Information Security

How The Bank Is Protecting You

With our recent certification ISO 27001 certification on Information Security, we are proud to inform you that we are truly committed to providing you with quality and secured services. This has helped us prevent information security lapses and mitigation of associated risks. Not only this, we just obtained the Payment Card Industry Data Security Standard (PCIDSS) certification, which is another vista in the bank’s resolve to protect Cardholders’ data security and privacy in line with International Standards.

In Fidelity Bank, we think security always. We achieve this in the following ways:

Using login-IDs and passwords: To make sure we are dealing with you, online access to your account is only possible once you successfully pass the various stages of authentication.
2nd Factor Authentication: In Fidelity Bank, we use the token technology which is an additional level of authentication to help reduce online identity theft, phishing expeditions, and other online frauds. This is important such that a compromise of the customer’s username and passwords will not make access to the customer’s account possible. For more enquiries and to request for your token, please contact Fidelity TrueServe by Telephone: 01-4485252, WhatsApp – +2349030005252 or email: true.serve@fidelitybank.ng.
Secure Online Sessions When you have successfully logged into our Internet Banking platform, you are in a secure session. You can confirm this by ensuring that the URL you are using begins with https:// and that there is a padlock symbol in the address bar.
Using SSL encryption Secure Sockets Layer (SSL) technology is used within your Internet Banking session to encrypt your personal information before it leaves your computer so that no one else can read it. Depending on your browser setting, a pop-up window will appear to notify you that you will be entering a secured page. In Fidelity Bank, we use high level industry standard SSL encryption.
Online Vulnerability Assessment: Our Internet Banking website is regularly scanned for vulnerabilities by one of the best online Information Security providers. This way, we can proactively secure our infrastructure from emerging online threats and attacks.
Using Session Timeouts If you have kept your internet browser window idle for a sometime or you have logged in from another browser window, our systems automatically disable your session. You will need to be re-authenticated before you continue with your Online banking activities.
Having automatic lock-outs our system disables your online access after a number of incorrect attempts to log in. To reactivate your account, you need to reach our Contact Centre – Fidelity TrueServe by Telephone: 01-4485252, WhatsApp – +2349030005252 or email: true.serve@fidelitybank.ng
Using Layered Security In Fidelity Bank, we adopt other industry standard security measures which we cannot disclose online. However, we ensure we observe the following:

1. All our operating systems are updated with the latest security patches.
2. Different types of anti-malware solutions are used to fight malware attacks effectively.
3. Regular updates of these solutions.
4. Firewalls and other intrusion prevention solutions are used.

“Think Secured Service… Think Fidelity Bank PLC.”

TYPES OF ATTACKS

Identity theft

Identity theft is when a fraudster obtains confidential pieces of personal information such as bank details or date of birth in order to impersonate someone else. The information obtained is then used illegally to purchase goods and services or gain access to the victims’ bank accounts. Keystroke logging Keystroke logging is often used by fraudsters to capture personal details including passwords that are typed on a computer. This can be done using a hardware device attached to the computer or by software running almost invisibly on the machine. Viruses are also capable of installing this software without the user’s knowledge. The risk of encountering keystroke logging is greater on computers shared by a number of users, such as those in internet cafes.

Malware

Malware is short word for ‘malicious software’. This is designed to infiltrate a computer system without the owner’s consent. The term covers a variety of intrusive software/programs which include: viruses, spyware, worms and Trojans.

Phishing

Phishing involves an e-mail message sent out by hackers to many recipients in an attempt to gather personal and financial information from recipients. These emails seem to be legitimate, but on a closer look, they are not.

Social Engineering

This is the act of obtaining or attempting to obtain secure data by conning an individual into revealing secure information. Social engineering is successful because its victims innately want to trust other people and are naturally helpful. The victims of social engineering are tricked into releasing information that they do not realize will be used to attack their system.

Dumpster Diving

Dumpster diving is a method of social engineering where confidential information is collected through company trash. Potential sources of these information leaks include: company phone books, organizational charts, memos, company policy manuals, calendars of meetings, events and vacations, system manuals, printouts of sensitive data or login names and passwords, printouts of source code, disks and tapes, company letterhead and memo forms, and outdated hardware.

