Security Advisory: June 2009
Lottery Scam Detected (June 2009)

Dear customers

It has been brought to our attention that there is a lottery scam involving a fraudulent notification to customers informing them that they have won prize monies in a foreign lottery. The trickster(s) would request for an advance payment in order to process the claim for prizes.

If you receive an email from an email account of foreignremittance@ocbconlineplc.co.cc or encounter similar notifications from an unknown party, instructing you to make an advance-payment to claim such prize monies,  Do Not Respond.

Please note that it is not the policy of OCBC Bank or any of its related entities to send email, short message service (SMS) texts or instant messages (IM), to request customers to provide their personal information or instructing them to perform specific transaction.

At OCBC Bank, protecting your information has always been our priority. To learn more about our privacy and security policies, other useful information about online security and tips on protecting yourself from fraud, please visit:http://www.ocbc.com/personal-banking/tools%20and%20info/Toi_Poc_SecPriPolicy.shtm

Should you receive such suspicious emails, you should notify OCBC Bank immediately by calling your nearest OCBC branch. The contact details are listed in the following webpage:http://www.ocbc.com/personal-banking/helpcentre/Hcr_Cus_CallCentreInterNational.shtm

Security Advisory: May 2009
Security Alert on Malicious Trojan Virus (Banker) in Circulation

Dear customers

It has come to our attention that there is a new Trojan virus in circulation on the internet. This malicious program infects your computer and at the login stage, is able to steal your Internet Banking login information such as your Access Code, PIN and One-Time Password.

When you attempt to log in to OCBC Internet Banking from an infected computer, the Trojan virus will present to you a page that looks like the OCBC Internet Banking login page. Your browser may hang for a period of time and trick you into entering your login details multiple times. The Trojan will then capture the information and send it to the culprit.

The URL to OCBC Bank’s official website is http://www.ocbc.com/. We advise our customers and other members of public to only log in through this URL.

If you experience the following while on the site:

• Multiple prompting to enter your login information
• Your computer hangs for a period of time
• Indications of suspicious activities in your Internet Banking account; i.e. Adding of Beneficiary unknown to you or unauthorized 3^rd Party Funds Transfer to an unknown account.

DO NOT proceed with your online banking activities and alert us immediately by calling 1800 363 3333.

If you suspect that your computer may be infected:

• Do not use it for any internet banking transactions
• Perform an antivirus scan immediately

Free online antivirus/anti-malware removal tools are available at the following websites:http://vil.nai.com/vil/content/v_157491.htm

We advise our customers to be cautious when accessing the internet. These are some of the precautionary measures that you can take:

• Frequently scan your computer for viruses/malware
• Do not open attachments or click on hyperlinks from unknown sources
• Avoid visiting websites housing software or other illegal online resources
• Ensure that your operating system is up to date with the latest patches. This helps to tighten vulnerabilities that such malware may exploit
• Refrain from using internet banking facilities on public computers

Protecting your information has always been our priority. To learn more about our privacy and security policies as well as other useful information about online security and tips on protecting yourself from fraud, please visit www.ocbc.com/personal-banking/tools%20and%20info/Toi_Poc_SecPriPolicy.shtm

Security Advisory: December 2008
Security Alert on a Malicious Trojan Horse / Malware in Circulation

Dear customers

It has come to our attention that a malicious Trojan Horse is in circulation, targeting internet banking websites, including OCBC Bank.

Such malware can capture personal information or redirect you to malicious websites even though you may have entered the correct web address.

We advise our customers to be cautious when accessing the internet. These are some of the precautionary measures that you can take:

• Ensure that your antivirus software is up to date with the latest virus signatures
• Frequently scan your computer for viruses/malware
• Do not open attachments or click on hyperlinks from unknown sources
• Avoid visiting websites housing software or other illegal online resources
• Ensure that your operating system is up to date with the latest patches. This helps to tighten vulnerabilities that such malware may exploit
• Refrain from using internet banking facilities on public computers

If you do suspect that your computer may be infected:

• Do not use it for any internet banking transactions
• Perform an antivirus scan immediately

Free online antivirus/anti-malware scans are available at the following websites:

• http://www.kaspersky.com/virusscanner
• http://home.mcafee.com/Downloads/FreeScan.aspx
• http://www.bitdefender.com/scan8/ie.html
• http://housecall65.trendmicro.com/
• http://security.symantec.com/sscv6/WelcomePage.asp

If you have any queries or concerns, please do contact us at:

1800 363 3333 for individuals
1800 538 1111 for businesses

Protecting your information has always been our priority. To learn more about our privacy and security policies as well as other useful information about online security and tips on protecting yourself from fraud, please visit www.ocbc.com/personal-banking/tools%20and%20info/Toi_Poc_SecPriPolicy.shtm.

Security Advisory: July 2008
SMS Lucky Draw Scam

OCBC has shared with the media on 4 Jul 2008 about our experience in helping individuals who  had become victims in a SMS Lucky Draw scam. Drawing from this incident, we believe that the following information is very useful in helping you to identify future scams and avoid falling prey to fraudsters.

