Obtain your banking products on-line, quickly and securely
Our transactions are growingly carried out via digital channels and as a result fraud incidents multiply daily.
Each type of fraud intends to steal personal data and passwords, such as Username, e-Banking passwords, additional security codes (Alpha SecureCode), debit/credit card details and PINs, with the aim of accessing your bank accounts and cards. Here are some practical tips you can follow to protect your transactions:
Create complex passwords, change them frequently, do not write them down and do not disclose them to anyone.
NEVER save your credentials (Username, Password) on any of your devices for any reason.
Make sure the Password you create each time is complex and change it frequently.
Keep your Username and Password in different places, in a way that cannot be intercepted. Alpha Bank will never ask you in any way (by phone or email /sms) for your Access Codes. They are personal, and you should not reveal them to anyone. Safeguarding passwords is your responsibility. If you find or suspect theft or interception, you must immediately notify the Bank.
Make sure you navigate in the official Alpha Bank Cyprus Ltd website (https://www.alphabank.com.cy ή https://aeb.alphabank.com.cy).
Do not follow any external links to login to your e-Banking.
Before entering your passwords make sure that the characteristic padlock icon appears on the page at the beginning of the url address.
Access to the Bank's digital services should only be via the official website (www.alphabank.com.cy) and not through links of other websites, search engines or emails.
Protect your computer, tablet, and mobile devices for accessing e-Banking.
Shield your computer with protection programs such as Firewalls, Antivirus, Antispyware.
Be sure to update your computer's operating system, malware protection programs, browsers, as well as any applications you may use to carry out your banking transactions (e.g. Viber).
Do not ignore "strange" behaviors on your computer as they are most likely caused by installing malicious programs.
Delete temporary Internet files from your computer.
Protect your mobile software and download only the official apps (Apps) from the official Stores (Google Play, App Store και Huawei AppGallery).
Ignore any communication that asks you to fill in your passwords or personal information.
Do not reply to emails asking for details of your accounts or passwords and do not follow the links they suggest.
If you become aware of or suspect any physical or electronic attempt to intercept your passwords, if you have given your passwords by phone or filled them in a suspicious email or window, contact the Bank directly by phone or enter a wrong password 5 consecutive times in order to disable your subscription.
Make sure the Password you are choosing each time is complex enough. Keep your Username and Password separately.
Keeping your security codes safe is your responsibility. In the event of a confirmed or suspected physical or electronic theft, you must notify the Bank immediately.
Alpha Bank will never ask you for your security codes in any way (e.g. via phone or email / sms). They are personal and you must not disclose them to anyone.
Misleading email messages (phishing emails) or/and sms aim to get access to your personal data. These messages are supposedly sent by Alpha Bank and urge the recipient to follow a link to a particular page in order to enter his / her personal data (e.g. Username, Password, Alpha SecureCode etc).
Many malicious third parties try to install to your computer, unbeknownst to you, malicious software (Viruses, Worms, Trojan Horses, Spyware etc) via the Internet or by email. In some cases, this malware could intercept your personal data and codes, destroy your files and programmes and generally harm your computer.
Shield your computer with security software, such as Firewalls, Antivirus, Antispyware.
Update your computer with the latest versions and security patches of the operating system, the anti-malware programs, the browsers that you use as well as the applications that you may use to execute banking transactions (e.g. Viber).
Delete the temporary Internet files from your computer.
Avoid using public computers or those belonging to third parties (e.g. hotels, your friends).
Do not ignore "strange” behaviours of your computer, as these may be caused by installed malware.
Do not reply to e-mails that ask for your account details or security codes and do not follow the links that they suggest.
Make sure that you visit the Alpha Bank's website.
Always keep your security codes safe and protected.
Protect your PIN when typing with the palm of the other hand.
Do not trust anyone offering to assist you with the use of your card.
Make sure you collect your card at the end of the transaction.
In the event that your card is lost, stolen or retained by the ATM, contact Customer Service at 22877477 immediately.
PIN stands for “Personal Secret Identification Number”. The Bank will never ask you for it and you must never disclose it to anyone.
For safety reasons, make sure you change your PIN regularly.
Do not replace your PIN with an easily predictable one (e.g. your birth date).
Make sure you collect the receipt of your transaction as it contains personal information on account balances, transactions, etc.
If you notice any suspicious accessory, for example on the card slot or on the keyboard, do not use this ATM and contact the Bank immediately.
