Staying secure online

With so many online platforms and services using password protection, it can be very easy to fall into the habit of using one easy-to-remember password across multiple platforms.

However, one of the most important steps in protecting yourself from online fraud is using unique, complex and secure passwords.

• Aim for 12 characters
• Include a mixture of upper and lowercase letters, numbers, and symbols
• Don’t use personal information
  Passwords based on things like your birthday or pets names are far easier to crack than passwords based on random selections of numbers and letters
• Make passwords complex
  Replace letters with special characters and use words and phrases you have no obvious connection with.
• Use a password checker
  Run it through a secure online checker and find out how many years it would take to crack.
• Don’t reuse passwords
  Use unique passwords for all your online accounts. Using one password for multiple accounts leaves you open to multiple breaches if one gets compromised.
• Never share your password
  This goes without saying, but never share your passwords, don’t write them down, and change them regularly.

If you have any concerns that your password has been hacked, change it straight away.

We will never ask for your password, and you should never share it with us

Here are some simple tips for maintaining computer, mobile and tablet security.

1. Make sure you have active anti-virus software on your devices and update your software and applications on a regular basis.
2. Protect your home Wi-Fi with a secure password.
3. Don’t tick the ‘Remember me’ option when using a computer, tablet or mobile device which isn’t yours, and always log out of a device when you’ve finished using it.
4. Where possible, avoid connecting to public networks and use mobile data rather than public Wi-Fi. If you have to connect to a public network make sure it’s one you trust, and check your surroundings before logging into secure sites.
5. Don’t click on suspicious links or popups, even if they’re promises of prizes or are phrased with urgency.
6. Be selective with your security questions/secret answers and avoid using questions where the answer could be easily found online (your university or mother’s maiden name, for example). Try and pick questions that only you know the answers to.
7. When visiting a website type the address directly into the search bar to make sure you’re going to the right place, or, if clicking on a link to a website following a web search, be on the lookout for these signs:
   • Invalid security certificates.
   • A discrepancy in the URL, e.g. slightly different spellings, characters and punctuation.
   • 'https://' (a sign of page security) being missing from the URL when you look at, or hover your cursor over, a link.
   • A locked padlock symbol in the address bar.

We receive dozens of emails every day, but before you engage with one it’s important to verify that it’s from a legitimate source.

When receiving an email from Foremost Currency Group there are a couple of things you can check to make sure it’s a genuine communication.

If you’re in any doubt about whether an email is from us contact your currency expert or email info@fcgworld.co.uk.

What should you look out for?

• That the email is in our company colours and includes our logo.
• That you haven’t received two emails in quick succession asking you to do different things.
• If the communication is asking you to do something out of the ordinary or encouraging you to disclose personal information, like your password or bank details.
• If the communication has an unusual number of spelling or grammatical errors.
• If the tone of the email is unusually threatening or pushy.
• If the links within the email take you to unusual or unexpected places – hover over the links to check the URL before clicking them.
• If the senders email address ends in ‘@fcgworld.co.uk’ – the majority, but not all, of our emails end this way.
• If there are strange looking attachments or requests for you to download software.
• If you’re being offered a prize for a competition you don’t remember entering.
• Never click on email links or attachments if you aren’t sure that the email has come from a trusted source.

Protect yourself from fraudulent calls and texts by:

• Checking the caller ID – enter the number calling or texting you into a search engine to make sure it belongs to a real company before answering or responding.
• Add our main office line to your address book so you always know if it’s us calling you.
• If you ever receive a text message that appears to be from us but asks you to reply with a password, to call an unfamiliar number, or to click on a link, ignore it and contact your personal currency expert by phone or email.
• If you receive a call or text which makes you feel you need to take urgent action (i.e. warning you about suspicious activity on your account or pushing you to make a transfer quickly) put down the phone or ignore the text and get in touch with us directly

Our online service has a number of inbuilt features to protect your transactions.

• PIN entry – we’ll ask you to enter your PIN at crucial points in the transfer process (like adding a recipient or making a transfer).
• Transactional emails – we’ll send you an email confirming any transactions you make, so you’ll have a record of the latest activity on your account.
• Your activity – You can view your recent and historic activity within our online service.
• You can also check all the devices that have accessed your account.

Check the credentials of any company you use for international money transfers to ensure their authenticity. We were established in 2005 and are authorised by the FCA as an Electronic Money Institution (Firm Reference Number 900204).

When making a transfer to a person you don’t know that well, ask yourself the following questions:

• Is there a way I can check that this person is who they say they are?
• Why would I need to send money to win a prize draw or claim an inheritance?
• Is their request for funds genuine?
• Am I sure I should be sending money to someone I met online?
• Am I being asked to pay for a tax I’ve never heard of before?
• Why do I need to transfer money to claim from an investment?

Additionally:

• If you get a request to change bank details for an existing recipient always check with the supplier verbally before making the change or sending your funds.
• When making payments for bonds or investments it’s important to undertake due diligence on the regulated status of the investment.
• Follow advice from Action Fraud.

When making a transfer follow the advice of Take Five to Stop Fraud.

1. STOP
   Take a moment to stop and think before parting with personal information or your funds.
2. CHALLENGE
   Only criminals will try to panic or rush you. Remember that it’s fine to reject, refuse or ignore requests for funds if you’re not comfortable with them.
3. PROTECT
   If you think you’ve fallen for a scam, contact your bank immediately and report it to Action Fraud.

If you have any doubts about the recipient of your funds or the reason you’re making your transfer, don’t make the transaction.