Related pages
Most visited pages
  • Multinationals in Iran
  • Banking Commitments
  • Banking for SMEs
  • Online Banking
  • Financial Statements

Fraud Prevention

Security Tips for In-Person and Digital Services

With the advancement of technology, banks now provide 24/7 services to their customers through internet banking, mobile banking, ATMs, and other platforms.

In this environment, fraudsters remain vigilant, attempting to withdraw funds by stealing individuals' banking information.

The following tips are provided to guarantee the security of users for both internet and in-person services.

Security Tips for Digital Services

  • Avoiding and ignoring unknown emails.
  • Not responding to emails requesting your financial or personal information.
  • Not filling out forms or login pages linked to these emails.
  • Not sending passwords via email.
  • Avoiding access to suspicious websites.

If you receive a suspicious email, please forward it to security-info@middleeastbank.ir; the Middle East Bank security team will take necessary actions to prevent similar attacks after investigating these emails.

 

Protecting Financial Information

Refrain from publishing your financial and banking information—such as account numbers, card numbers, passwords, CVV2, and card expiry dates—on suspicious websites (such as cryptocurrency trading and betting sites) and social media, or saving them on your computer and mobile phone. It is possible to view and monitor authorized bank payment gateways by visiting the official website of the Central Bank of the I.R.I. (cbi.ir). Also, ensure the validity of online stores, as many abuses are carried out through fake websites, displaying bank logos, promotional banners with security content, and obtaining confidential card information. Do not enter your banking information on any website other than authorized bank gateways.

 

Closing Windows During Errors

In case of any disruption during the online payment process that leads to an error page in the browser, close the page and perform the payment operation from the beginning.

 

Preventing Keylogger Installation

Ensure that no hardware or software Keylogger is installed on the computer through which banking transactions are performed; for this purpose, do not use public or unknown computers and only install required software from trusted sources. Seriously follow up on any unusual slowdown or suspicious behavior of the system.

 

Avoiding Disclosure via Email and SMS

Avoid responding to emails and SMS messages that request your bank card information. Many electronic service providers have options like "Report Spam" to report suspicious cases. If you receive an email with such content, use the said option to block the sender.

 

Installing Mobile Banking Apps from Reliable Sources
  • Avoid installing mobile banking apps and other apps related to bank cards that have been sent to you via email.
  • To download the iOS mobile banking app, only use the stores introduced in the mobile banking menu of the Middle East Bank website.
  • You can receive the Android mobile banking app directly from the Middle East Bank website.

 

Avoiding Public Computers and Networks

Do not use public places providing internet services, such as internet cafes, internet centers, universities, and other untrusted locations, for using internet banking services. Specific hardware and software might be installed on the computers in these centers to steal usernames and passwords.

 

Caution in Using Wireless Connections

The risk of information eavesdropping increases when using wireless connections; therefore, only use wireless connections when you are completely sure of the security of the internet connection. Connect only to networks that have strong passwords and whose names you recognize, and avoid connecting to public networks without passwords or unknown ones.

 

Using One-Time Passwords (OTP)

Use a One-Time Password (OTP) to connect to bank internet gateways.

 

Disabling Automatic Mobile Settings

When using mobile banking services, you should set the settings of your mobile phone or any other portable device to require a password upon power-on. Avoid setting them to automatically connect to your bank account. In case of loss or theft of your mobile phone, inform the bank as soon as possible.

 

Caution in Selecting Passwords
  • Change the passwords of your electronic banking tools and systems every three months.
  • Choose your account's internet banking password with a length of at least eight characters (preferably more than twelve), combining uppercase and lowercase letters, numbers, and characters such as @, %, etc.
  • Do not use guessable passwords such as birth year, national ID number, etc.
  • Avoid writing down your internet banking password and using identical passwords for your cards and banking systems.
  • Do not provide the passwords of your electronic banking tools and systems to others.

 

Ensuring Browser is Up-to-Date

When logging into internet banking, be sure to use updated and trusted browsers (such as Microsoft Edge, Safari, Google Chrome, and Firefox).

 

Using Up-to-Date Antivirus
  • If you use a personal computer or Windows operating system, it must have an updated antivirus or Internet Security suite installed.
  • If you use smartphones or tablets with non-Windows operating systems (such as iOS and Android), it is better to install an antivirus and then log into your internet banking account. Ensure your personal computer is free of malware or viruses.

 

Exiting Electronic Systems

After finishing work in internet banking, ensure you log out of the system.

 

Avoiding Suspicious Software

Never use VPNs, proxies, or filter-breakers when connecting to the internet for using internet banking.

 

Checking the Internet Address (URL)
  • Ensure that the internet address (URL) of the internet banking starts with https and follows the same alphabetical combination and order as other pages of the bank's website.
  • To enter the bank's website, type its address directly in the browser's address bar.
  • Never open links sent to you in emails; this is a trick used by fraudsters to direct you to a website looking exactly like the bank. When you think you have logged into your bank account, you have provided your login details to thieves to empty your account.

 

Using the Virtual Keyboard

When entering information, use the virtual keyboard embedded in the respective bank's website.

 

Enabling SMS Notification System

Activate your account's "SMS Notification" service simultaneously with the internet banking service so that you are notified via SMS whenever you log into your internet banking.

 

Constant Monitoring of Bank Accounts

Check your bank account at least weekly and ensure the accuracy of transactions throughout the week.

 

 Security Tips for In-Person Services

 

Ensuring Completion of Banking Operations

Do not leave the place before ensuring the processing and completion of the banking operation, and in case of an unsuccessful transaction, keep the respective receipt until ensuring that the amount has not been deducted from the account.

 

Receiving Receipts

Do not leave receipts received from ATMs and POS terminals at the location.

 

 

Maintaining Security While Entering PIN

In public places, to protect confidential information, create a protective shield using your other hand when using a card and entering the password at ATMs or POS terminals.

 

Refraining from Providing Card PIN to the Merchant

Avoid providing the password to merchants and enter your password personally at POS terminals.

 

Observing Distance While Using ATMs

When using an ATM, ensure that the appropriate distance of the next person from you is observed. Observing this point is a sign of maintaining privacy and consequently increasing the security of the ATM user.

 

Attention to ATM Status

If you observe an unusual status on the card entry slot or cash dispenser of an ATM (such as glue or the presence of an extra object), while notifying the branch officials during working hours and the Bank’s Customer Communication Center (ASHNA) during other hours, use another ATM.

 

Checking Received Cash

After receiving the card and cash from the ATM, count the received cash in a safe place.

 

Blocking a Lost Card

Block your bank card as soon as you become aware of its loss. Card blocking methods include: internet banking, mobile banking, ATMs, visiting bank branches, and contacting the Bank’s Customer Communication Center (ASHNA).

 

Periodic Card PIN Changes

Change your bank card passwords several times a year and avoid selecting identical passwords for all your bank cards.

 

Other Security Matters

Make sure your contact information in the electronic banking system is correct and update it in case of any changes.