Useful tips for Fraud prevention!

Transactions’ safety is Piraeus Bank’s priority. Find out how to protect your card and PIN. Perform your abroad, domestic and online transactions with safety. Recognize and avoid Email- sms Scams (phishing).

ATM fraud prevention

  • Be aware of others around before using an ATM machine.
  • Be sure that nothing seems unusual near the ATM machine.
  • If you find any suspicious object, alterations or markings in the card slot, as warped frame, abrasions, additional accessories, holes etc. avoid using this ATM machine. Please notify immediately the Bank.
  • If your card is unexpectedly retained by an ATM or you are facing any problem during the transaction, contact Piraeus Bank (+30 210 32 88 000 from Greece and abroad).
  • Do not take any advice from 'helpful' strangers that happen to be standing near an ATM, especially if your card has been unexpectedly retained.
  • If the machine exhibits any damage, contact Piraeus Bank (+30 210 3288000).
  • Always use your hand as a shield while entering your PIN to keep it secret.
  • When the transaction is completed and before leaving the ATM, you should store both card and cash safely.
  • Ensure that you are alone while using an ATM at night, especially at not crowded places.
  • When using an ATM booth, do not allow unfamiliar people enter the lobby during the transaction.
  • Do not leave your keys or valuable objects in your car while using the ATM and do not leave your car engine into operation.
  • Ensure that you received your card after the transaction.
  • Never leave the transaction receipt by the ATM machine.
  • Always shred all documents (receipt, correspondence, etc.) that can contain any of your personal information (name, address etc.).
  • Regularly check your accounts for transactions you may not recognize and report them directly to Piraeus Bank.
  • Pay attention to card expiry dates. If your replacement card hasn't arrived, call Piraeus Bank (+30 210 3288000) to check the procedure status.

Protecting your card and PIN

  • Avoid using as password (PIN) a date of birth, phone number or other personal information that can be easily understood by abusers.
  • Avoid writing down the PIN, for example in the note list of your mobile phone.
  • Avoid using the same PIN in more than one card.
  • Choose and memorize the PIN code that only you will know and that cannot be identified by your personal objects in your wallet or bag.
  • Never disclose your PIN to anyone, not even a Police officer or a bank employee (Piraeus Bank staff would never ask for your PIN).
  • Check your statements regularly for any transactions you do not recognise and report them to Piraeus Bank immediately.
  • Do not give or lend anyone your card.
  • When you are outside, hold only the cards you are willing to use.
  • Report immediately the theft or card loss to Piraeus Bank (+30 210 3288000).
  • Never keep your PIN with your card.

Online security tips

  • Change your passwords regularly and use a combination of letters, numbers and special characters such as # and @. Do not use your winbank passwords for other online accounts or activities.
  • It is your responsibility to safeguard your personal security codes. If you believe that a leakage exists, please call us immediately (+30 210 3288000).
  • Do not share your personal information / data.
  • Do not give via telephone your card details, as this poses a risk of leakage of your personal information to third parties.
  • Navigate and use your cards data at certified sites / dealers. If you are not sure about their safety assurance avoid using them.
  • Before each use of Piraeus Bank electronic services, make sure you navigate in the safe environment of Piraeus Bank. You can identify the official page of Piraeus Bank and winbank from the security lock at the beginning of the search bar.   
  • Social media is increasingly popular, but it's a good idea to keep certain personal information private. Avoid sharing personal details that are used by financial institutions to identify you, such as your birth date, home address, mother’s maiden name, schools attended and pet’s name. Fraudsters may use this type of information to help gain access to an account since they are common answers to security questions.
  • Use Piraeus Banks’ electronic services only through the official website ( and not via links given by other sites.
  • Always carefully review the privacy options for any social network you join. The privacy options and tools for social networks can be complex and should be reviewed carefully so that there is no disclosure of information you meant to remain private.
  • Piraeus Bank will never ask you, in any way (by phone or e-mail) account details, card details or passwords. It is personal information and must not be disclosed to anyone.
  • After completing your transaction, disconnect from the online services of Piraeus Bank (winbank web banking) by selecting "Exit"".

winbank Security

At Piraeus Bank, we have put in place advanced systems and established security protocols to ensure your secure access to all winbank services. We make sure that your personal and banking data are kept private as they are transferred and store and we safeguard all winbank channels from unauthorised access.

