Account Security

What Is the Ideal Password?

Being mindful of a few details when setting up your password might protect you from any unforeseeable risks. Here are some of the criteria a good password must fulfill:

1. It must not consist of consecutive and repeating numbers (such as 123456 and 111111),
2. Do not create a password with sequential keys on the keyboard (such as 147258 or 258369),
3. Your password should consist of only numbers and six (6) digits,
4. It should not contain easily guessable numbers such as the Turkish ID number, customer or phone number, and date of birth,
5. Your new password must be different from the last three (3) combinations you used,
6. Do not use your personal information or phone number as a Single Password.

Considerations for E-Mail Security

We must warn you about e-mails claiming to be associated with Kuveyt Türk. Kuveyt Türk would never request your personal information. So, do not trust e-mails using Kuveyt Türk's name and logo that request your personal or corporate information, such as credit card, account, or customer ID; these e-mails are often phishing attempts.

If you receive such an e-mail, do not share your personal information or click on any links that might be included in the message. Call Kuveyt Türk Customer Contact Center immediately at 444 0 123 to confirm whether we sent you the e-mail.

• Never open e-mails and attachments of unknown origin and whose reliability you are not sure of.
• Never click on any link or file in the e-mail unless it is related to you or something you expect,
• You may read the content of the e-mail, but avoid clicking on any link or file in it,
• Do not reply to spam, chain, and fake e-mails,
• Be skeptical of e-mails that specifically ask you to download files or fill out forms,
• Only activate notifications for your personal e-mail on trusted sites.

What are Social Engineering Attacks?

Phishing attacks are carried out using social engineering methods. Social engineering is a method of information theft based on tricking people rather than using technology.
Social Engineering Attacks are spread over a period of time rather than a single event. It is aimed to enter the victim's personal security circle by imitating some of the events that are part of the person's daily life. Therefore, having general awareness is the best precaution against such attacks.

Characteristics of Social Engineering Attacks

• They take advantage of the victim's vulnerabilities,
• They are the easiest way to access personal information,
• Influence, intimidation, and persuasion are their most notable methods,
• They do not necessarily require technical knowledge.

Types of Social Engineering Attacks

• Phishing: Phishing is a common technique, where attackers pose as trusted sources like banks or friends in e-mails to obtain financial information from victims.
• Smishing: Smishing is the name of a type of information theft sent via SMS in which the victim is asked to click on a link or make a payment.
• Vishing: A method in which the fraudster introduces themself as a government official, such as police, prosecutor, or judge, and tries to obtain vital information from the victim via phone call.

Methods to Avoid Social Engineering Attacks

Here are the two easy steps for protecting yourself from social engineering attacks:

• No one, including your Kuveyt Türk customer representative, must know your customer number, Single Password, card information, and single-use password that you use in Telephone Banking transactions. Therefore, do not share this information with anyone.
• Always question any unusual activities occurring in your e-mail, communication networks, or bank account. Take immediate action in case of suspicion.

Use Kuveyt Türk Mobile for fast and secure transactions!