HOW A TYPICAL SCAM WORKS

The victim would receive an SMS informing him that he has won a lucky draw organized by a well-known regional organization. When the victim calls the contact number provided in the SMS, he will be advised to open a bank account to receive the winnings.

The victim would be guided by the fraudster to apply for Internet Banking and subsequently reveal all details necessary for the fraudster to takeover the Internet Banking access. The victim has effectively given away full control of his account to the fraudster, who will subsequently login to transfer funds out of the victim’s account.

PLEASE NOTE

We would like to remind our customers and members of the public not to reveal nor allow their confidential banking details such as account numbers, access codes, PIN, etc to be shared with any third parties.  Just as we should not hand the keys to our house to 3^rd parties, we should similarly not share the “keys” to our bank accounts. 

You should be suspicious of all requests to disclose your confidential banking details.  When in doubt, please contact the Bank immediately at known listed number and do not call the number provided by the fraudster.

ADDITIONAL INFORMATION

More details of similar scams are available as follow:-

• Beware of Phone Scams!" flyer produced by the National Crime Prevention Council and the Singapore Police Force.
• Crime Prevention Message from the Singapore Police Force.
• The Singapore Police Force website at www.spf.gov.sg or www.cad.gov.sg .  

Security Advisory: June 2008
New Phishing Email and Site Detected (June 2008)
It has been brought to our attention that there is a phishing email leading to a fraudulent website bearing an identical domain name, logo and images belonging to OCBC Bank.

If you have received an email from email accounts of service@ocbc.co.m.sg to register your account information for some security upgrade process by OCBC Bank, Do Not Respond.

We would like to remind our customers and other members of public that the official domain name of OCBC Bank is www.ocbc.com. Customers and other members of public are advised to be wary of suspicious websites bearing any resemblance to the OCBC Bank website.

If you have visited any such websites or received an email, short message service (SMS) text or instant message (IM) from an unknown party, instructing you to disclose or submit your banking details such as account numbers, usernames, passwords or credit card information online or otherwise, DO NOT respond but please alert us immediately by calling:

1800 363 3333 for individuals

1800 538 1111 for businesses.

It is not the policy of OCBC Bank or any of its related entities to send emails, short message service (SMS) texts or instant messages (IM), to request customers to provide their personal information or instructing them to perform specific transaction. This also includes directing customers to websites that does not originate from OCBC Bank.

At OCBC Bank, protecting your information has always been our priority. To learn more about our privacy and security policies, other useful information about online security and tips on protecting yourself from fraud, please visit www.ocbc.com/personal-banking/tools%20and%20info/Toi_Poc_SecPriPolicy.shtm .

Security Advisory: April 2008
Phone Scams - A Crime Prevention Message from Police
You may have come to know about a spate of phone scams that have been widely reported in the local media. Please click here to read the Crime Prevention Message from the Singapore Police Force.

More details of such scams can be found in the SPF website at www.spf.gov.sg or www.cad.gov.sg.

During our routine security checks on the internet, we discovered an unauthorised website bearing an identical domain name, logo and images belonging to OCBC Bank. The website has since been removed and is currently inactive.

We would like to remind our customers and other members of public that the official domain name of OCBC Bank is www.ocbc.com. Customers and other members of public are advised to be wary of suspicious websites bearing any resemblance to the OCBC Bank website.

If you have visited any such websites or received an email, short message service (SMS) text or instant message (IM) from an unknown party, instructing you to disclose or submit your banking details such as account numbers, usernames, passwords or credit card information online or otherwise, DO NOT respond but please alert us immediately by calling 1800 363 3333 for individuals and 1800 538 1111 for businesses.

It is not the policy of OCBC Bank or any of its related entities to send emails, short message service (SMS) texts or instant messages (IM), to request customers to provide their personal information or instructing them to perform specific transaction. This also includes directing customers to websites that does not originate from OCBC Bank.

At OCBC Bank, protecting your information has always been our priority. To learn more about our privacy and security policies, other useful information about online security and tips on protecting yourself from fraud, please visit  www.ocbc.com/personal-banking/tools%20and%20info/Toi_Poc_SecPriPolicy.shtm.

Credit Card Security Advisory

You may have heard or read recent reports about a credit card security breach at CardSystems Solutions, Inc., a third-party processor of payments for credit and debit transactions, including Visa and MasterCard.

To protect our customers, we have already put in place measures to replace the cards of the small number of customers whose credit cards were affected.

As an additional measure, we advise our customers to be on the alert for phishing schemes relating to this security breach incident and thereafter. For security reasons, we will not send you an email or letter asking you to update or provide sensitive personal and credit card information via an email link. Please ignore such mails and DO NOT provide the information requested for. If in doubt, do contact our call centre at 1800-363 3333.

Customers are also advised to review their monthly card statements carefully. If you come across an unfamiliar transaction, please contact us at
1800-363 3333 to clarify. We assure you that the Bank will not hold our customers accountable if investigations uncover a transaction that is an unauthorized one.

If you believe you may have responded to any phishing emails or websites, please contact our call centre immediately to replace your credit card and PIN.