Let's take care of your online safety together!

How can you protect yourself against fraud?

How can you recognise fraudulent behaviour?
For more useful information, visit the KiberPajzs website.

Be aware of the potential dangers!

Phishing

Be wary of phishing requests!

Internet scams

Be careful where you enter your personal details when shopping online!

Psychological manipulation

Be careful when someone asks you for money in the online world!

Phishing

The phisher usually attacks with a seemingly official email, text message or phone call to direct you to a website similar to your previously visited ones and asking for your personal and banking details.

Never click on a suspicious link from an unknown source and only give your data on websites you know well, and which address you have entered in your browser. You can check if you are on an official website by looking at the address of the website, which should contain the official name of the company and should end with '.hu', for example (https://www.cib.hu).

Internet scams

Pay close attention, when shopping online! Online shopping is quick, easy, and convenient but it’s important to shop only on secure websites and use your credit card responsibly.

Psychological manipulation

In case of psychological manipulation, or social engineering, the scammer uses emotions to get money out from you.

Fraudsters may contact you via social media, email, or phone to ask for financial support for a noble case, and then convince you to enter your banking username and password to fasten the transaction - after which they can easily access your money.

Latest fraud methods

The fraud attempts will continue in 2024! Can you spot the tell-tale signs? Here are the most common fraud attempts this year:

"Bank" call:

Fraudsters call with a fake number (e.g. referring to a suspicious online transaction) in the "name of the bank". Your display may show the "real" phone number or name of the bank (whether your own or another financial institution), because fraudsters can even change the caller ID!

It is IMPORTANT to know that other financial institutions (if you do not have a bank account there) CANNOT know your phone number and that the customer services of different banks CANNOT be connected!
Do NOT give out your bank details or install any other application on your devices (e.g. AnyDesk, RustDesk, TeamViewer)!

Online giveaway:

This type of scam is most common in social media messages or phone calls. Scammers contact you by claiming that you have “won”, but need your bank details or a specific code to send you via SMS to finalise the prize. It can be deceptive that scammers often copy profiles of influencers or sites with larger followings.

It is IMPORTANT to know that you do NOT need to download, approve or enter an approval code to make a transfer!

Fake online sales:

there are many different types of online shops nowadays, so it is important to always check the website where you are buying or selling: especially the company name, the location of the company, the "about us" section, the legal information and the terms and conditions. Be suspicious if these are missing or worded in a way that is not in English, if the customer service is not properly indicated or if there is only a form to contact the store, and if there is no option for multiple payment methods (e.g. cash on delivery).

They are also copying existing websites! Always check the web address, the amount and the name of the beneficiary company in the payment authorization!
If you are selling, the most important thing is that the buyer does not need any personal or other identification other than the account number!

"High-yield" savings:

fraudsters exploit the fact that everyone wants to find the investment that will give them the highest returns. This is why they often pose as investment advisors or salesmen.

Be suspicious if you are offered an investment that promises "temptingly high returns", "high short-term returns" , often with the name of a well-known person.
DO NOT install a third-party application on your devices and DO NOT transfer a registration fee!

Another form of phishing is to have your bank card digitised (tokenised) in Apple Pay or Google Pay on your behalf to access the money in your bank account associated with your bank card. In addition to your bank card details (card number, expiry date and CVV code), a critical element of the digitisation process is the activation code sent by the bank to the phone number you have provided to the requesting bank in the form of an SMS. This message will specifically indicate whether the code is being sent to initiate the Apple Pay or Google Pay registration process. If this code is given to an unauthorised person, the registration can be successfully closed, so it is very important that if:

You did not request to have your bank card digitised (Apple Pay/Google Pay) and therefore did not ask for an activation code to digitise your bank card, but you received one on your phone via SMS, do not give it out verbally or in writing on any platform, as this could give fraudsters access to your money.
In addition, if you receive an SMS with an activation code that you did not request, you should immediately call our 24-hour CIB24 call centre (+36 1) 4 242 242) and cancel your card (button 9 in the menu), as the fraudsters may already have access to your card details. It is also advisable to check what websites you have visited and where you may have entered your details.

If you receive a suspicious e-mail or message sent on behalf of CIB Bank, please contact us on (+36 1) 4 242 242 (button 9 in the menu) or by e-mail at cib@cib.hu.

In the event that your bank details are disclosed to unauthorised persons, please take immediate action as follows:

If your bank card details or online channel identifiers have been compromised, you should immediately block your bank card and online channels by calling our round-the-clock CIB24 Customer Service at (+36 1) 4 242 242 - (key 9 in the menu).
In case of unauthorized access to your Telephone Identification Code, please immediately request its blocking via our CIB24 call centre: (+36 1) 4 242 242 242 - (button 9 in the menu)!
If you notice any transactions not initiated by you, please call our CIB24 call centre on (+36 1) 4 242 242 242 (button 9 in the menu)!
Report it to the police!

