The Bank of East Asia

Security Tips

Security Tips

The Bank has adopted the latest security technology to prevent unauthorised access to customers' bank accounts and provide a well-protected online banking service. You are encouraged to read the following advice to ensure the safety of your transactions and information.

  1. Major Security Tips
  2. Use of e-Channels (including Personal/Corporate Cyberbanking and BEA’s official mobile applications)
  3. Use of ATM Services
  4. Use of i-Teller Services
  5. Use of Phone Banking
  6. Two-Factor Authentication
  7. Fraud Prevention Information
  8. More Security Information

 


 

  1. Major Security Tips
    • The Bank’s staff will never ask for sensitive information such as your HKID, account number, PIN, etc. Do not disclose or share such information with anyone, even BEA staff or police officers, under any circumstances.
    • Avoid opening any email attachments or hyperlinks from unknown sources, and take precautions against hackers, viruses, spyware, and other malicious software.
    • Always check the SMS/email transaction notifications from the Bank, and regularly check your transaction history and statements in e-banking.
    • Make your passwords difficult to guess and different from those for other internet services, and change your passwords regularly.
    • Keep the operating system and apps installed on your device up to date with the latest security patches. Install anti-virus and anti-spyware software, keep them updated, and scan your device regularly.

     

  2. Use of e-Channels (including Personal/Corporate Cyberbanking and BEA’s official mobile applications)
    • Do not click on hyperlinks embedded in any email, SMS, instant message, QR code, search engine, or any untrusted source to access webpages and enter your login information. Only use the service by typing www.hkbea.com into your web browser, through a bookmarked link, or through BEA’s official mobile applications.
    • To ensure secure transactions, please download one of BEA’s official mobile applications from official app stores (Google Play or the App Store) and do not use the app on any “jailbroken” or “rooted” devices.
    • Please take note of your last login date and time or “Identity Message” every time you log in to one of our e-channels.
    • Visit any of our branches to update personal information if your mobile phone number and/or email address recorded in the Bank has been changed or become invalid.
    • Verify the transaction details including the payee name and amount when making “FPS” small-value transfers or transfers to registered/non-registered accounts using a mobile phone number, email address, FPS ID, QR code, or account number. If you have any enquiries, confirm with the payee before making the transaction.
    • To prevent unauthorised access by others, we recommend you set up auto-lock and a passcode lock, and enable remote wiping for your device in case of loss/theft.
    • Notify the Bank immediately of any actual or possible unauthorised access of your account.
    • If your device is capable of biometric authentication (e.g. fingerprint or facial recognition), do not disable any features that can strengthen the security of biometric authentication and do not let any other person register his/her biometrics on it.
    • You should not use facial recognition for authentication if you have identical siblings or siblings that look like you, or if you are an adolescent with rapidly developing facial features.
    • Do not use a public computer or public Wi-Fi network to access e-banking services. Choose encrypted networks when using Wi-Fi and remove the settings of any unnecessary Wi-Fi connections. Disable any wireless network functions such as Wi-Fi, Bluetooth, NFC, etc. when not in use.
    • Carefully read the installation and/or permission requests from websites, apps, and other software and programs. Do not install or run apps from third-party/ untrustworthy sources on your device, and uninstall any suspicious app when necessary.
    • Regularly check and update your system’s web browsers and any of BEA’s official mobile applications on your devices.

     

  3. Use of ATM Services
    • Do not keep your PIN together with your ATM card.
    • Change your PIN immediately when using your ATM card for the first time and destroy any documents containing your PIN.
    • Be alert to your surroundings before conducting any transactions. Make sure no one sees your PIN, and cover the keypad when you enter your PIN.
    • Check that the protective keypad cover is intact before using any ATM in Hong Kong. Contact the Bank immediately if in doubt.
    • Should you notice any suspicious devices in an ATM (such as a micro-skimmer, pin-hole camera, fake key pad, etc.) or any suspicious activities around you when performing an ATM transaction, cancel your transaction and inform the Bank immediately.
    • Retrieve the banknotes (if withdrawing cash), transaction receipt (if applicable), and ATM card as instructed after your ATM transaction is completed. Never try pushing your ATM card back into the ATM.
    • Count the banknotes immediately after withdrawing cash. Keep all transaction receipts and check them against your account records.
    • Do not take away any banknotes left behind by someone else at the cash dispenser or ATM card left in the card insertion slot. Let the ATM retract the banknotes and/or ATM card automatically.
    • Set your effective date and expiry date for overseas ATM cash withdrawal before travelling. Invalidate the function when you have returned from travelling.
    • If your ATM Card/PIN is lost or stolen, or if someone else learns your PIN, please inform the Bank immediately by visiting any of our branches, logging in to Cyberbanking, or calling our hotline:
      (852) 2211 1818 (during office hours)
      (852) 2211 1862 (during non-office hours)

