PIN number, TAC code.

d. Check your accounts regularly to ensure no “unknown third party/favourites” accounts are being created. Report immediately if you found suspicion.

e. Read the TAC content as it carries specific information on its usage. E.g. If you have received a TAC for Add to Favourites, then its usage is to be used for adding a favourites account and not for other activities.

f. If you have received TAC without requesting it, please report it immediately. Do not reveal your TAC to anyone.

g. Never leave your computer connected and unattended for long period of time.

4. Never respond to any suspicious or unsolicited emails. The bank will never ask you to disclose, change or update your personal banking information via emails, phone or SMS. You could be coaxed into entering a bogus website that may look fraudulently identical to the bank’s site.

5. Never call a number appearing on an email you suspect is fraudulent. A phony telephone number may be used in the email.

If you have received a fraudulent email, please forward it to cimbgs.phishing@cimb.com. Please do not remove the original subject line, or change the email in any way when you forward it to us. If you have entered personal information after clicking on a link or suspect fraudulent behavior, please call 1-300-880-900.