How to reduce eBanking fraud risk

eBanking fraud covers all kinds of phishing and malware infections. It can affect both your company and your private life. In all cases, the goal is the same: to trick you into revealing identification or verification codes, allowing criminals to access your accounts and transfer funds. 

When searching for terms like “login InsideBusiness”, you may encounter a fraudulent Google ad or sponsored result that leads to a fake ING Wholesale Banking or InsideBusiness login page. These pages are often visually identical to the legitimate site. Once you enter your credentials, fraudsters gain access to your account. 

You receive a call from the fraudster pretending to be a bank employee. This is called spoofing. They will ask you to perform some sort of security check or "update", requiring you to generate one or multiple verification codes. A real employee will never ask you to do this.

You might receive an SMS that appears to come from ING, containing a link to a fraudulent website. After clicking the link and entering your details, you may be contacted by a fake bank representative who asks for your credentials. Once obtained, the fraudsters can log in and transfer funds from your account. 

Malware infections typically occur when you open attachments or links in a malicious email, or when you visit compromised websites which exploit vulnerabilities in your browser or operating system to install ransomware. Ultimately, malware will try to steal your personal data and execute fraudulent payments on your behalf.

• Keep your PIN and generated security codes confidential. Never share them with anyone. If someone requests them, end the conversation and report the incident to your bank. 
• Always check if Google advertisment or sponsored result lead you to ING’s safe and secure website: ingwb.com.
• ING will not send you an SMS with a request to follow a link.
• Make sure that you go to the correct login page for InsideBusiness: https://insidebusiness.ingwb.com/. 
• Besides the URL, also check the padlock in the address bar of your browser. That means that the connection is secure and you can check that if the certificate has been granted to ING Group N.V.
• Implement the four-eye principle for transactions. 

• Never generate a security code when not accessing or using online banking yourself. 

• Always check the details, i.e. amount, beneficiary name and account numbers of all payments you are about to sign. 

• Always close an active web browser session properly by clicking on ‘Log out’ and never leave your computer unattended when you have an active session. Close the session or lock your computer. 

• Check your statements and reconcile them regularly. View your debits and credits regularly at least once a week. 

• Protect your work environment by reading and applying the information ING has provided with regards to ensuring a safe work environment. 

• On a periodical basis, check your registered access means for InsideBusiness, and the access means of your colleagues. 

eBanking fraud is a growing threat, but with vigilance and the right precautions, you can significantly reduce your risk. Always verify, never share sensitive information, and stay informed about the latest fraud tactics. 

Go to our banking safely page.

The information on this page is provided to you solely for informational purposes in order to make you aware of the most frequent cases of fraud and provide you with recommendations to protect yourself against it. This information does not ensure that your company, acting upon these recommendations is or will be protected against any occurrence of fraud detailed on this website. No rights can be derived from the use of and reliance on the safeguards you take by following up these recommendations. ING does not accept any responsibility or liability with respect to your reliance on and the actions you take as a result of these recommendations. This disclaimer is governed by Dutch law.