Complaints regarding interbank and intra-bank ad hoc transfer orders

You can make a complaint through the following channels:

CIB24 Call Centre (+36 1) 4 242 242,
at any bank branch by filling the relevant form

From the bank branches / CIB24 call centre, the central area responsible for the recall will receive the form filled in with the relevant data, on the basis of which the recall will be initiated for the given transaction, the success of the process being at the discretion of the beneficiary. If the deadline for response has expired (30 banking days for GIRO transfers, 15 banking days for SEPA transfers) and the beneficiary's bank has not replied or the funds have not been returned, our customers with an electronic channel will be informed by push message or, in the absence of an electronic channel, by postal letter of the failure of the recall.

Section I. of the form contains the details of the transaction to be recalled and must be completed for each recall.

In the case of phishing, i.e. if you are requesting a recall of a transfer order that you have not authorised/recognised, you must also complete section II. and include a complaint.

In the case of phishing, we also recommend that you report the fraud immediately to the police, as your report will give the police authority the right to investigate and thus have the opportunity to detect the fraudsters and take any necessary measures. Our Bank will cooperate with the police if requested to do so and will provide them with all the information necessary for a successful investigation.

Further information is available on the following page (in Hungarian)

Complaints

If you notice a block or a debit on your account due to unauthorised card use, you have the possibility to make a claim.

In all cases, you can lodge a complaint with the bank that issued the card.

It is possible to submit a claim for both blocked and debited items, but please note that, according to international card-issuing rules, debits following a successful authorisation request must be accepted by the issuing bank and cannot be prevented.

Furthermore, we would like to inform you that issuing banks can only claim for transactions that have already been debited.

We therefore ask you to block or debit your card immediately whenever you detect a block or debit resulting from unauthorised card use. You can make a complaint through the following channels:

Our CIB24 call centre (+36 1) 4 242 242,
at any bank branch
by completing and signing the Bank Card Complaint Form below and sending it to kartyacb@cib.hu or cib@cib.hu. Please attach all documents related to the complaint to your letter at the same time as you send the form.

The time limit for the investigation of the claim is 15 working days, according to the MNB Regulation 46/2018 (17.12.2018), however, in cases where our Bank has the possibility to contact the acquiring bank for the financial settlement of the disputed transactions, our Bank is not able to complete the investigation within the above mentioned time limit due to the time limits imposed by the card company rules, i.e. compliance with external rules. In these cases, the maximum investigation period is 120 days.

Further information is available on the following page:

Using your bank card, useful information

If the trouble has already happened!

Important information

If you receive an e-mail or message with suspicious content sent on behalf of CIB Bank, please contact us on (+36 1) 4 242 242 (button 9 in the menu) or by e-mail at cib@cib.hu.

CIB Bank regularly contacts its customers by e-mail and telephone, but we never ask them to do the following:

PIN code, Telephone Identification Code, user ID, login password, password generated by withkey token, codes sent by SMS, bank account details (account number, limit, balance, etc.) and bank card details. These data can only be requested directly from you via our online interfaces (e.g. internet banking, mobile application) or via the automated menu system of our CIB24 telephone customer service!
Re-authentication/authorisation for updating certain settings or functions: in this case, we will also communicate with you directly via our online interfaces (e.g. internet banking, mobile application).
Installation of remote access software on the device used for online banking (fraudsters typically request the installation of AnyDesk).

Please consider!

DO NOT give your bank details, instead call CIB24 customer service.

DO NOT act quickly, do not give in to "pressure".

DO NOT install a foreign application (e.g. AnyDesk, RustDesk, TeamViewer) on your computer or smart device.

DO NOT give your payment details for online payments and transfers byphone, e-mail or SMS: bank account details, user ID for internet or mobile banking access, login and approval PIN.

DO NOT start an online payment or transfer and DO NOT start downloading programs by clicking on a link you receive by SMS or e-mail.

Please be aware that other financial institutions CANNOT know your phone number (if you do not have a bank account there) and that the customer services of different banks CANNOT be connected!

In case of a suspicious transaction, our bank may contact you via the official CIB24 Call Centre in an identified call and will never ask you to initiate a transaction or to enter a code.

Always read carefully if you receive a notification from our Bank via SMS (e.g. Google Pay/Apple Pay card authorisation) or in your mobile app. If you don't know why you received it, you should always call CIB24 Customer Service.

Always enter CIB Bank Online from the official CIB website or manually enter https://online.cib.hu in the address bar of your browser. Never call up the site from a Google search.

Always access CIB Business Online from the official CIB website or manually enter https://businessonline.cib.hu in the address bar of your browser. Never access the site from a Google search.

PROTECT your data, use the secure virtual card available in the CIB Bank Mobile App* for your online purchases.

Save your physical bank card details only on the website of a trusted merchant that you use regularly and primarily initiate recurring transactions (e.g. subscriptions, utility bill payments).

IF you see anything suspicious, immediately set all limits to HUF 0 in your mobile app.

If the trouble has already happened!

