BAC customers warned about online banking scams

QCOSTARICA – BAC San José online users should be careful with the emails they are supposed to receive from the bank, as the crooks’ latest strategy is to use a bogus website to collect personal data from customers .

Through an email, the criminals ask the user to link an email to their bank account. The message warns that if the indicated is not made, the account will be suspended.

After the customer clicks on the link provided in the email, a bogus website, but very similar to the official LAC website, is displayed.

– Advertising –

If the person provides their username and password, the information will be used by the crooks to immediately empty the bank account.

Before opening a link, verify that it is the official website of the bank. Most importantly, don’t go to the bank’s website from the email, enter the web address right on your browser.

Also check the security features of each page you visit: that it has a security lock on the address bar, followed by https: and the name of the site’s bank without spelling errors. In the accompanying explanatory video, you will find more details on how this fraud is committed.

The BAC assures that “the amount of fraud suffered by customers over the past year has been halved” but that “education is the most important measure to avoid falling into the trap of crooks”.

According to data from the OIJ and the bank, in 2020 there were more than 4,000 complaints of electronic fraud. As of March of this year, 1,539 complaints had been filed.

The BAC offers 12 recommendations to avoid falling victim to bank scams:

1. Never share confidential information with a third party and never enter such information on unofficial or non-banking pages.
2. Beware of any phone calls that ask you to access websites where you need to enter sensitive data like username, password, or that ask you to give codes over the phone that arrive in your email .
3. Set passwords longer than 10 characters, combining upper and lower case letters, numbers and symbols.
4. Activate the double authentication factor in all possible accounts (bank, mail, social networks, applications).
5. Change passwords periodically; it is recommended every 3 months.
6. Do not repeat a password in more than one application, service, or website.
7. Securely configure the security and privacy settings of your devices, apps or social networks.
8. Use a good antivirus or antimalware on all your devices.
9. Avoid banking transactions if you are connected to the internet with public networks (that is, using someone’s internet connection, like the mall, a friend’s house, etc.
10. Avoid using “hacked” applications, as they usually contain malware that spy on your device and steal information.
11. Do not browse insecure or questionable sites with work devices or that you use for banking transactions.
12. Never store passwords in web browsers. (You know that cool feature where your browser wants to make your life easier by remembering your passwords? Always say NO when accessing banks and other sensitive information accounts).

– Advertising –

Related

– Advertising –