At BBVA we are aware of the need to ensure the transit of information with people interested in our activities. That is why BBVA has the highest levels of security possible to guarantee the confidentiality of communications. Transactions are made using a secure server with the SSL (Secure Socket Layer) protocol, which is always activated when the service is accessed. The secure server establishes a connection that transmits encrypted information using algorithms, which ensure that it can only be read by the customer's computer and the bank's server. In this way, using the SSL protocol guarantees:
- That users communicate their data to the BBVA server and not to any other fake server.
- That the purchasing data are transmitted in encrypted form between the user and the BBVA server center, thus ensuring it cannot be read or manipulated by third parties.
BBVA will never ask you for your momentum.bbva.com credentials by e-mail, telephone or SMS. If you receive this type of message, please do not provide any information. passwords are secret and only their owner should know them to be used exclusively at momentum.bbva.com.
In addition to the security measures put in place by BBVA, you must also take certain precautions when browsing the internet, increase your security in your daily activity and avoid malware.
Malware, often called viruses, are malicious programs capable of sneaking into a computer, smartphone or tablet for purposes such as: stealing private data, causing the device to stop working properly or take control to perform other malicious actions. There are different types of malware, including:
- Phishing: this consists of sending of an email in which the identity is replaced, in most cases of a well-known organization, and through which the user's data (address, bank details, passwords, etc.) is requested. For the user to provide such data, in most cases, it is necessary to follow a link that appears in the email and once on that false page, enter the requested information.
- Ransomware: This is a lucrative method of technological delinquency. Usually concealed as "parcel delivery services" or any other credible excuse, they are propagated via email with links that facilitate the installation of programs or downloading of infected files. This virus blocks access to computer information and asks for an bailout that will supposedly provide the key to decipher the information.
Below is a series of advice divided into three categories:
- If you have to enter your credentials, check that the address (URL) of the server begins with https, which means that you are accessing a secure server.
- Another indication that the server is secure is the presence of a closed padlock (instead of being open, like on any non-secure server) to the left or right of the address (URL).
- Check the security certificates of the page you are on by clicking on the padlock icon that appears when accessing a secure area, or on the certificate in the navigation bar, and check that the expiry date and domain of the certificate are up to date. The detailed information includes the issuer, the period of validity and for whom the certificate was issued.
- Before clicking on a link, move the cursor over it, which will show the address you will access when you click on it. Check that the address is correct and that it is related to the activity you want to carry out.
- When you have finished any operation or query, remember to use the disconnect button, and then click on OK, if you are asked to do so. This will securely end the session at momentum.bbva.com, and the next time you enter, you will be asked again for your user number and access code.
- On shared computers or if you are connected to a public WiFi, do not access pages that need your username and password, or give personal information such as your postal address, telephone number, etc.
Security on your devices
- Your operating system, your browser and programs of extended use must always be up to date.
- You should install a firewall and antivirus program and always keep them updated. You can find these kinds of free programs at www.osi.es.
- Don't download files on your computer with .exe, .bat, .rar, .zip or .ini extensions if you don't trust the sender. Don't open emails from unknownsenders.
- Set an unblocking pattern on your devices so they can't be accessed by third-parties.
- Don't connect any external device to your devices if you don't know where it came from, such as flash drives, hard drives and unknown cell phones.
- Use complex passwords that are difficult to guess and that contain a mix of lower case, upper case and numbers.
- Do not share your password with anyone. Passwords are secret and only their owner should know them
- Don't write your password down on post it notes or notebooks; memorize it and use specialized password managers. You can find these kinds of free programs at www.osi.es..
- Deactivate the save password option on your browser. It's safer to install it every time you access.
- Change your passwords periodically.
By following this advice you will increase your internet security.