How to stay safe Online

For ProCredit Bank, controlling and avoiding cyber attacks is one of the main priorities. By investing in the latest technology and conducting regular technical checks, we ensure the protection and security of our customers' online banking information. In addition, we provide our customers with detailed information and advice on how to stay safe when banking online to prevent them from falling victim to fraud.

Any organization or individual can fall victim to cybercriminals. They become increasingly sophisticated in their efforts to trick people into clicking on suspicious links, downloading email attachments, or logging into social media, which are often used as channels to steal sensitive information. 
To ensure that your banking information is highly protected, there are several measures you can take to protect yourself from common types of cyber attacks.

Effective password   

• Preventing identity theft is key. For this reason, strong password combinations are recommended. Here are some tips to create more secure and strong passwords:
• Choose passwords that cannot be easily guessed. Avoid using last names, birthday or anniversaries, common nicknames, and avoid using the same password for different websites. 
• Do not record or post user IDs, passwords or other sensitive information in places where others have easy access.
• Change passwords frequently and do not share user IDs or passwords with anyone else, including family members.

Safe equipment 

Keep your device secure and software up-to-date:

• Use antivirus and malware protection software and keep it up to date.
• Make sure your device's operating system and software are updated regularly.
• Scan any software you download from the Internet for viruses before installing it.
• Think carefully before removing security controls from your mobile device, as doing so can weaken your device's security and expose you to additional risks.

Socially Engineered Attacks

Social Engineering Attacks are attempts to trick someone into giving out sensitive information (eg passwords) or doing certain actions such as phishing by contacting the individual to gain trust, download and execute files that appear to be harmless, but are actually harmful. Once the information is stolen, it can be used for fraud, to attack a computer system or network.

Remember: 

If you have any doubts about the validity of any email, text, or phone call that appears to be from ProCredit Bank and/or feel that you may have disclosed confidential information, please report it to us immediately by calling +355 42 389 389 or by sending an email to kujdesindajklientit@procreditbank.com.al.

Criminals use many methods of socially engineered attacks to steal information, such as:

Fraudulent Email (Phishing)
Phishing is a technique by which fraudsters attempt to obtain sensitive information by impersonating a legitimate business or reputable person in an electronic communication such as email, text message (SMS), phone call or instant messages. Often, they will present a link or plugin that looks like a valid and reliable source, but is actually a malicious site that steals and records any information you enter there, such as your password. 
Here are some tips to protect yourself: 

• Always bookmark the Bank's website in your browser or use bookmarks instead of clicking on links contained within messages, even if you feel the message is legitimate.
• Banks never send you emails asking you to "confirm" or "update" your password or any personal information by clicking on any link or visiting any website.
• Try to independently verify any details provided in the direct message with the company. 
• Treat all unsolicited messages from you with care, never click on links in such messages to visit unknown web pages.
• Scam emails usually contain urgent or authoritative messages. Be sure to check for misspelled words, irregular company logos or strange email addresses.
• Use any of the SPAM email filtering solutions that help prevent the sending of fraudulent emails. 

Remember:

Never provide personal information including bank information (eg password, debit/credit card number, PIN, CVV2 code, etc.). For security purposes, ProCredit Bank will never ask for this information, neither by phone nor by email.

Spoofing website

Website spoofing is the activity of making a fraudulent website look exactly like a legitimate website. The goal of cybercriminals is to trick people into believing they are interacting with a legitimate, trustworthy company or person, causing them to share sensitive information or get malicious software onto their computers. 

Here are some tips to protect yourself: 

• Be careful, pay attention to the web page address (URL). A website may appear legitimate, but the URL may have some variation in spelling or use a different domain. 
• Make sure it has the lock symbol. Legitimate websites have a lock symbol or a green line on the left side of the website's URL indicating that it is a secure website. 
• Do not click on links on social networking sites, pop-ups, or untrustworthy websites. The links may take you to a different web page than what their label indicates. The safest alternative is to enter the address in the browser. 
• You provide sensitive information to the website only when using a secure connection. Verify the website address if it starts with https:// (the letter “s” stands for “secured”) and not just http://. 
• You can check the Security Certificate of ProCredit Bank by clicking on the padlock symbol that appears in your browser. Avoid using websites when your browser issues certificate errors or warnings.

Remember: 

Never sign up for your online banking account by clicking on any email link. Always access internet banking by typing the address of the bank in your browser or using bookmarks. In case of doubt, contact ProCredit Bank at: +355 42 389 389.

Always alert 

• Use a password for your phone

Protect your smartphone or tablet as you would your computer. Protect your digital wallet by using password, fingerprint or face recognition to unlock your phone screen.

 

• Monitor your account activity

Check account activity frequently to detect fraud early. We recommend that you check your e-banking account every week. Immediately report any suspicious or fraudulent activity to ProCredit Bank.

 

• When you're on the go, bank smart

Avoid using mobile banking or sending sensitive emails or texts when using public or unsecured Wi-Fi networks. 
Be extra careful if you are using equipment that is not your personal equipment and over which you have no control. ProCredit Bank recommends you avoid using such devices, as you never know if they may have malicious monitoring programs installed.

 

• Delete your device memory regularly

It is good practice to delete all information stored on your computer after your online banking session. Every time you access the Internet, your browser automatically saves copies of the web pages you have visited or the passwords you have entered on those web pages. Please refer to what your browser has documented in the disk memory.

Other Proactive Measures

• Download apps only from official app stores: Apple iTunes and Google Play Store. Downloading free apps from unofficial or unknown sources can infect your device with viruses.
• Make sure you always follow the bank's terms and conditions.
• Be doubtful about suspicious or unexpected pop-ups during your online banking session. In case of doubt, please contact ProCredit Bank directly.   
• Never leave your computer while logged in to Internet Banking.
• Make sure to log off completely after you're done with online banking.

For more resources about Cyber Security, please refer to:

• National Cyber Security Alliance  - http://www.staysafeonline.org
• EU Cyber Security Agency - https://www.enisa.europa.eu/