When it comes to security, nobody knows your account better than you. That’s why you should never share your card details, internet banking login details and token with anyone over the phone, SMS or email.

Being the preferred Ghanaian Bank providing simple, secured, and differentiated banking experience to customers, CBG is continuously developing and implementing security enhancements to ensure the integrity of our Online Banking platform and other Banking channels. Our goal is to protect your online safety, the confidentiality of your account and personal data.

Learn more about protecting yourself online, as well as how to spot fraudulent e-mails and Web sites.

Security Tips to Protect Yourself

• Giving away your Internet Banking login details, card details, personal identification number (PIN), and codes from your token device, gives anyone total access to your account. CBG will never ask for any of these details via any form of communication.
• Keep your ATM cards safe and do not share your personal identification number (PIN) with anyone.
• Seeing a phone number or email address you recognize does not mean it is genuine. Always give cold-callers a cold reception
• Use your hand or body to shield your PIN when you are conducting transactions at the Automated Teller Machine (ATM) or when making Point of Sale (POS) transactions at retail stores.
• Create strong or complicated passwords that are not easy to decipher and change them often
• Check your bank account statements and card transactions regularly to make sure these only reflect transactions you have made. If you see a transaction you cannot explain, report it to the bank immediately on (+233) 302 216000 .
• Subscribe to SMS alerts to be delivered to your personal cell phone number or email, so you can stay updated on your account activity.
• Always log on to our internet banking service via our website – https://cbg.com.gh
• Watch out for clone or fake websites. Don’t fall prey to any website that looks similar to CBG’s website. Check the URL carefully.( https://cbg.com.gh )
• CBG does call customers from time to time. However, If you receive a call supposedly from CBG trying to assist you in preventing a ‘fraud’, requesting your “keys to the safe” (personal banking details and internet banking credentials) it should immediately raise suspicion. Put down the phone and immediately report this to the bank on (+233) 302216000

How To Recognize Fraud

You are the first and best layer of defense in combating online fraud. Knowing how to properly detect and avoid online scams is the ultimate protection against fraud.

The following tips below will help you spot potential scams or attempted fraud

Online fraud typically takes the form of fraudulent e-mails and Web sites. These forged means of communication often use company logos, colors and permissible disclaimers to make them appear authentic.

• • SPOOFED WEB SITES

  Spoofed Web sites, phishing e-mails, are used by fraudulent actors who build fake websites that look very similar to CBG’s website to lure unsuspecting customers into submitting their online banking log-in credentials and card details which are later used to access such accounts.

   

  Spoof Web sites allow fraudsters to collect sensitive information such as Internet Banking Account and ATM Card Details.

• • FRAUDULENT E-MAILS

  Fraudulent e-mails are the most common avenue of online scams. A "spoofed" e-mail is one that purports to be from a reputable source in an attempt to trick you into divulging personal or account information, sending payment, or otherwise taking an action that will result in fraud.

   

  These attacks are common because they  can be easily deployed on a massive scale. Even though the warning signs are there, "phishing" and scam e-mails continue to trick people. Some of these mails also request that customers update their account records by clicking on links to fake Internet banking and Interswitch websites.

   

  Consolidated Bank Ghana will never ask a customer to provide, verify or update their personal, account or financial information like Passwords, Personal Identification Numbers (PIN), or ATM PIN, Credit or Debit Card numbers via pop-up windows, email or any other communication channels.

   

  If you receive an email, phone call or SMS requesting such information, do not respond and never click on a link contained in a suspicious email. Do not attend to unsolicited emails or text messages.

   

• • PHISHING

  Phishing involves the use of fraudulent email or browser pop-up messages that appear to be from a legitimate source. Most often, they use a company name, logo and/or graphics to convince customers. A typical scam consists of:

  • Receipt of an email message stating you need to update or validate your account information.

  • The message suggests a dreadful consequence, such as your online access expiring or being suspended, if you do not respond.

  • Via a link in the message, it directs you to a Web site that looks legitimate.

  The intent is to trick you into revealing personal information, such as your account number, User ID, Password or PIN so they can commit crimes of a monetary nature or identity theft. It may also be an attempt to deliver and install malicious code (malware) that can harm your computer or steal your credentials.

   

  How to avoid falling for Phishing Scams

  • Never open any email unless you know who the sender is. The very act of opening an email can infect your computer with malware. Be skeptical of every email you get, and never click on suspicious links, or download suspicious attachments. If in doubt, call the bank.

   

  Vishing

  Vishing, also known as voice phishing, is a mode of cyber attack whereby attackers use the phone to steal personal information of customers. In a vishing attack, the fraudulent actors use different tactics to trick or persuade you to provide your personal information, typically with the goal of accessing your financial accounts.

   

  Pharming

  Pharming occurs when you enter a Web address but you are redirected, without your consent or knowledge, to a site that looks similar to a legitimate site, however it is fraudulent. The intent of the fraudulent site is to capture confidential information.

   

  Skimming

  “Skimming“ is a method by which fraudulent actors capture the magnetic stripe data from your card and use it to create a new, counterfeit card. These counterfeit cards are then used to process unauthorized transactions against your account. Below are the main methods of skimming card information:

   

  • A small device that appears to be a part of the machine is placed over the card insertion slot of an ATM,  Point-of-Sale (POS) device or other self-service kiosk. As you slide your card into the ATM, this device “reads” the data on the stripe and either stores it or transmits it to a nearby location.

   

  • There is also a small, hidden camera that captures your keystrokes as you input your PIN into the machine.