Tips for secure e-banking
E-banking and online banking involve very sensitive data. You can protect yourself from fraudsters with the following tips.
1. Enter the login page link directly in the browser
Follow these five steps to ensure that you always use your e-banking in a secure way.
- Always enter the internet address to the VZ Financial Portal «vzch.com/login» directly in the address bar of your browser. Never use a link that was sent to you by e-mail or by text message. Never search for the login page using Google, Bing or another search engine.
- Enter your contract number and the password and then click on «Log in».
- A number, the so-called session ID, is displayed on your screen.
- Compare the number displayed on your computer screen (session ID) with the number displayed on your mobile phone. Only confirm the connection if the two numbers are identical.
- After authenticating yourself on your mobile phone using the device PIN, fingerprint or facial recognition, you will be automatically logged into the VZ Financial Portal.
2. Checking the internet address (login page)
If you are unsure whether you are on the correct login page, verify that there is a secure connection (lock icon, correct spelling of VZ VermögensZentrum and correct internet address). The correct internet address is displayed either next to the lock icon or after you click on the lock icon. Ensure that the internet address of the login page is spelled correctly. Attention: Fraudsters often only change single letters in the address.
3. Choose a secure password
The password constitutes a big security factor in online banking. For instance, many people use passwords containing the names of family members and combine them with birthday dates. Such passwords may be easy to remember. However, they are also relatively easy to "crack" by using specialised software.
It is recommended to consider all dimensions when choosing a password: the number of characters, the use of upper- and lower-case letters, as well as numbers and special characters. What is needed here is creativity.
For more complex passwords, mnemonics can be a help. Omitting the first characters of the sentence "Globi should become 1 of 7 Federal Councillors, right?" results in the following password: "Gsb1o7FC,r?".
Most importantly: The password should not be saved in the browser. It should also be changed regularly, for example every two months.
Find out every week about the latest developments in the financial markets:
4. Caution with system interruptions and unusual messages
Immediately stop the login process and the connection if there is a system interruption (e.g. a sudden white screen) or unusual error messages (e.g. "System overload. Please be patient and try again later.") occur. If such a message is displayed, please inform our help desk immediately at 058 411 88 88.
5. Stay vigilant
How to protect yourself when you are on the move
Enter your login information (contract number and password) covertly and make sure that you are not overlooked by anyone - particularly, if you log in while on the move. In general, VZ recommends that the VZ Financial Portal is only used from known and secure devices. Publicly accessible internet devices, for instance in hotels, are not suitable.
Unsolicited contact (spam): Be careful
If you receive unexpected e-mails, phone calls or text messages that appear to be sent by VZ, please be careful. Such contact is often made by fraudsters who try to access your data that way. Never enter confidential information if the sender, the person calling or the reason for the request are unknown. If you think that you have received a questionable message from VZ, contact your advisor or our help desk as soon as possible: 058 411 88 88.
Suspicious e-mails or text messages: Do not click on any links or open any attachments
They deliberately provoke curiosity, fear or pressure the recipient to act. In doing so, they intend to make you click on a specific link or an attached document. Such messages are referred to as phishing e-mails or smishing messages. Unfortunately, differentiating serious from fraudulent messages is not always an easy task. Thus, pay attention to these points:
- Is the sender address atypical?
- Can you detect any spelling mistakes?
- Is the tone of the message off?
- How is the exclusion of liability (disclaimer) phrased?
- Do you see the official logo?
If you are in doubt, do not click on the link or attachment. Delete suspicious messages and empty the trash of the respective computer programme. Suspicious sender addresses can subsequently be blocked with a spam filter.
Always verify unexpected requests for payment that are sent to you by e-mail or text message
Did you receive the bank details for a payment by e-mail or text message? Always inquire with the invoicing party. When doing so, use the official phone number and not the one indicated in the message.
Keep track of things
Furthermore, it is recommended to view your account daily. This helps to immediately recognise a fraudulent transaction and to report it by phone to your bank. The faster you inform your bank about the fraudulent transaction, the higher the chance that you get your money back.
A preventive measure against a hacking attack is to define upper limits for transactions, for example a daily and a weekly limit. With this measure, you can at least limit the financial damage. Up-to-date antivirus software is also indispensable for countering hacker attacks in advance.
6. Empty the cache of your browser
- Edge: Click on the icon with the three dots in the top right-hand corner of the browser window. Select "Settings". Click on "Privacy, search, and services". Under "Clear browsing data", select "Choose what to clear". Select the "Cookies and data stored" and "Cached data and files" check boxes and click on "Clear now".
- Firefox: Press the three keys "Shift", "Control" and "Delete" at once and select "Last hour". Click on the arrow to display the details and select all entries. Then click on "Clear now".
- Google Chrome: Click on the icon with the three dots in the top right-hand corner of the browser window, select "More tools", then click on "Clear browsing data". Alternatively, you can press the three keys "Shift", "Control" and "Delete" at once. Select "Last hour" at the top, select "Cookies and other site data" as well as "Cached images and files" and click on "Clear data".
- Safari: Click "Safari" in the top left-hand corner of the browser window. Select "Clear history…". Define the time period for which you would like to delete the history and click on "Clear history".
- Safari for iPhone, iPad or iPod touch: "Settings" > "Safari" and tap "Clear history and website data".
- Chrome app for Android: Open the Chrome app on your android smartphone or tablet. Tap the "More" icon in the top right-hand corner. Tap the boxes next to "Cookies and site data" and "Cached images and files". Select "Clear data".
7. Always update computer software to the latest version
Remember to update your antivirus programme on a regular basis. Spam filters and anti-phishing software are also a helpful tool for detecting phishing websites and e-mails. Again: Only download such software from official app stores, as there is little chance that you download malicious software.
Find further helpful information about "E-banking, but secure" at https://www.ebas.ch/en/5-steps-for-your-digital-security
More important details about phishing can be found here: https://www.ebas.ch/en/phishing