OANDA Coinpass | Be aware

Don’t invest unless you’re prepared to lose all the money you invest. This is a high-risk investment and you are unlikely to be protected if something goes wrong. Take 2 mins to learn more

CUSTOMER ALERT:

How can you protect yourself and reduce the risk of social engineering?

At OANDA Coinpass your security is our top priority. Our aim is to equip you with the knowledge you need to keep you safe online and off, so you’re able to recognise potential threats and avoid them.
‘Social engineering’ is a form of cyber crime that is on the rise. It’s important that you understand what it is and the warning signs to look out for.

What is social engineering?

It’s when individuals (often referred to as ‘malicious actors’) pretend to be someone else to try and trick you into revealing confidential or sensitive information to them.

For example, a recent trend has seen malicious actors sending fake multi-factor authentication (MFA) links. They create the MFA links to look as if they have come from the organisation they are targeting, attempting to mislead or dupe the recipients into sharing the requested information. In this case, two or more personal details needed to access their accounts - such as username and password.

It’s important to understand that social engineering attacks may involve SMS text messages, emails, and impersonation phone calls. 

Here are the warning signs to look out for:

  • An unverified third party requesting sensitive or confidential information
  • Fake emails that appear to come from an OANDA Coinpass address
  • Unexpected package delivery notifications with an unknown link
  • Unexpected MFA links sent to mobile phones via SMS text message
  • SMS texts sent from an unrecognised number or person

Employing the standard precautions below will help you to avoid becoming a victim of a cyber crime:

  • Use multi-factor authentication on all your banking and utility accounts and apps. The simple act of entering a code on your phone adds layers of protection to your accounts.
  • Do not click on links from unknown persons or suspicious links in emails, especially links that ask you to update personal information.
  • Pay attention to a website’s URL, also known as a web address. Malicious websites may look identical to a legitimate site, but the URL may use a variation in spelling or a different domain (e.g., .com vs. .net).
  • Be suspicious of unsolicited phone calls, visits, or email messages from individuals asking about you, your employees, your colleagues, or any other internal information.
  • Do not reveal personal or financial information on the Internet. See these tips from Ready.gov: https://www.ready.gov/cybersecurity#before.

OANDA Coinpass employees will never request that you share your password over the phone or via email. Be sure to closely monitor your OANDA Coinpass account for any unauthorised transactions. If you identify a transaction you do not recognise, report it to us immediately by contacting support@coinpass.com.