Protecting your finances and digital identity

In the age of digital banking, it's vital to stay vigilant against phishing attempts – deceptive messages or phonecalls aiming to steal your sensitive information. As your trusted bank, we want to empower you with the knowledge to recognize and avoid these scams, protecting your money and personal data.

Be wary of unsolicited calls and messages

• Nobody, including our bank, will ask from you for "security reasons" passwords or PIN codes. They are always entered during standard login process.

• If you received an e-mail or SMS on behalf of the bank with a link and request to log in - make sure that domain name in the link is our bank's.

• PS! Usually bank does not send you a link with a request to log in. Only exceptions are cases were you have initiated something yourself - applied for loan, placed a deposit.

• If it is necessary to log in to the self-service, it is always safer to go to the bank's website and log in from there rather than to trust the links.

• It can be very difficult to identify the counter-party over the phone. Avoid giving out sensitive personal information and definitely never use passwords or PIN codes in a phone conversations.

We wish you pleasant and secure transactions!

Exercise caution with links and attachments

Hover over links to verify the URL matches the official website. Avoid downloading attachments from unknown sources.
Bigbank internet addresses:

Correct and safe

Incorrect and unsafe

Extremely dangerous and unsafe

• Connection is secure but domain is not bigbank.ee but dynsite.com which does not belong to us.
• On address bar domain name must be followed by a slash. Any other symbol extends real domain name.

• Although address bar contains our bank's domain-name, it's not where it should be. Real domain in this case is googleapid.com

Report Suspicious Activities

Report phishing attempts to your bank and relevant authorities promptly to protect yourself and others.