Here are some safety tips to protect your card from unauthorized use.




It’s a good thing that you know these but make sure you don’t become a victim.
Here are SMART cyber hygiene practices to help you protect your personal and bank information and your funds.

Protect yourself from scammers by observing these cyber hygiene practices.

Never disclose your personal info, passwords and card details to suspicious and unverified emails, phone calls or text messages.

To protect your online account against hackers, remember these tips when creating your password.

They are vishing scammers who trick you in sharing your sensitive information.




These are deceptive text messages sent by fraudsters to steal your personal or financial information. The messages may look like they’re from a bank, credit card company, social networking site, online payment, website app or online store. Protect your identity and savings.
Here are some steps you can take to keep those “smishers” at bay.






Criminals pretend to represent a company and trick victims to reveal their sensitive or personal information.
Protect your hard-earned savings by learning how to distinguish a legitimate phone call from a vishing call.
Here are some tips to protect yourself against vishing.





Jailbreaking is modifying your device to remove restrictions imposed by the manufacturer or operator.
This is usually done to install unauthorized apps, delete pre-installed apps, customize the control center.
However, the risks are much greater than the benefits.
Here are a few potential security risks that you should keep in mind.





Shelter your sensitive information from the greedy hands of online criminals. Follow these safety tips to avoid becoming one of their victims.










Enroll now to manage your accounts more conveniently! Visit ucpb.com/connect to learn more.
Protect yourself against fraud by keeping a step ahead of shady characters who deceive people through clever schemes online.
If you notice any suspicious activity in your UCPB account, report it immediately to (02) 8811-9111 or crc@ucpb.com.

Stay on guard and avoid becoming drawn into a scam.
Watch out for these red flags when someone offers you a “business opportunity” that’s just too good to be true.

Be cautious when visiting a website new to you. Check if the address bar contains a padlock icon and starts with “https” as proof that it’s legit.
Use your UCPB Visa Debit Card only in safe and reputable websites for your online purchases.

Avoid using public Wi-Fi connections when you need to log in to your online banking account.
These unknown Wi-Fi sources may be coming from hackers who can then access your browser history, username and password and steal your funds.

The link will send you to a fake landing page that looks very similar to your bank’s online platform.
Don’t proceed. This is a smishing scam. Entering your username and password is the scammer’s key to get into your online banking account and steal your funds.

These are smishing scams disguised as text messages. They attempt to get your personal info, passwords and card details to be able to steal your funds.
When you receive a smishing text message, report it to your bank immediately.

Don’t ever share your personal and bank info. These messages are scams trying to obtain your online credentials for fraudulent activities such as stealing your funds.
Always verify and rely on official/legit sources of information. Remember, vigilance will protect you.

If you see one on your inbox, don’t click the links; delete the email immediately.
These are phishing scams that can get your personal/bank information on your phone or computer and steal your funds.

Never download them from unknown sources or use unlicensed apps. Beware of malware apps that may get into your phone’s confidential info to steal your funds.
Download apps only from reliable sources like Google Play and Apple stores.


Don’t use your password to log into any questionable sites. As much as possible, don’t enter your card information using a public wifi.
If you notice any suspicious transaction on your account, report it immediately to our ATM Hotline at (02) 8811-9292 or to your maintaining branch.

If you notice any transaction on your account that is unfamiliar or suspicious, report it immediately to (02) 8811-9292 or crc@ucpb.com.

While saving it might be convenient, it might be easier for the bad guys to use the information to access your account.
Take precautions and never save these important details online. As they say, prevention is better than a cure.

Banks and other reputable companies will never ask for your personal information over the phone.
If you have any doubts about the caller, hang up and inform your bank immediately.

This will prevent hackers from stealing your personal and account information.

In case you receive a suspicious e-mail, do not click on any links and delete it immediately.

To avoid identity theft and financial fraud, shred or cut old and unused checks or any document that contain sensitive data.

Always use official mobile banking apps, especially for online banking. These apps are tested thoroughly to ensure your data is secure and safe.
Never use a suspicious bank application because its creators might steal your private information.

Be cautious when you encounter suspicious emails as these may be phishing scams attempting to steal your information.
Here are some reminders to help protect yourself and your funds from fraudsters.
Stay safe and vigilant!