If the data required for access/transaction approval has been compromised, please take immediate action:

CIB Bank Mobile App, CIB Bank Online and CIB Business Online:

Disable your password generator:
- Disable #withKEY (CIB Bank Mobile App) / Disable ViCA
- Disable CIB Hard token tool

For CIB Bank Mobile App and CIB Business Online / ViCA application:

If unknown software (e.g. AnyDesk) has been installed on your mobile phone, re-register your access!
If you have been informed by the police, and if this has already been approved by the authorities, reset your phone to factory settings.

In all cases, please use the latest version of the application, which is always available in the application stores. Please do not install an application from a foreign source!

Manage your cards easily and reliably!

Set a daily purchase and cash withdrawal limit for your card that matches your shopping habits, while being safe and convenient!

Set a daily purchase and cash withdrawal limit for your card that fits your shopping habits, while being safe and convenient.

You can find card-related functions by clicking on "Cards" in the main menu. Activation can be initiated in the mobile app on the cards to be activated by pressing a green "Activate" button.

Some tips on how to avoid abuses:

Make sure the website you choose is a real provider; search for it on other websites, social media, read reviews. Try the site's customer service, check the cost of shipping goods, the complaint options and the conditions for returning goods.
Check the provider's credibility thoroughly before you authorise regular charges to your credit card or save your card details on any site. Save your physical bank card details only on the website of a trusted merchant that you use regularly and primarily initiate recurring transactions (e.g. subscriptions, utility bill payments).
Install anti-virus software on your device, change your password if the system suggests it.
Do not save your passwords when sites offer this option.
If you receive an e-mail with a link to an external site, do not enter your card details on the page where the link is located.
Use a virtual payment card! This feature allows you to create a new virtual payment card for your online purchases, with a limited validity period and a separate frame for one or more uses. This will reduce the risk of online fraud with your card and ensure that your entire account will not be affected by a potential fraud.
Back up regularly!
Encrypt the data stored on your device.
Set an automatic lock on the device screen.
Use a PIN code with at least 5 digits to unlock the screen lock.
Install virus protection.
Be sure to regularly update the security of your multifunction devices and keep them up to date!

We inform our customers that in case of misuse of a cash substitute payment instrument (e.g. debit card, netbank, mobile app), we will investigate the issue of liability.

Our institution will not be liable for compensation if, as a result of the investigation, it can be established that the customer has contributed to the damage by his or her grossly negligent behaviour. The final decision on the existence of gross negligence may be taken by the court.

Frequently asked questions

I received a strange email or phone call from CIB, what should I do?

If you receive an e-mail or phone call that you think is suspected of being phishing, please contact our round-the-clock CIB24 call centre on (+36 1) 4 242 242 (button 9 in the menu) and our colleagues will help you find out if it is indeed a phishing e-mail/call!

What security steps should I take?

Below are some of the precautions you can take to help keep your data and finances safe.

When using a computer, the following measures are recommended:

Regular use of an up-to-date antivirus and malware removal application.
Use an up-to-date browser.
Use firewall software.
Use strong passwords: passwords should not refer to the user or the purpose for which they are used. Password should not be a dictionary word, phone number, name, date, etc. Password should be easy to remember but difficult to guess. Never share or write down your password! Use different passwords for each access!

Other security tips:

Only install and run software from a trusted source.
Avoid transactions over public, unsecured WiFi networks.
Turn on pop-up blockers offered by browsers.
Only log in to your Internet bank from a trusted computer that you know.
Do not use the remember password option offered by browsers.

How do I know if I'm under a phishing attack?

It is possible that unknown persons may try to misuse CIB Bank's name to obtain information from our customers via e-mail or other text messages (e.g. SMS). In such cases, the messages typically contain grammatical errors and are intended to lead unsuspecting recipients to a page where they are asked to provide confidential banking information.
If you encounter such an email, please do not click on the link in such an email or message and do not provide your identification details. Delete any email/message sent by fraudsters.
It is important to note that CIB Bank will never ask its customers for confidential information, such as passwords and login IDs to use our services, to carry out transactions, either by e-mail, telephone or SMS.

What should I know about using my card online?

Online credit card transactions are authorised with maximum security for merchants within EEA member states, in accordance with the European Union's strong customer authentication directive (PSD2), details of which can be found at www.cib.hu/3d.

However, you should act with caution when using a credit card online. You can find useful information on this here.

What can the bank's customer service do if you have given your details to fraudsters?

Help you to block your bank card, login credentials.
Provide information on how to cancel and re-register your mobile app.
Tell you what you can do to avoid further financial loss.
You will be informed of the possibility to lodge a complaint for transactions not initiated by you.

What can't the bank's customer service do?

According to international and national regulations:

"recall" a transfer that has already been made without the beneficiary's involvement.
Withhold the amount of a transfer or credit card purchase already marked as 'blocked'. The reason for this is that in this status, the beneficiary of the transfer/purchase already has control over the amount, so it is effectively as if he/she physically holds the amount.