ATM Fraud

At Crédit Agricole Egypt customer security is our first priority regarding ATM. Crédit Agricole Egypt provides the following advice and guidance to help protect against fraud perpetrated by criminals.

• Review ATM Fraud.
  
  

Social Engineering Techniques and Terms

Social Engineering is simply the art of getting unsuspecting persons to reveal sensitive information about a system, personal identity and passwords.
This is usually done by impersonating someone or by convincing people to believe you have permissions to obtain such information. A typical example would be someone is phoning you and identifying him self as a trusted person from a reputable bank and discussing some secure information and details about your financial account.

Please follow below:

• Don’t tell him any personal secret information (PIN numbers or password).
• Notify call center at 19191 about any suspicious or attempts to record.
• In case of anyone calls you and claims that he is from Crédit Agricole Bank, and ask about your Telephone PIN (TPIN) or any of your personal secret words/numbers; please take his name and call him back at the branches telephone lines ONLY, published on our official webpage www.ca-egypt.com
  
  

User Security Guide

At Crédit Agricole Egypt customer security is our first priority regarding online banking. Crédit Agricole Egypt provides the following advice and guidance to help protect against fraud perpetrated by criminals over the Internet.

When you access the Internet it's important that you safeguard your personal information. All users of Crédit Agricole Egypt Online banking have a responsibility to protect themselves against Internet crime.

Online Banking Security - Top Rules:

Ensure that you maintain the following:

• Operating System Updates & Patches
• Antivirus Software
• Personal Firewalls
• Password Advice

Updates & Patches

Periodically, vulnerabilities are discovered in programs running on your PC. The publisher will then release a fix, often referred to as a patch to correct this weakness. These weaknesses are regularly exploited by virus writers and hackers to gain unauthorised access to those PC' s that have not been patched.

Microsoft users can visit: http://windowsupdate.microsoft.com which can automatically check what is required for both operating system and browser and then download it at your request.

Antivirus Software

You may already be using anti-virus software but to be effective, the software should be updated on a regular basis with the latest virus definition files. If you are unsure how to do this, you should refer to the program's Help function.

Personal Firewalls

A personal firewall is another small program that helps protect your computer and its contents from outsiders on the Internet. When installed, it stops unauthorised traffic to and from your PC.

Password Advice

Passwords are the key to your online account information. Avoid using the same password for different systems that are important to you. Doing so puts your money at risk should anyone discover this single Password and for this reason, you are strongly advised to have a strong password.

When choosing a strong password, you might consider the following:

• Be different: Avoid using the same password for different services.
• Don't be personal: Do not be tempted to use passwords that can be easily guessed, e.g. children s names, pets' names, birth dates, telephone numbers.
• Never write them down: We strongly recommend that you never write down or otherwise record your passwords. If, however, you feel that you have no alternative but to do so, you should ensure that you never write down or otherwise record your passwords in a way that can be understood by somebody else.

In any event, never disclose your Internet login details anywhere online except at your usual online banking website which should be accessed in the normal way and NEVER via a link in an email.

Online Banking Security

Online security - Steps we have taken to safeguard your account

As a bank we are used to thinking about security. At Crédit Agricole Egypt, we use industry standard security technology and practices, focusing on three key areas  privacy, technology and identification to safeguard your account from any unauthorised access.

Privacy

We use industry standard encryption within our Online Banking services

Secure Sessions

When you log in to Online Banking you are said to be in a secure session. You know you are in a secure session if the URL address begins with https:// or a padlock symbol appears in the lower right hand corner of your browser.

Encryption

Secure Sockets Layer (SSL) Encryption technology is used within your Online Banking session to encrypt your personal information before it leaves your computer to ensure no one else can read it. Depending on your browser setting, a pop-up window will appear to notify you that you will be entering a secured page.

Encryption converts your data into an encoded form before it's sent over the Internet, thereby stopping unauthorised users from reading the information. At Crédit Agricole Egypt, we use 128-bit SSL encryption, which is accepted as the industry standard.

