Your Responsibilities

Your password is your key to internet banking. If it is obtained by others, your accounts, too, will be obtained by others. Click here to see how you can safeguard your password.

Online attacks can become activated because of the bugs contained in your software. Software companies publish updates or “patches” to take care of such bugs. Keep yourself secure with regular updates against attacks intended to have unauthorized access to your personal computer by taking advantage of bugs in software.

There are tens of thousands of viruses traveling over the Internet. Not only can they turn your computer into an unusable device, they may also steal your personal information. Use Anti-Virus software to protect yourself.

A Firewall serves a function similar to that of the door to your home: It keeps you secure against attacks through the Internet. Use a Firewall to protect your computer from unwanted attacks and unauthorized access.

E-mail correspondence over the Internet is not absolutely secure. For suggestions on how you can correspond securely, click here.

Along with the increase in Internet usage, online fraud cases including a variety of fraud methods are becoming more and more frequent. To see a list of online fraud methods, click here.

• Password Safeguarding
  
  
  • To Enter Internet Banking, only use the Log in button at www.finansbank.com.tr.
  • Use the Single-Use High Security SMS Password Finansbank Internet Banking provides for your security. Created only for once and sent to your cell phone via SMS, the High Security Password will mean added security to the customer ID and password you use when entering the system. Furthermore, you can also use the Single-Use High Security SMS Password in transfers, which means your transfers will only be made upon your confirmation.
  • Use the Virtual Keyboard to protect your password from keyloggers.
  • Do not tell your password to anyone. Your password is your security. It is the key to your account.
  • Avoid personal passwords, stay away from easy-guess passwords such as your date of birth or age.
  • Change your password at regular intervals. Regular password changes will enhance your security.
  • Do not write down your password anywhere within normal view of others in your workplace, business office or other shared workspaces or on your computer or browser.
  • Ensure no one sees your password while you’re entering it on the screen.
  • When you complete your transactions at Internet Banking, use the Logoff button to leave the webpage, not the browser’s close button (x).
  • Check your account activity, call 444 0 900 in unusual cases.
  • Check the Last Access Date and Last 5 Transactions sections at the Internet branch home page. Call 444 0 900 in unusual cases.


• Computer Security
  
  
  • Update your computer regularly with security fixes to take care of any security bugs.
  • Visit windowsupdate.microsoft.com for Windows media.
  • Use licensed software, avoid downloading free software and do not use pirated software.
  • Do not enter internet banking through public computers, internet cafes or computers shared with others. There’s a chance malicious software has been installed on the computers you may use.
  • Only use those computers whose security you have ensured.
  • Only use software obtained from reliable sources.
  • Perform a virus scan before inserting your floppy disks.


• Anti-Virus Security
  
  
  • Use Licensed Anti-Virus Software.
  • Anti-virus software can only scan for existing viruses; therefore, newly emerging viruses might not be recognized. Thus, update your licensed anti-virus software regularly with new patches and new versions.
  • Scan your floppy, CD-ROM, USB drives and your emails for viruses.
  • For more information, review Symantec-Norton, McAfee, Sophos products.


• Firewall Security
  
  
  • You can use a Firewall to preempt potential attacks from unwanted connections and access means to your computer by pre-defining them before they hit your computer. Use Firewall solutions for your personal computer or corporate connection.
  • Use your modem’s firewall feature if it has one, or you may want to prefer a software solution (such as Symantec, Blackice).
  • Use your Firewall’s Network Address Translation (NAT) feature if is equipped with one.


• E-Mail Security Security
  
  
  • Do not set your e-mail passwords as your Internet Banking password.
  • Do not click links embedded in e-mail messages. Do not enter any information requested on pages accessed through such links. E-mails from our bank will provide links only to those pages, which will provide information, not to those requesting information from you.
  • If you come across an e-mail pretending to arrive from Finansbank but which you suspect might have fraudulent intent, call Finansbank Telephone Banking at 444 0 900 on a 7/24 basis and let us know. Never reveal your identity information (Identity Card, Internet Banking account, Credit Card, etc.) to any e-mail requesting such information. Finansbank will never ask its customers to provide or update information over e-mail. If you receive an e-mail requesting your information, notify the case to Finansbank Telephone Banking at 444 0 900 without opening that e-mail.
  • Do not open or download messages from unknown users. Delete them.
  • Do not start a file attached to an e-mail in order to run an application.
  • Scan e-mail attachments for viruses before downloading them.

Phishing is among the most common and dangerous Internet crimes. Phishing attacks seek to steal personal or corporate information used to perform financial transactions.

Person(s) engaged in phishing fraud writes a fake e-mail intended to look as if it was coming from a bank, a card company or a financial institution. It is then sent to all available e-mail addresses. The e-mail will include expressions requiring customers to update their information or change passwords and links to web pages that appear to be the exact imitations of relevant institutions. Unaware of the threat involved, some customers respond to such e-mails and enter the required info. This results in the theft of a customer’s personal information and passwords by defrauders.

What kind of information is stolen in online fraud through phishing?

• Credit, debit/atm card numbers/CVV2
• Passwords and keywords
• Account numbers
• User IDs and passwords used when entering Internet Banking

In this method, an e-mail is sent with a promise to provide a generous award to the e-mail’s recipient provided the recipient agrees to assist with the transfer of incredibly high amounts of funds, generally in US dollars. The e-mail is not of a begging/pleading nature. The funds in question may be alleged to be profits of a company/accumulated bribes/unspent government funds or unclaimed funds of a dead person.

The defrauders are after the bank information. The transfer transactions generally require the recipient to extend a payment in the form of a fee/tax/bribe –the so-called Advance Payment. Such payments are lost.

A recent scam involves the direction of the recipient to a fake bank website for viewing a certain account with millions of dollars in balance. The aim is to convince the recipient that the funds are there, waiting to be transferred. No such funds exist in reality.

Another widespread method involves the utilization of a recipient’s bank information for other fraudulent activities.

A letter or an e-mail is sent to notify a recipient of winning a lottery award. The recipient is required to respond to the e-mail to receive the award. Afterwards, the recipient’s bank information is requested for wiring the award to the recipient. A transaction fee may also be demanded. Once paid, such amount is just lost. In addition, any bank information provided will most likely be used in other fraudulent activities.

Virus hoax e-mails are mostly fake messages intended to create worry or confusion.

Viruses known as Trojans are utilized to remotely control a user’s computer. Most commonly, a Trojan is composed of two modules. The first one allows malicious users to remotely access a customer’s computer and control it. The second one creates an open door, which will function as a connection between the hacker and customer’s computers.

Trojan-type programs will not be installed on a user’s computer unless the user permits their installation. Files with .ini or .exe extensions traveling through the Internet might be including some tiny Trojan software.

In essence, a key logger may be defined as a small-scale program that regularly transfers data from a computer to another party over the internet without the permission of an authentic user. Persons with malicious intent may use a common key logger program or create one themselves and then send them to remote computers in various ways. When the key logger self-installs on the remote computer, it activates itself secretly and sends the information logs to the hacker at programmed intervals. Generally, a key logger will write all keyboard activity on its interim memory and then transfer its log. Screen logger operates on the same basic logic as key logger. However, the data a screen logger may transfer is not limited to keyboard activity. Screen loggers transfer screenshots as well. Once a given point on the screen is clicked with the mouse, it is as if the screen logger will take a complete or partial (commonly, a rectangular portion whose center would be the cursor) shot of the screen simultaneously. The shots are then transferred to a fixed location over the internet. Malicious users seek to obtain customers’ personal information by using such programs as trojans, key loggers and screen loggers.