Warning about fraudulent payment requests
sent from a fake e-mail address
This is a warning about possible fraudulent payment requests sent via a fake ProCredit Bank e-mail address. As a bank, we communicate by e-mail exclusively via This email address is being protected from spambots. You need JavaScript enabled to view it. and do not send any requests for payment in this way.
If you would like more information, you are welcome to contact us by phone on +49 69 719 129-100.
Security guidelines
As a bank, we do everything in our power to ensure that our e-Banking platform is secure and we apply the latest security standards. You too can contribute to online security. Please read and follow the security guidelines below.
Blocking e-Banking access
If you suspect that your account has been accessed without your consent or if you lose your PIN, you can block access to your e-Banking account by calling our Client Services hotline on 069 719129-100. Our Client Services department can be reached from Monday to Friday between 9 am and 5 pm. You can also block access to your e-Banking account yourself online by going to “My control panel / Settings” and entering your current e-Banking PIN.
For your own security, e-Banking access is automatically blocked after five incorrect PIN entries.
Note: Unblocking is only possible via submission of a written request to reinstate e-Banking access.
General security guidelines for e-Banking
In order to protect your online transactions to the greatest extent possible, ProCredit Bank uses the latest security software and procedures. Nevertheless, please be aware that the Internet and e-mails can be used to conduct illegal activities. You should therefore take precautions of your own to minimise your risk when using the Internet. We recommend that you follow some simple rules when doing your banking online.
Important information about e-Banking
Always type the URL of ProCredit Bank’s e-Banking platform manually into your browser address bar or launch e-Banking from our website by clicking “Login e-Banking”, and when you do this, make sure that only one window or tab is open. Keep your passwords and login information safe. Never save these on your computer and make sure that they are not accessible to others. Never disclose your personal security details, such as your PIN, to third parties. ProCredit Bank staff will never send you an e-mail, call you or contact you by any other means to ask you for your password or PIN. Also, we will never ask you to confirm or enter your details on a website. Do not choose a password that is too simple. Never choose your date of birth or personal information such as your name, telephone number, postcode, etc., and do not use your e-Banking PIN as a password for other online sites. Be cautious of websites with addresses beginning with an IP number instead of a domain name (e.g. https://123.456.789/...) or with additions to or variations of ProCredit Bank (e.g. www.bank-site-procredit.net). Avoid logging into your e-Banking account on public or unfamiliar computers (e.g. at Internet cafés or libraries). Never leave your computer unattended while you are logged into e-Banking. Always click the “Log out” button to finish your e-Banking session. If you forget to log out in this way, or if you must leave your computer unattended for an extended period of time, the program’s built-in timeout mechanism will automatically terminate your session and log you out after 5 minutes of inactivity. For control purposes, the header bar of the e-Banking page shows you when the last log-in took place. Make sure your connection is secure: e-Banking is accessed via a secure https connection (SSL connection). You can tell that your connection is secure when the closed padlock icon appears in the status bar of your Internet browser. Depending on your Internet browser, the status bar can also be partially or entirely green. The SSL encryption protocol uses a minimum 128-bit encryption and protects your personal information from unauthorised access by third parties during transmission. By clicking on the padlock symbol, you can check which authority issued the certificate. If the padlock is open, or if the certificate was not issued to ProCredit Bank, do not make any transactions and inform our Client Services department on 069 719129-100.
Important information about protecting your computer
It is absolutely vital that you use appropriate security software and a firewall to protect your computer against external virus and Trojan attacks. Use a virus scanner and security software – new viruses, worms and Trojans appear every day. For more information, visit the Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik): www.bsi-fuer-buerger.de. Only install software from trusted sources. For e-Banking, use only Internet browsers that have been released by their official producer, e.g. Microsoft Internet Explorer, Mozilla Firefox or Apple Safari. Use only the most recent version of the Internet browser. The browser should be configured to ensure that content from password-protected sites is not saved locally; this ensures that sensitive information, such as account numbers, is not saved. We recommend de-activating the “auto complete” function. Use the most recent program versions, as well as the latest security updates for your operating system, Internet access software and browser. Additionally, you should carry out regular security scans to make sure that there are no viruses on your computer.
If you have any questions or queries, please contact our Client Services department on 069 719129-100 or send us an e-mail at This email address is being protected from spambots. You need JavaScript enabled to view it.. You can also contact us by using our contact form.
Phishing
What is phishing? Phishing is the practice of sending e-mails that look legitimate but are designed to trick Internet users into giving their personal information to third parties. These e-mails prompt the recipient to open a forged website, usually by clicking on a link within the e-mail itself. The forged websites are often almost impossible to distinguish from the original website. Once on the forged website, the Internet user is prompted to enter personal and confidential information, such as bank account access details, PIN, etc., or is instructed to send the information directly to the false e-mail address. Phishing can also involve so-called “frames”. Frames, which enable multiple websites to be presented together, can also be manipulated by criminals who exploit programming errors in various browsers for fraudulent purposes.
How can I protect myself against phishing?
Carefully check the address of every e-mail and do not open any e-mails from unknown senders. Unfortunately, phishing e-mails can be made to look like they were sent from ProCredit Bank. The sender field of an e-mail is fairly easy to manipulate. Even so, most phishing e-mails can be recognised as scams. In most cases, the criminals will not know your name and will therefore use an anonymous form of address, such as “Dear Customer”. Additionally, phishing e-mails usually contain grammatical or spelling errors. Always remember that we will never send you an e-mail requesting your personal details. Never open our website from a link contained in an e-mail. Always use the “Login” link on our website to access the browser-based e-Banking and always leave e-Banking via the “Log out” button.
Pharming
What is pharming? Pharming refers to the practice of replacing the IP address of a particular homepage with a fraudulent IP address. The user is automatically redirected to the forged site without realising it.
How can I protect myself against pharming?
Always use the latest versions of browser software, virus scanners and e-mail programs, and do not surf the Internet with administrator rights enabled. When disclosing sensitive data such as PINs or bank account information, make sure that you are on an encrypted homepage (which is indicated by a padlock symbol in the status bar). By clicking on the padlock symbol, you can view the page’s security certificate. The domain name specified in the certificate must match the name of the homepage that you just accessed. Also, always check the URL to verify that it begins with “https”, instead of “http”, as the “s” stands for secure. In addition, make sure that the domain name in the URL of the loaded page is spelled correctly and has not redirected to a domain name with a slightly different spelling, perhaps with additional letters or with the letters rearranged. End the session immediately if the certificate is not valid or if the browser displays an error message.
If you suspect irregularities in ProCredit Bank e-mails, or if you doubt the authenticity of the sender’s e-mail address, please inform our Client Services department immediately on +49 069 719129-100 or send an e-mail to our IT department at: This email address is being protected from spambots. You need JavaScript enabled to view it..