Indicatively, there are the following firewall programmes (for Windows operating systems):
ISS: BlackIce PC Protection
Network Associates: McAfee Personal Firewall
Symantec: Norton Personal Firewall
Tiny Software: Tiny Personal Firewall
Zone Labs: ZoneAlarm
(If your computer has Windows XP operating system, a firewall has already been installed).
Indicatively, vendors of "anti-virus" software are shown below:
"Spyware" programs are not necessarilly "malicious", but collect and can transmit information about your Internet behavior (i.e. pages (sites) that you visit, the codes that you keystroke etc).
Some Anti-Spyware programmes that are currently available for purchase are shown below:
Microsoft Windows Antispyware
Spybot Search & Destroy
Further information about your computer's protection for Windows users can be found here.
Alpha Bank will never ask you for your electronic services Password in any way (by phone or e-mail). This Password is strictly personal and you must never reveal it to anyone.
Ignore e-mails that seem to be sent by Alpha Bank and ask for your bank accounts’ numbers, cards numbers or electronic Alpha Bank services security codes. These e-mails are sent by people who try to steal your secret codes and gain access to your accounts.
Do not select links contained in e-mails or third persons' websites that drive you into other websites that ask for your account and card numbers and/or your Alpha Web Banking security codes.
In case you receive such a “suspicious” e-mail, please forward it to Alpha Bank immediately (to the e-mail firstname.lastname@example.org) and delete it from your e-mail box.
Opening of pop-up advertising windows, even if you are not connected to the Internet
Change of the Web Browser home page, without your action.
Display of a new toolbar on your Web Browser without your permission
To do so, always address the official web pages of the vendors/software companies that develop them. Specifically:
Concerning the operating system and the browsers that you use, Microsoft publishes on a regular basis security updates mainly for Windows, the Internet Explorer and the Office environment. All updates should be installed in your computer either automatically or via the Microsoft Web Site ( http://windowsupdate.microsoft.com ). Windows 2000, XP and 2003 offer the capability of automatic updates, without user intervention.
The anti-virus and anti-spyware programmes that your use should be updated regularly with the latest versions in order to be able to detect and delete programmes i.e Worm and Trojan Horses that appear occasionally at the Internet.
In order to delete these temporary Internet files:
If you use Google Chrome:
Press the menu (‘⋮’) at the top right of the browser and then ‘Settings’.
Select 'Privacy and Security' from the menu on the left.
Under 'Privacy and Security', tap 'Clear browsing data'
In the pop-up window select only 'Cached images and files' and press 'Clear data'
If you use Microsoft Edge:
Press the menu (‘⋯’) at the top right of the browser and then ‘Settings’.
Select 'Privacy, search and services' from the menu on the left.
In the 'Clear browsing data' section, tap 'Choose what to clear'
If you use Mozilla Firefox:
Press the menu ('☰') on the top right of the browser and then 'Settings'.
Select 'Privacy & Security' from the menu on the left.
In the 'Cookies and Site Data' section, select 'Clear data'.
If you use Apple Safari:
In the top menu of the browser select 'Safari' and then 'Preferences'.
In the window that appears select 'Privacy'.
In the 'Cookies and website data' section, select 'Manage Website Data'.
In the pop-up window click on 'Remove All' and then 'Remove Now'.
Attention: With the removal, the 'Cookies' of the pages are also deleted, which may cause the account to be disconnected on some pages. If you prefer, you can search and select only the option “alphabank.com.cy” and press 'Remove'.
Make sure that you visit Alpha Bank’s website and pages
Sign on to electronic Alpha e-Banking services only via Alpha Bank’s website and not via links from other websites.
If you use Google Chrome:
Click on the "Padlock" shown on the left at the top of the browser.
Select 'Connection is secure' and then 'Certificate is valid'.
In the window that appears, select 'Details'
Select the “Subject” field and make sure that:
The 'CN' element must show "*.alphabank.com.cy"
Element 'O' must read "ALPHA BANK CYPRUS LTD"
Click on the "padlock" shown on the left at the top of the browser.
A dialog box appears. Select 'Connection is secure'.
At the top right of the dialog press the icon 'Show certificate'
At the top of the window that appears select 'Details'
If you use Mozilla Firefox:
Select 'Connection Secure' and then 'More Information'.
In the window that appears select/press 'View Certificate'.
