
Smart Banking
UniCredit On Mobile
Keep your your accounts, cards and investments under control. Make payments and discover great deals.
The most common tricks of scammers
If you have a credit/debit card, be careful when using it. Even you can become a target of the scammers.
The credit/debit cards are often a target of the scammers who try to obtain necessary data and then misuse it for fraudulent transactions or ATM withdrawals.
When the scammer is trying to obtain credit/debit card details, they do not introduce themselves by the specific bank name and therefore these attacks are much more universal than attacks targeting the Internet or mobile banking.
What are the most common types of scams, how to identify them and how to prevent them?
Helpful hints:
Beware of fraudulent e-mails sent to companies with the aim of inspiring trust and attempting to relieve the corporate accounts of money.
Fake Invoices and CEO Fraud are types of fraudulent conduct which more and more companies have come across recently. The fraudsters are trying to imitate communication with the company’s manager or supplier and subsequently to trick employees to send money from corporate accounts.
How does it work?
How can you defend yourself against such attacks?
We recommend always verifying any payment orders and invoices with non-standard data received by e-mail directly with the sender in person or by phone.
Please pay attention to the sender’s e-mail address and check if it is real. E-mails from us can come to you both from the domain unicreditbank.cz and from the domain unicreditgroup.cz.
You should also notice any changes in the formatting of e-mails or invoices compared to standard communication (a different font, logo, grammatical mistakes, briefness or austerity); in many cases, companies have registered such features in fraudulent e-mails.
If you suspect that you might have been a victim of an attack, please inform your banker or the Bank’s Customer Centre +420 221 210 031.
CEO fraud - example
We have received an increased number of reports of fraudulent phone calls concerning pending loan applications.
In recent days, we have seen an increase in attempts at fraud. The fraudsters call on behalf of UniCredit Bank (or other Czech banks) and inform about alleged pending loan applications. Under various pretexts and threats, they then request personal and security data or the installation of an unknown app. The fraudsters use various phone numbers and in several cases they speak Russian or with a Russian accent. If you experience a similar phone call, we recommend that you do not share any information with the caller and never install unknown apps on your phone or computer. If you are unsure of the authenticity of an incoming call, please contact the UniCredit Bank Customer Centre at +420 221 210 031.
Do you use Accessibility for apps requiring authorisation? Please make sure you trust these apps.
What purpose does this authorisation serve?
Accessibility authorisation is intended primarily for persons with visual and hearing impairment, speech disorders or physical disabilities in order to simplify their work with the phone and with some apps.
For example, authorisation enables the font size to be changed in some apps, the phone to be controlled by voice or the keyboard layout to be adjusted, as well as the reading out of text displayed on the phone screen.
What is risky about this authorisation?
Applications with Accessibility authorisation enabled can read (as well as record) the displayed text and thereby get access to the information viewed by the user, such as text messages and conversations, phone numbers and contacts. In the context of banking apps, this may include sensitive data such as names, account numbers, transactions or balances.
Where to check which apps use Accessibility authorisation and how to disable it?
You can find a list of apps in the menu Settings - Accessibility - Services. You can also switch authorisation for individual apps on or off in this menu.
How do I recognise if an app is misusing my authorisation?
You should consider what the app is for and if the use of such authorisation makes sense. The app’s developer should be able to explain what the app uses the authorisation for - such an explanation may be displayed directly in the app, available on the app page in Google Play or on the website of the company providing the app.
Observe the principles of safe behaviour on the Internet and in online banking.
Minimise the risk of viruses or other malware infecting your computers and mobile devices.
Maximize the protection of your data and funds.
Loading