How to shop safely online
How to shop safely online
When shopping online, you'll always receive a one-time PIN (OTP) via SMS or email to authorize your transaction.
- Only buy goods or services from online companies you recognize and trust
- Look for security symbols in the URL like an unbroken lock or key
- Make sure the URL begins with 'HTTPS and not 'HTTP
- Never pay for goods or services via email
- Keep a record of your transactions and payment confirmations
- Never share any personal or banking info with anyone, including bank staff
- Don't use public computers or internet cafés to shop online
Safety Online
How to bank safely online
• Make sure your devices always have the latest browser and security software
• Never use public computers or devices to do your online banking
• Log out of your banking profile as soon as you've completed your transaction
• Always type our URL into your browser
• Make sure the URL begins with 'HTTPS and not 'HTTP
• Always be careful when accessing and managing your online banking profile and accounts
• Never share your personal or account information via email, SMS, or telephone
• Never access our online banking service via a link or attachment
• Don't reply to any unsolicited emails, even if they claim to be from us
• Don't click on any links or attachments in unsolicited emails
• Keep your PINs and passwords strong and safe
• Register for updates, so you're notified of activity on your account
Safety On your Cell Phone
Cellphone scams are becoming more common because of the increasing popularity of cellphone banking. Therefore, it is crucial to ensure that your cellphone is locked at all times and never left unattended while logged into your cellphone banking profile.
How to bank safely by cellphone
• Always access our website by typing www.gcbbank.com.gh into your web browser
• Dial *422# to access cellphone banking
• Secure your device with a strong password and PIN, pattern password, or fingerprint
• Log out of your banking profile as soon as you've completed your transaction
• Don't store any banking credentials such as ATM PIN, card number, passwords, etc., on your cellphone.
• You can contact GCB if your cellphone number changes so we can update your details
• Install a reputable and secure, up-to-date antivirus application on all your devices
• Never share your personal information or online account info via email, SMS, or telephone
• Don't reply to any unsolicited emails, even if they claim to be from GCB
• Don't click on any links or attachments in unsolicited emails
• If you lose network reception on your cellphone, immediately check what the problem could be (you could be a victim of a SIM swap scam)
• If your cellphone is lost or stolen contact our customer service on 0800 422 422 to block your profile.
How to bank safely at ATMs
• Never use an ATM that's been vandalized or shows signs of being under repair
• Use In-branch ATMs whenever you can, and choose ATMs in areas that you're familiar with
• When you get to the ATM, stand close to it, and always cover the keypad while entering your PIN
• Follow the ATM's instructions carefully, entering the required information only when prompted
• Don't let anyone distract you. If someone approaches you at an ATM, cancel the transaction and remove your card
• Don’t leave your card unattended in the card slot
• Check your card before you leave the ATM to make sure it's yours
• Accepting help from strangers puts you at risk
• Never give your PIN to anyone, including bank staff
• Keep cash withdrawals to a minimum, as well as your daily cash withdrawal limit
• Check your bank statements regularly
• Cancel your card immediately if it's stolen.
Protect yourself Online
When shopping online, you'll always receive a one-time PIN (OTP) via SMS or email to authorize your transaction.
How to shop safely online
• Only buy goods or services from online companies you recognize and trust
• Look for security symbols in the URL like an unbroken lock or key
• Make sure the URL begins with 'HTTPS and not 'HTTP
• Never pay for goods or services via email
• Keep a record of your transactions and payment confirmations
• Never share any personal or banking info with anyone, including bank staff
• Don't use public computers or internet cafés to shop online
Guard your PIN
How to guard your PIN
• Memorize your PIN – never write it down or tell anyone what it is
• Make sure nobody ever sees you entering your PIN
• If anything makes you suspicious while using an ATM, cancel the transaction and remove your card
• If you think your PIN is no longer a secret, change it at our ATMs or your nearest branch
Protecting your Personal Information
Fraudsters may try to steal your purse or wallet or your mail to access personal info, like your ID or passport number, driver's license, payslip, municipal bills, or bank statements.
They will try to use this info to assume your identity and open bank or retail accounts, loans, or insurance policies in your name.
How to prevent ID theft
• Store personal and financial documents away safely
• Destroy or shred any confidential papers before throwing them away
• Don't carry unnecessary information in your wallet or purse
• Create strong bank passwords and PINs
• Never share any personal or banking info via email, SMS, or telephone
• If your purse or wallet is lost or stolen, stop all your accounts immediately and alert the police
Keep your money safe
Use these safety tips to help you keep your money safe and be ready to act should you suspect any fraudulent activities:
1. Be suspicious if the process to conduct a transaction differs from the normal process.
2. If you think that your banking profile might have been compromised, contact GCB immediately.
3. GCB will never send you an email with a link or attachment that will redirect you to what looks like a Logon page.
4. Create complicated passwords that are not easy to decipher and change them often.
5. GCB does call customers from time to time. If you receive a call supposedly from GCB trying to assist you in preventing a 'crisis,' requesting your "keys to the safe" (personal banking details and internet banking credentials), it should immediately raise suspicion. Immediately report this to the bank.
6. Ensure that you do your internet banking on a secure site. The URL (web address) must start with HTTPS, the "s" indicates that it is a secure website
7. Read the alerts the bank sends you carefully. If you are alerted of a transaction, you did not perform or request, immediately call the Contact Centre.
Fraud alert
Take note of the following and be safe:
• GCB will never call to ask for your personal identification number (PIN) or your online banking password. Be cautious, fraudsters might use these means to harvest your credentials.
• GCB will never tell you to transfer money to another account.