     

  4. Use of i-Teller Services
    • Be aware of your surroundings and do not ask for/accept assistance from strangers when performing transactions.
    • Always keep your ATM card in a safe place.
    • Do not keep your PIN together with your ATM card.
    • Count your banknotes immediately after withdrawing cash, and remember to take your ATM card and identity document as well as the banknotes. Do not take away any banknotes left behind by someone else at the cash dispenser or ATM card left in the card slot.
    • Should you notice any suspicious device in the i-Teller (such as a micro-skimmer, pin-hole camera, fake key pad, etc.) or any suspicious activities around you when performing a transaction, cancel your transaction and inform the Bank immediately.
    • Check your account transaction records regularly. Inform the Bank immediately if you find any suspicious transactions. The Bank will not ask for any sensitive personal information over the phone or by email.

     

  5. Use of Phone Banking
    • In order to prevent fraud, please keep your Phone Banking PIN secret.
    • Never disclose your Phone Banking PIN to anyone (including BEA staff or police officers).
    • Do not allow anyone to use your Phone Banking PIN to perform enquiries/transactions.
    • Update your Phone Banking PIN regularly to ensure safety.
    • If your Phone Banking PIN is lost or stolen, or if someone else learns your PIN, please inform us immediately by calling our hotline: (852) 2211 1333

     

  6. Two-Factor Authentication
    • To enhance security for online transactions, the Bank provides a two-factor authentication service for its e-channels. You are required to enter an SMS one-time password# or use a digital certificate^ to confirm designated transactions*.

      *These transactions include fund transfers to non-registered accounts with BEA Hong Kong and other local banks, fund transfers to non-registered BEA accounts in China and the United Kingdom, bill payments to merchants (except the "Government or Statutory Organisation", "Utilities", "Education: Primary or Secondary School", and "Education: Post-secondary or Specialised Institution" categories), setting up scheduled instructions or templates for the above-mentioned transactions, access to online investment services (including Stocks, Unit Trusts, Linked Deposit-related services, eIPOs, and FX/Precious Metal Margin Trading services) and any new transaction types as prescribed by the Bank from time to time.

      #SMS one-time passwords cannot be forwarded to any other phone number, even if you have enabled the "SMS forwarding" service with your mobile phone service provider in Hong Kong.

      ^Digital certificates are available for Personal Cyberbanking users only. You can complete a specific transaction using a digital certificate contained in your Hong Kong Smart ID Card or USB token.

     

  7. Fraud Prevention Information
    • If you have suspicions about the identity of any apparent intermediary/representative who promotes BEA products or services, you should make a call and verify with the Bank immediately. Please click here for details of institutions/websites/agents with names similar to that of BEA.
    • Notify the Bank immediately if you lose and/or subsequently replace any identity documents which you registered with BEA when opening your account, or if you have any suspicion that statements or account details may have been compromised or stolen. Please click here for more details.
    • Beware of bogus SMS messages and voice message calls. If you are suspicious about the identity of any callers, call BEA and verify with us immediately. Please click here for more details.
    • Beware of fraudsters who impersonate the staff of East Asia Securities Company Limited. Please click here for more details.
    • Beware of unauthorised share-trading transactions. If you notice any suspicious or unauthorised activity related to your account, you should make a call and verify with the Bank immediately. Please click here for more details.
    • To avoid being deceived by a message, verify the sender's identity before you take any action.

     

  8. More Security Information

    To learn more about security issues related to e-banking services, please click the following links:

    Hong Kong Police Force:

    HKSAR Government:

    Hong Kong Monetary Authority: