Cyber security awareness

What is Social Engineering?


Social engineering is a tactic used by cybercriminals to manipulate individuals into divulging confidential information or performing actions that compromise their security. Instead of breaking into systems using technical methods, attackers exploit human psychology and trust.

Common Types of Social Engineering Attacks:

  • An attacker creates a fabricated scenario to steal your information. For example, they might pose as a bank employee needing to verify your account details.
  • Offering a service or benefit in exchange for information, like tech support scams where the attacker offers to fix a non-existent problem with your account.

How to Protect Yourself:

  • If someone contacts you unexpectedly and asks for sensitive information, verify their identity by contacting the bank of Abyssinia or nearest.
  • Be mindful of the information you share on social media and other platforms. Attackers can use this information to craft more convincing scams.
  • Familiarize yourself with common social engineering tactics and share this knowledge with family and friends.
  • Always double-check requests for sensitive information or urgent actions, especially if they come via phone or text messages.

What is Shoulder Surfing?


Shoulder surfing is a form of social engineering where an attacker observes your private information by looking over your shoulder. This can happen at ATMs, point-of-sale terminals, or even when you’re using your mobile phone or computer in public places.



How Shoulder Surfing Works:

Fraudsters may stand close to you at the ATM, pretending to be customers themselves, and watch as you enter your PIN or An accomplice might distract you by asking for directions or striking up a conversation while another observes or records your actions.

Tips to Prevent Shoulder Surfing:

  • Before you approach an ATM, look around to ensure no one is standing too close or acting suspiciously. If someone is loitering nearby, consider finding another ATM or waiting until they leave.
  • Use your hand, a piece of paper, or your body to shield the keypad while entering your PIN. This simple action can prevent anyone from seeing your PIN, even if they are using cameras.
  • Use ATMs located in well-lit, busy areas where there are security cameras and a lower risk of tampering. Avoid isolated or dimly lit ATMs, especially at night.
  • Have your card ready before approaching the ATM to minimize the time spent at the machine. Avoid counting cash or reviewing your receipts at the ATM. Instead, do this in a secure place.
  • If someone stands too close to you while you are at the ATM, politely ask them to step back to maintain privacy. Be particularly wary of anyone who tries to distract you while you are conducting a transaction.
  • If you notice someone acting suspiciously around an ATM, report it to the bank staff or security personnel. If you believe you’ve been targeted, Bank of Abyssinia customer contact center using toll free number 8397 immediately to secure your account and report the incident.

What is Phishing?

Phishing is a fraudulent attempt to obtain sensitive information such as usernames, passwords, and credit card details by pretending to be a trustworthy entity in electronic communications.

Common Phishing Techniques:

  • Attackers send emails/SMS that appear to be from legitimate sources, prompting you to click on malicious links or attachments.
  • A more targeted approach where the attacker customizes the message to a specific individual, making it more convincing.
  • Phishing conducted via SMS/text messages.
  • Voice phishing, where attackers call you pretending to be from a trusted organization or bank of Abyssinia.

How to Spot Phishing Attempts:

  • Verify the email address or phone number.
  • Be wary of urgent requests, spelling errors, and generic greetings (e.g., “Dear Customer” instead of your name).
  • Hover over links to see the actual URL before clicking. Do not click on links that look suspicious or unfamiliar.
  • Be cautious of unexpected email attachments, especially if they have unusual file types.

How to Protect Yourself:

  • If you receive an unexpected email or text with a link, do not click it. Instead, visit our website directly by typing the URL into your browser.
  • Utilize browser extensions, email filters, and security software to block potential phishing attempts.
  • Stay updated on the latest phishing tactics and learn how to recognize suspicious emails and messages.
  • If you receive a suspicious email or message that appears to be from Bank of Abyssinia, report it immediately to our free toll customer service number 8397.

Securing Your Banking App


Best Practices for Banking App Security:

  • Create complex passwords that include a mix of uppercase and lowercase letters, numbers, and special characters. Avoid using easily guessable information such as birthdays or common words.
  • Add an extra layer of security by requiring a second form of verification, such as a code sent to your phone, in addition to your password.
  • Regular updates often include security patches that protect against new threats. Ensure your app is set to update automatically or check for updates regularly.
  • Avoid accessing your banking app over public Wi-Fi networks, which can be less secure. Use a secure, private connection whenever possible, or use a Virtual Private Network (VPN) if you must use public Wi-Fi.
  • Always log out of your banking app when you’re finished, especially on shared or public devices. This prevents unauthorized access if your device is lost or stolen.
  • Regularly review your account statements and transactions for any unauthorized activity. Report any suspicious transactions to Bank of Abyssinia toll free customer service number 8397 immediately.

ATM Usage Security


ATM, short form for Automated Teller Machine, which is a self-service banking outlet that can help us withdraw money, check account balance, transfer funds, or even make bill payment using payment card and PIN or secret code sent to mobile phone in response to customers’ cardless service request.

All ATM transactions are performed by providing secure payment card and secret code as well as accessing sensitive private information, that needs to remain secure. Sharing payment cards, disclosing PIN and secret code will led to fraudulent transactions by an authorized person. Therefore, any ATM user shall take the necessary security precautions by following below listed usage guidelines:

Protecting Your ATM Card

    • Always keep your ATM card in safe place;
    • Do not put your ATM card and PIN together;
    • Never share ATM card and PIN information;
    • Keep Personal Identification Number (PIN) secret;
    • Regularly change your PIN;
    • Request for help only from branch custodians;
    • When ATM card is lost or stolen, immediately call to 8397 or communicate nearby branch to block it.

Using an ATM:

    • Observe ATM surroundings for suspicious person;
    • Visually inspect the ATM for skimming devices;
    • Ensure no one can see you entering your PIN;
    • Take or dispose safe your ATM receipt to keep account information confidential;
    • Do not accept strangers offering help;
    • Use an ATM located at well-lit area at night;
    • Take proper precautionary measures when using ATMs at night.
Call Now Button