Session Time-out

If you forget to log-off after banking online, or your computer remains inactive for a period of time during a session, then our systems automatically log you off. But it is recommended to log out after browsing your account.

Technology

We use many layers of security' obviously we cannot disclose all of them, but the following are typically used:

• All our operating systems are regularly updated with the latest security patches
• Our anti-virus software is kept regularly updated
• We use Multiple firewalls to prevent unauthorised intrusion
• Secure data centers

Identity Privacy

We use log-ins and passwords to make sure we're dealing with you

Online access to your account is only possible once you have authenticated yourself using the correct Online Banking ID and password. For this reason, it is vital that you do not share your password.

Automatic Lock-out

After a number of incorrect attempts to log in, we disable online access to your account. To re-activate your account, you should contact your usual helpdesk number.

Online Security - Your Role

In addition to our security measures, you also play an important part in safeguarding your online information. There is much that you can do to protect yourself online. For a start please follow the  Top Rules stated above and -

Please also take in consideration the detailed information below:

• Keep  you details and identity secure
• Keep  your password secure
• Keep  your computer secure
• Keep  your Online Banking session secure
• Keep  your email secure
• Protect yourself, even when you're offline

- Keeping your details and identity secure

Identity theft is the act of stealing or using an individual's personal information without their knowledge or consent, for example, to illegally make purchases, or gain access to funds. Victims may not become instantly aware of the increased debt until

• They receive statements
• They receive an unexpected notice
• They are tracked down by creditors

Identity theft can take a long period to detect and even longer to clear. Reduce your risk and protect your personal information in all your financial dealings, whether over the Internet, by following these tips:

1. Take care when you go online from public sites
   Try to avoid using Online banking, at Internet Cafes, Libraries, and other public sites to avoid the risk of information being copied and abused after you leave.
2. Get wise to online fraud
   Be aware that there are fraudulent web sites designed to trick you and collect your personal information. Sometimes links to such web sites are contained in email messages purporting to come from financial institutions. Make sure to use the official known web address, to link to bank pages. Crédit Agricole Egypt will never send you this kind of mail.
3. Change your passwords
   Always change passwords that may have been compromised. It is recommended that you change your password at regular intervals.
4. Contact your bank if you think someone else knows your Online Banking password
5. Password protect your computer
   Use a password on your computer to prevent unauthorised individuals from accessing your information.
6. Disable the 'AutoComplete' function within your browser
   This will help prevent others from seeing personal information. On Internet Explorer, for example, the AutoComplete' function remembers data you have input, sometimes including passwords.

- Keep your password secure

Passwords are the key to your online account information, to accounts at online stores and a host of other online activities. Your Crédit Agricole Egypt Online Banking password, together with your Online banking ID, permits access to your bank accounts. For this reason your password should be unique and very well protected.

1. Keep it to yourself and ne ver share it
2. Be unique, try and create unique passwords that are not easy to guess.
3. Use letters, numbers and symbols Passwords containing upper and lower case letters, numbers, and symbols are far harder to guess.
4. Never write them down if you really need to record your password then try to code it.

No one at Crédit Agricole Egypt will ever ask you for your Online Banking password. If someone does ask you for it, they do not represent Crédit Agricole Egypt.

- Keep your computer secure

The Internet offers hackers the opportunity to access your system. In fact, although the web's a great way to find the software, downloads, and music you may want, it's when you are doing this that you could be most at risk. Please make sure you are using the top rules to secure your computer.

- Keep your online banking session secure

Logging in

Ensure you enter your correct password(s) without the details being inadvertently disclosed to someone who may be looking over your shoulder.

Logging off

Always remember to log off from the Online banking session and close your browser when you have finished your online banking. This will clear all traces of your visit from the PC's memory.