On the new page that opens, in the 'Subject Name' section make sure that:
The 'Organization' element must show "ALPHA BANK CYPRUS LTD"
The 'Common Name' element must show "*.alphabank.com.cy"
Click on the "padlock" that appears in front of the page link at the top of the browser.
In the window that appears press ‘Show Certificate' and then select 'Details'.
In the 'Subject Name' section make sure that:
In case you suspect or realise any physical or electronic theft attempt of your security codes:
Inactivate your subscription either via electronic Alpha Express Banking services (by selecting the corresponding transactions) or by calling us on 8000 33 33 or 22 88 86 10 (everyday, 8:00 a.m.- 14:30 p.m.)
Contact immediately Alpha Bank by e-mail at: email@example.com or by phone at the above phone numbers
At Alpha Bank we apply modern methods that safeguard your e-Banking transactions, protect your data and shield you from potential threats.
The Bank has in place specialized security systems to control and record all accesses and prevent any unauthorized action in its systems.
Each transaction that is carried out, the data exchanged is encrypted using TLS encryption.
We apply automatic locking of your subscription in case of continuous incorrect login attempts to your e-Banking account as well as automatic logout from Alpha Express Banking and Alpha Mobile Banking after 15 minutes of inactivity.
Alpha Bank has applied a series of alternative authentication methods for transactions that are carried out via e-Banking or e-Commerce, in line with the European Anti-Fraud Directive (PSD2/Strong Customer Authentication-SCA), to further enhance your safety.
Your identity is being verified by using 2 or more unique data, that only you remember or own, such as:
The password you use to login to Alpha Express Banking or the Alpha SecureCode code you receive via Viber/SMS.
Your Mobile phone.
Biometric identifiers, such as your fingerprint or your facial features.
We have specialized security systems to control and record all access and prevent any unauthorized activity in our systems, while each transaction is encrypted (TLS) of the data that are exchanged.
For security reasons, there is a limit for completing transactions ("Session Timeout"), after which the connection is automatically terminated by the system. Similarly, if you have not carried out any transaction for a period 15 minutes, the system disconnects you automatically ("Idle Timeout").
For the safety of your transactions, we have set maximum daily limit on various transaction types.
Using the Alpha Alerts notification service, you receive notifications at any time, by SMS, of the transactions and other actions in your profile, which you carry out via the electronic services of Alpha Bank. Furthermore, you can be informed about your cards and accounts.
Each type of fraud is intended to steal personal data and passwords, such as Username, e-Banking passwords, additional passwords Alpha SecureCode, debit/credit card details and PINs, with the aim of accessing your bank accounts and cards. Find below the most common types of online scams and how to protect yourself:
Online adds fraud for selling products, renting houses online, buying cars or for virtual jobs has recently become widespread. The prospective victim who has posted an ad on the internet or social media receives a phone call from an alleged interested party, who then asks him/her for personal e-Banking codes, the number and/or PIN of his cards and other relevant information in order, supposedly, to make a payment. By intercepting the victim's e-Banking codes, fraudsters manage to access their bank accounts and cards and carry out online fraud transactions.
Deceptive emails that are designed to deceive their recipients and disclose to fraudsters their personal and financial information or security codes. They usually copy the logo, features and style of the actual messages you receive from the Bank. They use terminology that gives the feeling of urgency and urge you to download an attached file or follow a link to your device.
Scammers try to obtain personal and financial information or security codes via SMS messages. They usually ask the prospective victims to follow a link or call a phone number to verify or, update their details. The link leads to a fake website and the phone number leads to the fraudster claiming to represent the legitimate business.
Perpetrators take advantage of the possibility of changing a SIM card and pretend to be either the SIM card holder or someone authorized by the legitimate subscriber, thus trying to deceive mobile operators and obtain a new card to replace the one that the legal holder has. Once the new card has been activated, the old one, which is in the possession of the legitimate subscriber, is disabled and so all services (calls, SMS, etc) are received on the device in the possession of the fraudsters, enabling them to carry out illegal activities without the advice of the legitimate subscribers (e.g. receiving calls and messages intended for them, intercepting disposable codes or security verification messages, etc).
It concerns a fraud telephone call, which intends to deceive the victim to disclose his personal and financial information or security codes or to transfer money to the fraudsters. A typical example is telephone communication to repair a computer software failure. Alleged IT company representatives are communicating with prospective victims and asking to gain remote access to their computer to correct an unstated failure. In this way they manage to extract the victim's e-Banking codes and transfer funds from their accounts.