“Think Secured Service…Think Fidelity Bank Plc.”

FRAUD REPORTING

In Fidelity Bank PLC, we have zero tolerance for fraud. This is why we will want you to make contact with us and report any type of fraud. This will help us put measures in place to prevent a repeat and ultimately improve our security posture. Knowledge of basic security practices can also help prevent fraud.

Card Frauds:

Unfortunately, card frauds are the most common threats to consumers. Your money can be wiped out if your card and card information fall into the wrong hands.
If you misplaced your card or the card is stolen, please contact us immediately by calling our TrueServe numbers on 01-4485252 or WhatsApp – +2349030005252.

Internet Fraud:

If you carry out transactions on the internet, we recommend that you get accustomed to tips on staying safe online. This will help reduce the possibilities of these internet frauds.
Please report any suspicious activity to true.serve@fidelitybank.ng or call us on 01-4485252 or WhatsApp – +2349030005252. If you are calling from outside the country, dial +234-1-4485252.

Email Fraud:

Have you received a suspicious email that claims to be from us? Fraudsters often send random emails pretending to be from various banks. These mails could be from scammers who promise money in return for you making a payment or asking for your account details or other personal information. Remember, if an offer appears to be too good to be true, it usually is.
If you have received any of these scam emails, do not respond to them. Just forward them to true.serve@fidelitybank.ng.

Please report details of any fraud to us as this will help us all to frustrate the efforts of these fraudsters and to provide a safe and secure banking infrastructure.

HOW WE PROTECT YOU ONLINE

Fidelity Bank’s recent ISO 27001 certification on Information Security is a clear demonstration of the bank’s commitment to providing its customers with quality and secured services. The certification has helped us prevent information security lapses and mitigate associated risks. Not only this, we just obtained the Payment Card Industry Data Security Standard (PCIDSS) certification, which is another vista in the bank’s resolve to protect Cardholders’ data security and privacy in line with International Standards.

In Fidelity Bank, we think security always. We achieve this in the following ways: Using login-IDs and passwords to make sure we are dealing with you Online access to your account is only possible once you successfully pass the various stages of authentication.

2nd Factor Authentication
In Fidelity Bank, we use the token technology which is an additional level of authentication to help reduce online identity theft, phishing expeditions, and other online frauds. This is important so that a compromise of the customer’s username and passwords will not make access to the customer’s account possible. Please contact Fidelity TrueServe by Telephone: 01-4485252 or email: true.serve@fidelitybank.ng for more enquiries and to request for your token.

Secure Online Sessions
When you have successfully logged into our Internet Banking platform, you are in a secure session. You can confirm this by ensuring that the URL you are using begins with https:// and that there is a padlock symbol in the address bar.

Using SSL encryption Secure Sockets Layer (SSL) technology is used within your Internet Banking session to encrypt your personal information before it leaves your computer so that no one else can read it. Depending on your browser setting, a pop-up window will appear to notify you that you will be entering a secured page. In Fidelity Bank, we use high level industry standard SSL encryption.

Online Vulnerability Assessment
Our Internet Banking website is regularly scanned for vulnerabilities by one of the best online Information Security providers. This way, we can proactively secure our infrastructure from emerging online threats and attacks.

Using Layered Security
In Fidelity Bank, we adopt other industry standard security measures which we cannot disclose online. However, we ensure we observe the following:
1. All our operating systems are updated with the latest security patches.
2. Different types of anti-malware solutions are used to fight malware attacks effectively.
3. Regular updates of these solutions.
4. Firewalls and other intrusion prevention solutions are used

Using Session Timeouts
If you have kept your internet browser window idle for sometime or you have logged in from another browser window, our system automatically disables your session. You will need to be re-authenticated before you continue with your Online banking activities.

Having automatic lock-outs
Our system disables your online access after a number of incorrect attempts to log in. To reactivate your account, you need to reach our Contact Centre – Fidelity TrueServe by Telephone: 01-4485252 or email: true.serve@fidelitybank.ng
“Think Secured Service…Think Fidelity Bank Plc.”