Banca Ifis Logo 40

Protect your online security

In an ever-evolving digital environment, it is becoming increasingly important to learn how to protect our personal data from cyber attacks. The main threats we can run into when using web services or applications include: 

  • Malware: programs used to compromise a computer system; 
  • Phishing, smishing and vishing attacks: situations in which an attacker pretends to be a trusted sender in order to obtain your personal information, such as your login credentials or financial data (e.g. your credit card number).

We want to give you a few simple tips to help you protect your banking data on the web.   


Manage your passwords carefully

Creating a password is a very common task in the computing world. Here are some tips on how to increase password security: 

  • Complexity: it is important not to be predictable, so avoid using your name or surname, date of birth, or names of people that are closely related to you, especially if they use social media.  
  • Compound characters: for your password, you should use more than 8 characters, including letters (upper and lower case), numbers and special characters (e.g. *, &, #, %). A password will be stronger if random characters are used.  
  • Diversification: use a different password for each website. In fact, the risk of an attacker finding out your login credentials and gaining access to all your profiles will significantly increase if you use a single password for all your activities. Additionally, make sure you change your passwords frequently. 

Safely stored: make sure you keep your passwords in a safe place and away from prying eyes.

Sito sicuro

Recognise secure websites

Check whether these elements are in website URLs to make sure that communication is secure: 

  • Use of the HTTPS protocol: if a website URL has ‘https://’ in the address line, this certifies that you are browsing a secure website. The presence of the letter ‘S’ (for ‘secure’) indicates that communication between the devices is encrypted and, consequently, protected from prying eyes.  
  • The SSL certificate: another element to take into consideration when checking if communication is secure is whether an SSL certificate is present on the website you are browsing. By clicking on the lock icon in the address bar, you can check for yourself whether the website has an SSL certificate and view certificate information. 
  • Check the URL: check the website’s web address and make sure it doesn’t have any spelling mistakes and any unusual characters (e.g. ‘. xyz’). Any errors might be a hint that the website is not secure or that it is a fake website.
sicurezza email

Check sender and content of emails

E-mails or text messages are the main ways in which hackers can illegally obtain your login credentials and sensitive information. We sometimes receive e-mails from seemingly trustworthy senders in which they ask us to click on a link and enter our data so that we can access a service or log into the reserved area of our home banking service. You should always check the sender e-mail address and remember to never click on unknown links. Never enter your login credentials on websites you do not know. In order to recognise potential cyber attacks, make sure you check the following carefully: 

  • If there are spelling mistakes, translation errors or incorrect formatting in the message, this is a red flag and is best not to bother reading such communications. 
  • If you don’t know the sender or if the message contains very long words or unusual characters, it is best to be wary.  
  • Even if the sender is Banca Ifis, please carefully read the content of the message and what you are being asked to do.

Keep your data secure, also in your everyday activities

The following is a list of good practices to bear in mind in your everyday life to mitigate the risk of cyber attacks: 

  • Try to avoid connecting to public Wi-Fi or unprotected networks without authentication: these networks are not very secure, so there is a greater risk that they will be intercepted by a malicious attacker. 
  • Set up your home Wi-Fi network with a complex password: you should always replace the default password with a new one, as this will make it more difficult for unauthorised users to access your Wi-Fi. 
  • Never leave your devices unattended and avoid leaving your passwords in plain sight. 

Do not write down your PC password anywhere where it can easily be found by others. 


Bear in mind that: under no circumstances will Banca Ifis contact you to make transactions on your current account, nor will it request authorisation to access it. It will also never ask you to provide your login password or PIN code via e-mail, text message or phone.

These tips can help you make these online scams less effective, so you should always keep them in mind in order to spot them and be better prepared to avoid them in the future.