• Never disclose your passwords and PINs to anybody.
• Keep your computer's antivirus software up to date.
• Do not assume a caller is genuine because he/she knows your banking details. Fraudsters could have basic information about you, such as your address, bank account number and details of recent transactions.
• Fraudsters are luring people into disclosing their bank details. These details will open the door to further exploitation of your account.
Phishing
How to recognize a phishing scam:
Fraudsters often send out emails claiming to be from GCB (or other reputable organizations) – commonly known as 'phishing' - many of which look very authentic as they use the GCB logo and corporate colors to convince you that the email is legitimate.
Often, the content of the email refers to your account being suspended, and the only way you can stop this suspension is to click on the link supplied and update your details. Although this link does not link to the actual GCB website, these websites are usually designed to look exactly like the GCB site, and it becomes difficult to differentiate between this site and the actual site.
Check the following recurring themes on Phishing emails:
• Terrible grammar
• Strange email addresses/Unknown email addresses
• A request to click on a link in an email
Never reply to a spam email - This only confirms that your email address is active and will spur the fraudsters to send you even more spam.
Delayed phishing attacks:
In some cases, fraudsters may obtain your access credentials long before any attempt is made to defraud your account. It is vital to regularly change your banking logon information such as your username and password to prevent delayed phishing attacks.
Steps to avoid being a victim of phishing attacks:
Although we have several security measures in place to protect you, your awareness is the key to avoid being a victim of phishing attacks, so bear the following in mind when you receive an email claiming to be from GCB:
• Never reply to these emails, and don't click on any links
• Never provide your details such as your PIN or account details via email or on any links within these emails. GCB already has information like your ID number, cell number and email address and will never ask for them via email.
• Never navigate to our site using a link from an email – always type in the address.
• If you receive eStatements – make sure that you are opening a legitimate statement. It could be a malicious file attachment.
• Delete spam emails immediately.
• Never open an email attachment unless you know who sent the message.
• Use the latest browsers, which come with filters that alert you when you visit a website that contains potentially unsafe files and links.
• GCB will never send you a letter or email asking you to complete your personal details by clicking on a link in an email.
Access denied
Follow these simple tips to enjoy a secured online banking experience! Avoid using shared computers when accessing GCB Internet Banking:
• Change your passwords regularly.
• Contact GCB immediately if you suspect your online banking password has been compromised.
• Avoid logging into GCB Internet Banking or using critical passwords at internet cafes, libraries, and other public sites to avoid the risk of information being copied and re-entered after you leave.
• Use a password on your computer to prevent unauthorised individuals from accessing your information.
• Disable the "AutoComplete" function of your browser.
• Always remember to log-off online banking and close your browser when you have finished.
Improve online security
It is vital that you are aware of some measures that you can take to make you more secure online, such as:
• Always keep your personal access information such as usernames and passwords secure, and change your PIN and passwords regularly.
• Never open a link or an attachment within an email claiming to be from GCB as this may link to a fraudulent website or download a virus or key logging software that will compromise your security.
• Be aware that phishing scams can also be received through instant messaging systems such as Google Talk or Skype; as well as through social media websites such as Facebook, Instagram among others. When in doubt of the authenticity of a link or a claim, simply don't click it.
• Install good quality security software and ensure that you have updated to the latest version of your browser. Most of the newer browsers have the inherent ability of detecting fraudulent websites.
• Don't bank or shop online when using a public terminal such as those found in internet cafes, hotels, coffee shops or student labs. Key logging software could be present on the computer, and will send all your personal information to the fraudster, who could then use this information to clear out your account.
• Before you bank online, ensure that you are actually within the secure internet banking website. It should begin with 'https://' (not 'http://'). Also check the browser for a closed lock and/or key icon – which should either be at the top or the bottom of the screen.
• When leaving your computer, always end the current session by closing your browser window, and never leave your computer unattended during an internet banking session.
SIM swap
A fraudster is able to perform an illegitimate SIM swap with your cellphone service provider by for example carrying a false copy of your identity document. This allows the fraudster full use of your cellphone account and to receive messages intended for you. They will also receive the confidential banking notifications and approval SMSs that the bank sends to customers. If they have already tricked you to give them your personal and account details, they can transfer money from your account without you knowing.
You should:
• Protect your personal, bank account and cell phone account information – also when you're online.
• Immediately investigate when you notice that you are not receiving calls and messages.
• Keep your phone switched on – otherwise you will not notice when your SIM card has been swapped.
Mobile Banking Security
With the convenience of mobile banking, comes the responsibility of ensuring the security of your account:
• Don't store your password or pin in clear text on your mobile device.
• Install antivirus software on your mobile device and scan your device regularly.
• Be wary that a 'jailbroken' device will weaken the security of your mobile device. The GCB App will not work on a jailbroken device.
• Enable the lock screen on your phone. A password or pin is always more secure than other lock-screen options.
• Turn off your wifi or data connections, when not in use.
• Use the latest software version.
• Be as vigilant on your smartphone or tablet as you would be on your computer.
• Don't leave your tablet or mobile device unattended while you have your banking profile open.
• Be careful when using public wifi or hotspots to do your banking.
• Always remember to log out once you have finished banking.
Keep these handy safety tips in mind when using a Banking app:
• Read through the terms of the app and make sure that you understand the risks.
• Check what permissions the app is requesting.
• Download only apps from the authentic Apple App, Google Play, Windows App or Blackberry World stores.
• If you doubt the legitimacy of the banking app, contact the bank.
• If you receive a secure code/OTP and you are not transacting, please contact our Customer Service Line on 0800 422 422.