E-mail and Text Message Fraud

These are attacks aimed at stealing user credentials and passwords by creating an enviroment of trust with e-mail and SMS, making the user click on the shared address and directing them to a fake internet address. These attacks are called phishing.

How is it understood?

By imitating Ziraat Bank's internet address or applications like,

"Your Internet Banking has expired."

"You can login to Ziraat Mobile application here."

"Suspicious transactions have been detected on your credit card/account."

"SWIFT, statement or receipt" etc.

By clicking on these links, users are directed to fake websites, personal and financial information is requested.

What Needs to be Done?

Ziraat Bank never sends e-mails or text messages that request personal or financial information to verify your account. No information updates are made by our bank via short messages or e-mails. Don't open suspicious e-mail attachments as the files in the message attachment may be infected. Check whether the full address of out Bank's website is written in the shared link information.

Social Media Fraud

It is a type of fraud that aims to steal the identity and financial information of the user by communicating with the user through social media applications and using believable scenarious.

How is it understood?

By using sponsored ads of social media application or by taking over the account in the user's friend list and pretending to be your friend, participation in the gift draw campaign, sending money to a specific account, request to send money for credit withdrawal on your behalf by stating your credit score is insufficient, etc. can ask for your personal and financial information (card information, internet banking password, mobile confirmation code sent via SMS, etc.) by impressing and convincing you with various scenarios.

What Needs to be Done?

Ziraatbank bank does not post advertisement on social media accounts such as house, car lottery, and refund of the collected expenses. It is necessary to pay attention to the website names of the banks mentioned in their social media accounts.

Bank accounts must have secure websites and domain addresses as "https". Don't login to non-https bank sites in any way. Ziraatbank social media accounts are marked with a blue tick. If personal information is requested from you through the relevant social media account and the internet banking link directed to you, don't trust these accounts.

Phone Scam

It is a type of fraud in which it gains trust of the  customers with believable scenarios by giving the impression that it is from professional group like police, prosecutor, bank staff,etc and obtains their personal and financial information.

How is it understood?

The scammer can create an environment by calling you on the phone, in which he can imitate the sounds of the police radio, printer sound, call center or bank in the background in order to increase credibility. They can make offers such as rewards, fee and expense refunds, and benefiting from advantageous credit opportunities. They may also say that you need to send money, claiming that you have your name on a list of criminal organization or that your account has been hacked. As a result, they may ask you to share information such as internet banking password, credit card password, one time SMS password or download the application from the link they sent.

What Needs to be Done?

Ziraatbank never asks your information such as internet and mobile banking passwords, credit card passwords, and one-time SMS passwords. If such information is requested, never share your information and end the phone call immediately. In case of doubt, you can report the issue to Ziraatbank's Customer Communication Center.

Malware/Application Fraud

Spyware and malicious software are constantly being developed by malicious people who take advantage of the rapid development of the virtual world. Malware may be installed on your device as a result of downloading and using unsafe applications on mobile devices. Malware can run in the background of your device and gain access to your critical and sensitive information.

How is it understood?

If you have encountered one of the following situations, there is a possibility that you have malware installed on your device.

  • Finding unfamiliar applications on your device,
  • Rapid decrease of battery despite no operation,
  • Constant crashing of apps,
  • Encountering pop-ups when browser is closed.

What Needs to be Done?

In cases where you suspect that there is malicious software on your device, you can continue to use your device more safely by doing the following:

  • Don't install new applications whose security you're not sure of, except for known common applications. Make sure that the feature of installing application from unknown sources on your mobile device is turned off.
  • Always use official app stores (Apple Store, Google Play, Huawai App Gallery) when downloading applications to your mobile device.
  • You should research about the application before downloading espacially unknown applications. Check the permissions that the applications you have installed on your mobile device want to access. In particular, don't allow applications that require administrator permission for your phone.
  • Determine your security setting for internet and mobile banking channels (IP limitation, time limitation, closure to overseas shopping etc.) in line with your needs and usage habits.
  • If you suspect that there is malware on your device, search for it in the ''Settings/Applications'' menu and remove it safely.
  • Keep it up-to-date by using licensed operating system, software and anti-virus programs.
  • While malicious software can be deleted with anti-virus programs, some malicious software can be stored in the device. In such cases, the only way to avoid malware is to reset the device.
  • The Malware settles can happen even if the Android device has been wiped from the system. Instead of this Android system systemic, factory reset would be a more reliable choice.
  • If the device you are using is detected to have malware, your access to the internet and mobile banking may be limited for your security. Malware on the device can be removed by formatting the device. Once the necessary precautions are taken on the device, your internet banking access will be automatically activated.

You can still get support products from techical service for products from this product.

As a result of these procedures, if you think you still have malicious software on your device, you can get support from technical service.