Update your personal data 100% online, simply and securely, without going to the bank. It takes about 10 minutes! You only need: valid ID card, mobile phone or any other device (tablet, laptop or desktop) with camera and Internet access, and a valid email address. Updating your personal data is a legal mandatory process, and failure to do so may result in restricted access to the banking products and services you have at Credit Europe Bank.

Phishing: Be aware of scam

Exchange

Symbol BNR Buy Sell
EUR 4,9769 4,9000 5,0500
USD 4,5843 4,5100 4,6600
GBP 5,8121 5,7200 5,9000
CHF 5,2243 5,1900 5,2500
SEK 0,4454 0,4120 0,4660
100 JPY 3,0530 2,9900 3,1500

* Current account exchange rates

Find out more
Natural person 1 month* 3 months
EUR 0,60% 1,00%
RON 5,75% 6,75%
Find out more
Index Last update Rate
EURIBOR 12 LUNI 23.02.2024 3.69700%
EURIBOR 6 LUNI 23.02.2024 3.90700%
IRCC 01.01.2024 5.97000%
ROBOR 3 LUNI 23.02.2024 6.08000%
ROBOR 6 LUNI 23.02.2024 6.12000%
SARON 1MC+M1 23.02.2024 0.63700%
SARON 3MC+M3 23.02.2024 0.70220%
SARON 3MC+M6 23.02.2024 0.77320%
Find out more

Phishing attack using the logo of Credit Europe Bank (Romania) S.A.

A phishing attack using the logo of Credit Europe Bank (Romania) S.A. is in progress. The people who receive such e-mails - both clients and non-clients of the Bank, are prompted by the text of the e-mail to provide confidential data. For your safety, do not access the links in these emails and do not provide your security data or personal data via email, text messages or phone calls.

The email from the phishing attack looks like this:

From: "Ϲrеdit Eurοре Вank (Romania) S.A." (various email addresses not related to the bank)

Subject: Necessary Action for Your Account at Credit Europe Bank (Romania) S.A. – Update Required

Dear customer,

We are contacting you regarding an important update regarding your account at Credit Europe Bank (Romania) S.A.

Action Required by 11/24/2023.

Although we tried to contact you previously, we have not yet received the necessary information.

As a precaution, certain functionality of your account has been temporarily limited.

To restore full access and avoid any interruptions, please log in and provide the requested details within the next 24 hours:

Log in

Thank you for your prompt attention.

Regards,

Ϲrеdit Eurоре Вank (Romania) S.A.

Copyright © 2023 - Ϲrеdit Eurοре Ваnk (Romania) S.A.

Credit Europe Bank has never requested and will never request personal data from customers following verification or alert messages sent by email, which contain forms or links to other websites and in which customers are asked to fill in personal data or information such as would be access credentials in internet or mobile banking applications, card numbers and related data (PINs, cvv/cvc codes, etc.), account numbers and data of their holders, etc. The official information of the Bank's clients is always carried out in compliance with the rules of personal data protection.

Messages like the one above may appear to be initiated by Credit Europe Bank, but in reality they are carried out by persons who do not represent the Bank and are intended to obtain unauthorized information.

E-mail addresses are obtained by malicious persons (hackers) from the Internet or from other sources, without these persons knowing exactly which bank the holders of those e-mail addresses work with. By sending fraudulent messages in the name of a bank to the acquired email addresses, they hope to find clients of the respective bank, to whom the message may be applicable.

Fraud attempts can be identified by the following signs:

  • confidential information is requested (username, password, PIN code, card series, email address, phone number, customer code, etc.)
  • an urgent response must be sent
  • e-mail messages include web addresses, similar to those owned by various legal organizations, but with slightly modified names

We remind you that the data requested by attackers (username, password, PIN code, card series, CVC, email address, phone number, customer code, etc.) are intended exclusively for users of banking services and must not be disclosed for any reason.

We also recommend that you be careful on which sites you enter your card data to make payments.

In order to prevent any fraud, we recommend that you do not listen to such phishing messages. If you are a customer of Credit Europe Bank and you have already replied to such a message, we recommend that you contact us urgently using the contact details on our bank's website, CEBLine available non-stop at tel.: 0801.000.000 ( callable number from the Telekom Romania network) or 0750.000.000 and 0724.100.000.

Phishing - what does it mean

Phishing is usually done through email, ads, or by sites that look similar to sites you already use. For example, someone who is phishing might send you an email that looks like it's from your bank so that you'll give them information about your bank account.

It's important to remember that we'll never send you text messages or emails that ask you to confirm, update or disclose personal or banking information. You can reduce your risk of being scammed by paying close attention to messages or emails.

Common types of phishing

  • In this case, the fraudsters send to the cards’ users an e-mail that simulates, in a very truthful way that it would come from the issuing bank of their card. By this email the cards’ users are informed either that they have to update their data or that their accounts have been blocked due to the application of new security measures, the users being invited to access a link to solve the situation.
    Thus, the user is directed to a fake page, which mimics the website of the issuing bank, in which he is asked for the security elements of the card and other information (e.g. security codes sent via SMS to customers) that allow them to enroll cards in the application Apple Pay / Google Pay (wallet), installed on fraudsters' phones.

    Generally, at this stage of the card enrollment procedure, the issuing bank sends the correspondent security code in a generic SMS message. It is extremely important that users read these SMS very carefully in order to identify those fraudulent cases and not to transmit to third parties the security codes received via SMS, respectively not to enter them in the fake pages. Once the security code is entered on the fake page, it is sent in real time to the attackers, who complete the card enrollment procedure and gain full access to the available funds related to that card, which they use immediately.

    This pattern of fraud was also encountered in the case of marketplace platforms, in the sense that the attackers requested the above information under the pretext of paying for products sold through marketplace platforms, the result being the same, the enrollment of cards in electronic wallets controlled that are by attackers.

     

  • This type of fraud is a version derived from the above version, with the difference that the attackers do not seek to enroll the card on wallet applications, but to gain access to the internet banking or mobile banking application of the payment service user, by activating the tokens used for authentication/ authorization (software type) on their phone. However, the mode of operation is almost similar.

    In this case, too, it is extremely important that users read carefully these SMS messages that contain security codes to identify those fraudulent cases and not to enter unsolicited security codes in various applications.

     

  • Card-on-file operations involve the enrollment of the card in a merchant's system, by entering the data on the card at the time of the first payment transaction, the subsequent payment transactions being automatic based on the mandate offered to the merchant during the card's enrollment. Such transactions are usually made to merchants that offer games / applications / monthly subscription services to streaming services / etc., generally being initiated by customer or the family members of the payment service user, but they can also be fraudulent transactions such as because of frauding of the accounts held with such traders.

    Generally, in the first stage of the card enrollment procedure, the issuing bank sends the respective security code in a generic SMS message. It is extremely important that users read these SMS very carefully in order to identify those fraudulent cases and not to transmit to third parties the security codes received via SMS, respectively not to enter them in the fake pages.

More information on how to keep your data safe can be found in the section on data security.

Be informed