1. Memorise the keys to your access
   Your Online Banking ID and password are your keys to accessing our online services. Only the right combination of these allows you access.
2. Don't use links to access our site Always enter the official web address. Do not use a link as this may take you to a fraudulent web site that may look exactly like ours.
3. Avoid using shared computers for Online Banking
   Try to avoid using shared public PCs, such as those in Internet cafes, to access Online banking.

- Keep your email secure

Generally, email is not secure or encrypted to protect the content. Therefore, any personal information you include in an email is at risk of being intercepted by unauthorised individuals. Do not send your Online Banking ID and/or passwords by email to anyone ever.

1. Never send sensitive information by email
   Don't answer any unexpected email messages requesting personal information.
   
2. Be wary of opening any unexpected email messages with attachments
   A common way for a virus to spread is via email. Never open an email attachment that contains a file ending with .exe, .pif, .vbs as these are commonly used with viruses.
   Any file that appears to have a double extension is almost certainly a virus and should be deleted.

- Protect yourself even when you're offline

Even when you are offline, there's much that you can do to protect yourself. This keeps private information strictly private.

1. Keep your details safe
   Don't be tempted to share your User IDs, passwords or any unique personal identifiers/details with someone else. Nor should you supply personal information to anyone over the phone or to a web site unless you have satisfactorily verified the identity of the recipient of such information.  Crédit Agricole Egypt would never ask for Internet passwords over the phone.
   
2. Read your statements
   Review your bank and credit card statements for any unusual transactions or withdrawals and notify the bank immediately if you  think a transaction is suspicious.

Warning About Cybercrime

Customers should be aware of the following methods which criminals use in attempts to convince you to reveal your confidential access information:

1. E-mails purporting to be from a bank which ask customers to click on a link which sends them to a fake bank website ( ghost' website);
2. E-mails asking customers to be a sales agent for goods or a service, with the promise of commissions delivered to your bank account (job scams);
3. E-mails purporting to be from a bank or another legitimate business and asking for confidential information ( phishing' e-mails);
4. Trojans/spy ware - computer programs which conceal hidden programming which infect computers and are used by criminals to record and remit your access keystrokes or to destroy people's data.

Threats & What to do

Fraudulent and spoof websites

These are authentic-looking websites created by internet fraudsters which look like other respectable websites, such as ours. They attract people to their sites through phishing emails and often ask for personal and/or confidential information

What to do

• Make sure you're connected to the official Crédit Agricole Egypt site at www.ca-egypt.com before keying in any confidential data
• Do not access your Online Banking account directly through hyperlinks embedded in e-mails
• Type www.ca-egypt.com directly on the browser address bar or access via a bookmark
• Check for the locked padlock symbol at the bottom right hand corner of your screen
• Ensure the secure browser session is established with Crédit Agricole Egypt by verifying the information, such as the issuer and the date on the server certificate 
• Change your Online Banking password REGULARLY

Phishing

This is when fraudsters send SPOOF emails at random. The emails appear to come from a legitimate source such as Crédit Agricole Egypt and you may be asked to confirm sensitive information such as your account number, password and PIN number

What to do

• NOTHING, unless you are absolutely sure of the validity of the sender and the legitimacy of their request
• Be aware that Crédit Agricole Egypt will NEVER ask customers for such confidential banking data in their emails
• Do not respond to any emails that request such information or click on an embedded hyperlink
• Update your anti-virus software and also change your Online Banking password REGULARLY to protect your personal data

Trojan Horse

A type of computer virus that is a computer program masquerading as another program, it appears innocent, but your files could be damaged or erased if you open the program

What to do

• Install anti-virus software, personal firewall and security patches
• Always run an anti-virus software program before you download other programs or open emails
• Update your anti-virus software and also change your Online Banking password REGULARLY to protect your personal data
  

Please be aware that Crédit Agricole Egypt will never ask a customer for their card PIN or any other personal security information. If you receive such a call try to establish who is calling and the number they are calling from, but do NOT provide any information and report it to the Bank immediately.