As a rule, APS Bank will never ask you to share the below information over email/phone/SMS/social media/letter:

• Passwords
• Full card number
• myAPS PIN/codes
• CVV number
• Security questions and answers
• Other confidential account data

Standard security precautions

We encourage you to remain vigilant and to follow standard information security precautions. This will help protect against fraudsters who might try to trick you into providing them with your money or personal information.

To help ensure that you do not provide any banking information to any individuals impersonating individuals from the Bank, the Police or other companies that you may trust, we recommend that you:

• Don't give out your hardware and software token codes, Mobile App Secure passcode, online one-time password or activation codes to anyone.
• Don't transfer money from your account, either online or in a branch after being instructed to do so without checking via a trusted source.
• Don't allow someone to take control of your computer or other devices if you receive a call or message that you aren't expecting.
• Don't assume that a mobile, phone call, email, social media messaging or SMS is genuine. Prior to carrying out any operation, transfer etc. always check via a trusted source.
• Don’t click on a link to activate or unblock your account.

Enhance the security of your account

Here are a few security tips to help protect yourself online and your account information, along with other steps you can take for added protection:

• Use secure email Message Hub either using the myAPS Mobile Banking, Internet Banking or Secure eMail to send an email containing account information or questions
• Change your password periodically Choose a password that is difficult to guess
• Be aware of phishing and scams
• Keep your Operating System up-to-date
• Keep your software up-to-date
• Keep your web browser up-to-date
• Use Anti-Malware Software
• Secure your wireless connection
• Prevent Spyware
• Use a Firewall
• Do not use the myAPS mobile app on rooted/jailbroken devices
• Set different login credentials for Banking and other sites such as social media, e-commerce
• Take the time to regularly monitor your bank account statement
• Do not allow anyone else to use your card, online banking logins, account data or personal information
• If you are shopping online, be sure the website you are visiting is secure (indicated by https:// or A padlock icon,) and has a valid digital certificate before you enter your card number and login details

What should you do if you receive a suspicious call?

If you receive a call from an unknown number and the caller claims to be from the bank or another service provider such as your internet service provider, or even imitating a contact you may know, and they request your personal data, make sure to take their details and call back on the company’s verified official number. If when you call you are informed that this person doesn’t exist, report the incident to the cybercrime unit.

If you believe there has been an unauthorised transaction in your account or believe the security of your password has been compromised or if you have responded to any suspicious communication such as giving your account or online log-in details, please contact us our Contact Centre on (+356) 2122 6644 immediately.

How do you recognise a suspicious email?

If you receive an email from APS, it will be sent from a Bank’s email address (example - info@apsbank.com.mt). Unfortunately, at times it may be difficult to tell if an email is legitimate. Here are a few things you can look out for:

• The message is sent from a public email domain (example @com).
• Look at the actual email address, not just the sender's name.
• Check if the domain name has been misspelt (example @com.mt).
• If an email is written with misspelling and grammatical errors.
• Be cautious of suspicious attachments or links.
• If the message creates a sense of urgency and threatens legal action.

What do you need to do to prevent QR code scams?

QR code scams have become more utilised since scammers take advantage of the fact that through these codes an unsuspecting user may be re-directed to a fraudulent site with a similar address and/or look and feel.

Below are some suggestions to help you mitigate the risks:

• Do not scan a QR code and immediately start browsing the website you are directed to. Before, look out for typos and that the site is genuine.
• Do not use QR codes to access sites that require payment and/or submission of personal details. Type in the address of the site and check the spelling.
• Download mobile apps solely from the phone's app store rather than via QR codes.
• Scan QR codes from reputable sources and/or locations.

What are the secure channels to communicate with a Bank representative?

The best ways to contact the Bank securely are through:

• Our Contact Centre on (+356) 2122 6644.
• A message through the myAPS Message Hub.
• Sending your bank details over social media channels or email is not a safe practice.

Cyber criminals are always changing their tactics, so it's important to stay up-to-date of all the latest hacking trends. It’s essential to do so in order to keep your money safe.

If you suspect you have been a victim of fraud, it is important to call the Bank immediately on (+356) 2122 6644.