Methods per winbank channel

To ensure maximum security for all winbank services, we use cutting-edge methods that safeguard your transactions and protect your data:

Fraud via mail/sms/voice-telephone

Phish e-mail

Phishing is usually a two-part scam involving emails and spoof websites. Fraudsters, also known as phishers, send an email to a wide audience that appears to come from a reputable company. This is known as a phish email.

In the phish email, there are links to spoof websites that imitate a reputable company’s website. Fraudsters hope to convince victims to share their personal information by using clever language, such as an urgent need for you to update your information immediately or a need to communicate with you for your own safety or security. Once obtained, your personal information can be used for fraudulent transactions.

Text-message phishing (smishing)

A phishing attempt sent via SMS (Short Message Service) or text message to a mobile phone or device. This tactic is also referred to as smishing, which is a combination of SMS and phishing. The purpose of text message phishing is the same as traditional email phishing: convince recipients to share their confidential information.

Telephone or voice phishing (vishing)

Known as vishing, or voice phishing, this tactic is a phishing attempt made through a telephone call or voice message. Fraudsters may have the ability to spoof their caller ID so it could appear that the telephone call is coming from the Bank. Fraudsters may also have the identifying customer information, such as your name, which they may use to make the call appear “authentic”. They target the sensitive data extraction that may be disclosed by the victim. These will by his “consent” be used against him. If you do not know your caller, please end the call and confirm his details through Piraeus Bank's contact center at (+30)2103288000.

Do not respond to any of the above categories that ask for account details, cards or passwords and do not follow links that are contained and prompt you to sign in to winbank.
You can identify the official page of Piraeus Bank and winbank from the security lock at the beginning of the search bar.   

Forward such "suspicious» e-mail or text messages to the Bank at or call +30 210 3288000. Then delete it from your email or mobile.

Mobile / Computer Security Tips


When you use a mobile device to access your accounts, keep these tips in mind:

  • Use the security functions that come with your device, such as the keypad lock or phone lock function when it is not in use, or the “find my phone” or “wipe out memory” functions if it is lost.
  • Frequently delete text messages from your financial institution, especially before loaning out or selling your mobile device.
  • Keep your account numbers, passwords, Tax ID and date of birth private. Never share your personal or financial information in a text message, phone call or email.
  • If you lose your mobile device or change your mobile phone number, go to the nearest branch of Piraeus Bank to delete it from your personal information.
  • Avoid storing your banking password or other sensitive information on your smartphone or in an app where it could be discovered if your phone is stolen.
  • When you finish banking on your mobile device or using the winbank mobile banking App  always log off and not just close the browser or app. For your security, Piraeus Bank mobile apps and mobile banking site will automatically log you off after 10 minutes of inactivity.
  • To ensure the highest level of protection, keep your mobile operating system up to date by following the manufacturer's instructions.
  • Be cautious when using public hotspots. Carefully consider your Wi-Fi and Bluetooth connection settings, even at a trusted retailer, as fraudsters can spoof the name of reputable hotspots.
  • Download winbank mobile banking App  from reputable sources only to ensure the safety of your account information.
  • Treat QR codes (dimensional Barcodes that can be decoded easily with high speed and can be fast electronically read. The abbreviation QR comes from the English words Quick Response) with the same suspicion as you would do with any URL or link you find in an email. QR codes can be used by fraudsters to redirect you to websites that may request your personal and financial information or could corrupt your mobile device.
  • Be careful when you scan QR codes, as some may have been tampered with, if placed in a public place.
  • Use a QR code scanner from a reputable source that will check links for malicious content. This capability can be found in the app description before downloading.


  • Before downloading an update to your computer program, first visit the company’s website to confirm that the update is legitimate.
  • Protect your computer with security software (firewalls, antivirus, and antispyware).
  • Be wary of conducting online banking activities on computers that are shared by others. Public computers should be used with caution. Online banking activities and viewing or downloading documents (statements, etc.) should be conducted, when possible, on a computer that you know that is safe and secure.
  • Configure your devices to prevent unauthorized users from remotely accessing them. For example, if you use a home wireless router for your home internet connection, follow the manufacturer’s strict recommendations to configure the router with appropriate security settings.

Travelling abroad

  • Ensure we have your contact details up to date before travelling abroad. Particularly your mobile phone number and email address.
  • Take a note of our emergency phone number (+30 210 3288000) for lost/stolen cards. We recommend you to store it in your mobile.
  • Prefer to take with you the card or cards you are willing to use.