» Protection against Phishing and other online scams
Your first line of defense against phishing is to be vigilant. Protect yourself by keeping the following in mind:
- Emails with links to fraudulent websites
- Ignore phishing messages. Do not be coerced into following their instructions simply because they have threatened you that something will happen to your account. (i.e. your account will be permanently blocked) if you don’t respond.
-
- No legitimate business, such as UCPB, will ask for your important personal and financial information like your user name and password via email.
- Be on the lookout for spelling and grammatical errors in your email messages to determine if it’s a hoax or a legitimate one. UCPB for instance may be spelled as UCBP which at first glance may seem to be the right spelling or letter O is replaced by the number 0 to fool the recipient.
- Beware of clicking on links contained in email messages as this may lead you to fraudulent websites that plan to get pertinent data from you. If you want to access the official site, type the website in your browser’s address bar or add it to your bookmarks instead.
- Fraudulent Websites
- Access the official UCPB website by typing www.ucpb.com on your browser’s address bar and look for the links to UCPB Connect, CM.Biz or the appropriate facility.
-
- The legitimate login page for UCPB Connect will only ask for the User Name and Password, and never ask for email addresses and passwords, or ATM Card Numbers and ATM PINs.
- General care for your bank accounts
- Update your login password regularly. Do not use passwords that can be easily attributed to you such as your name or birthday.
- Regularly monitor your bank accounts and credit cards.
For any phishing-related concerns or problems on the use of our UCPB’s Internet Banking Facilities, you may call our Customer Relations Center hotline at telephone numbers 8811-9111 or 1-800-1-888-9777 or send a message via email at crc@ucpb.com.
Phishing and spoofing tricks you into providing sensitive information such as your account information and passwords through legitimate-looking emails or website, with the goal of illegally gaining access to your accounts.
Don’t take the bait. Bangko Sentral ng Pilipinas outlines ways to spot and avoid phishing and spoofing.
If you think you received a suspicious email supposedly from UCPB, immediately forward it to our Customer Relations Center at crc@ucpb.com.
The Philippines is setting up a unified credit bureau that will gather credit information of individuals so that lenders can have a better appreciation of one’s credit history. This helps banks to determine whether a person can be eligible for credit lines such as loans or credit card.
Here are some tips to keep your credit score solid:





Please be advised that there is a growing number of reported phishing incidents online. Unscrupulous entities will send a message to your email asking for your vital personal and financial data such as your user name password or bank account as if it were from a legitimate source for the purpose of committing fraud. They may also ask you to click on a link or download an attachment to update your pertinent information there.
Your first line of defense against phishing is to be vigilant. Protect yourself by keeping the following in mind:
- No legitimate business, such as UCPB, will ask for your important personal and financial information like your user name and password via email.
- Ignore phishing messages. Do not be coerced into following their instructions simple because they have threatened you that something will happen to your account. (i.e. your account will be permanently blocked) if you don’t respond.
- Report the phishing incident to the company they are fraudulently using so that they can enforce appropriate security measures.
- Be on the lookout for spelling and grammatical errors in your email messages to determine if it’s a hoax or a legitimate one. UCPB for instance may be spelled as UCBP which at first glance may seem the right spelling or letter O is replaced by the number 0 to fool the recipient.
- Beware of clicking on links contained in email messages as this may just be one of the ploys to get pertinent data from you. If you want to access the official site, type the website in your browser’s address bar or add it to your bookmarks instead. When logging on to UCPB’s internet banking facilities, the default URL address www.ucpb.com or http://www.ucpb.biz should appear in the address bar.
- Exercise caution when opening attachments or downloading files. These may contain viruses or software that may pose security threats to your computer.
- Update your user password regularly (regularly change password). Do not use passwords that can be easily attributed to you such as your name or birthday.
- Regularly monitor your bank accounts and credit cards.
For any phishing-related concerns or problems on the use of our UCPB’s Internet Banking Facilities, you may call our Customer Relations Center hotline at telephone numbers 8811-9111 or 1-800-1-888-7777 or send a message via email at crc@ucpb.com

ATM Safety Series

UCPB web applications are not affected from the Heartbleed bug, but we would like to inform our our clients to take precautionary measures in dealing with the Heartbleed vulnerability. What is a Heartbleed bug? Heartbleed is a security vulnerability in OpenSSL software that lets a hacker access the memory of data servers. According to Netcraft, an Internet research firm, 500,000 Web sites could be affected. That means a user’s sensitive personal data — including usernames, passwords, and credit card information — is potentially at risk of being intercepted.
The vulnerability also means an attacker could steal a server’s digital keys that are used to encrypt communications and get access to a company’s secret internal documents. Source: http://www.cnet.com/news/heartbleed-bug-what-you-need-to-know-faq/ Heartbleed Vulnerability The vulnerability is serious because OpenSSL is said to be used by more than 60 percent of https websites worldwide. The bug allows an attacker to get the private keys* used by the site to encrypt traffic. With that key, someone could run a fake version of a Web site and use it to steal all other kinds of information, like credit card numbers or private messages. Basically, it may also leak out user names, passwords and other sensitive information that’s usually encrypted. Websites Known To Have Been Affected by Heartbleed: Top websites such as Yahoo, Facebook, Instagram, Flickr and Google were reported to have been affected.
Please click here for a list of websites that have been affected: http://mashable.com/2014/04/09/heartbleed-bug-websites-affected/ What should I do? Contact or visit your online https sites and services to get their official statement on whether they are affected or not by the compromise.
Change your passwords. As always, make use of strong, complex passwords — preferably a combination of Upper- and Lower- case letters, numbers and special characters if allowed.
Do NOT open any email attachments or follow links allegedly coming from your online services provider (e.g. banks) requesting you to change your user name and password to address or prevent the Heartbleed vulnerability. Always go to your bank’s website directly to prevent phishing. Learn more about phishing here (link to UCPB phishing article)