Home Switch to Traditional Chinese Switch to Simplified Chinese Security Information
BOC Tower
Home Switch to Traditional Chinese Switch to Simplified Chinese Security Information Contact Us Advanced Search
Bank of China (Hong Kong) Limited Shadow
Bank of China (Hong Kong) Limited Shadow
Bank of China (Hong Kong) Limited Personal Banking Corporate Banking Investment Services Market Information Mainland Business About Us Tools
Curve Shadow
Shadow
Related Companies
Online Login
Personal Customers
Business Customers
Online Login
Related Companies
Investor Relations
BOC Hong Kong (Holdings)
HKD  
The information is for reference only
Home
Section Arrow Security Information
Grey Line
Customers are reminded NOT to login Internet Banking through hyperlinks embedded in any emails. Bank of China (Hong Kong) (BOCHK) will not ask for customers' account number, password or any personal information via emails.
BulletStatement on prevention of fraudulent websites
BulletWhat have we done to protect you?
BulletWhat can you do to protect yourself?
BulletOther Online Frauds
BulletFrequently Asked Questions
Grey Line
Round Corner
Grey Line
Grey Line
Grey Line Red Arrow Statement on prevention of fraudulent websites

Customers are reminded to be vigilant of any fraudulent websites which seek to pass off as www.bochk.com.

Unless you are certain that you are connected to the website of BOCHK(www.bochk.com), particulars of your e-banking accounts should not be provided. 

Under no circumstances would  BOCHK send out any emails to ask for or verify customers' personal information,  including but not limited to account number, PIN, account balance, HKID card number or passport number. You should not access your e-banking accounts through hyperlinks embedded in emails sent to you from any unknown source.  It is always prudent to type in our web address into the browser address bar to ensure the security of your personal information.

Should you have any queries relating to the statement, please feel free to contact us.
Back to Top
Grey Line
Grey Line
Grey Line Red Arrow What have we done to protect you?
  • With the use of 128bit Secure Socket Layer (SSL) encryption, we ensure the security of your data during transmission.
  • Our web servers are protected by firewall systems to prevent unauthorised access.
  • Our system will monitor each login attempt. If there are several consecutive login attempts with incorrect password, the online service will be suspended immediately.
  • In the event that you forget to logout from the Internet Banking, your online access will be disconnected automatically after a short period of inactivity to prevent unauthorised transaction.
  • Simultaneous login of the same User ID via another computer is not allowed.
  • We will not ask for customers' account number, password or any personal information via emails.
  • Internet Banking now provides digital certificates and SMS-based one-time password (OTP) as your two-factor authentication tools for further verification when you need to conduct high-risk transactions online.
Back to Top
Grey Line
Grey Line
Grey Line Red Arrow What can you do to protect yourself?

 Create and keep your password and personal information in proper ways

Protect your personal computer against hackers and viruses

Take precautionary measures while you are using Internet Banking

  • Do not access Internet Banking from a shared computer in public such as cafes or bars with Internet access.
  • Do not login Internet Banking through hyperlinks embedded in any emails or search engines.
  • Close all other Internet browsers before accessing Internet Banking. Do not open other Internet browsers or visit any other websites while you are using Internet Banking.
  • Make sure no one can see your user name and account details when you login the Internet Banking.
  • Check your last login and logout record every time you use our Internet Banking. Check your account balance and transaction records regularly. If you discover anything suspicious, please contact us immediately.
  • Click the "logout" button to exit from the system after you have finished all your online transactions. Please always clear the cache and history in your browser after using our Internet Banking.
  • Do not leave your computer unattended before logout.
  • To know more about other online security measures, please click here.

Back to Top
Grey Line
Grey Line
Grey Line Red Arrow Other Online Frauds

Customers should always stay alert to any possible online frauds to avoid unnecessary
loss.

  • Fraudulent claims of estate
    • The email sender claimed to be a banking staff, inviting the recipient to pretend to be the next of kin of a deceased client who has left a huge sum of unclaimed fixed deposit. Upon receiving favourable reply, the fraudster requested the recipient to pay a fee in advance for preparing the necessary documents in order to claim that estate. Finally, the email recipient was cheated and couldn’t contact the sender again.
Back to Top
Grey Line
Grey Line
Grey Line Red Arrow Frequently Asked Questions
Red Arrow Bullet

What is Secure Socket Layer (SSL) 128-bit encryption?
Our Internet Banking uses SSL 128-bit encryption, which is one of the online security standard for commercial application. All data transmitted via Internet Banking is protected by this technology to ensure data security.
Red Arrow Bullet

What precautions should I take when I set up my password?
  • Do not use your date of birth, HKID card number, telephone number or any combinations of your English name as your password.
  • Do not use 3 or more consecutive identical characters, e.g. "333", "bbb", etc.
  • Do not use sequential numbers or characters, e.g. "123", "abc", etc.
  • Do not use your user name or login ID as your password.
Red Arrow Bullet How often should I change my password?
You are advised to change your password regularly, or at least every 90 days.
Red Arrow Bullet

How can I contact the Bank in case of having any question?

You may contact the Bank at the following hotline numbers according to the nature of your enquiries.

  • Customer Service: (852) 233 233 28
  • BOCHK Internet Banking: (852) 233 233 28
  • CBS Online: (852) 3198 8333
  • BOCHK Financial Institutions Online: (852) 3198 8333
  • BOC Credit Card: (852) 2853 8828
  • Internet Banking - the Mainland of China
    • Shanghai Branch: (21) 2306 9090
    • Qingdao Branch: (532) 8573 2828
    • Shantou Branch: (754) 826 8266
    • Shenzhen Branch: (755) 8233 0230
    • Baoan Sub-branch: (755) 2785 3302
    • Futian Sub-branch: (755) 8294 2929
Red Arrow Bullet

How can I protect my personal information?

You may be asked to provide your personal information (such as ID card number and date of birth) as additional identity verification when using Internet Banking. However, you should not disclose your personal information to any third party other than for the aforesaid purpose. You should also keep the documents (such as letters and bank statements) which include your personal information in a proper manner.
Red Arrow Bullet

Why should I update my operating systems and browsers regularly?

You should check and download patches provided by software vendors to fix security loopholes of the operating systems or web browsers. This helps avoid unauthorised access or attacks of computer viruses or hackers.
Red Arrow Bullet What is a firewall?
A firewall is a programme that helps protect your computer and your data from unauthorised access via the network.
Red Arrow Bullet Why should I update my anti-virus software regularly?
New computer virus appears from time to time. To protect your computer from the latest virus, you should update the virus definition file regularly. Most anti-virus software supports the automatic update or download of virus definition file. For details, please refer to the user manual of your anti-virus software.
Red Arrow Bullet

 What is Trojan Software?

Trojan software could stay in your computer system and capture your personal information when you login the Internet Banking. It can even record every input from the keyboard in order to obtain your login ID and password. If you discover anything unusual when using Internet Banking, please do not input any information or password and contact us immediately.
Red Arrow Bullet

 Why should I be careful when receiving emails?

Viruses, Trojan software and hacker programmes can be distributed via emails. Virus like "Worms" can even reproduce and deliver infected emails to the recipients in your address book. Hence, you should not open any unknown or suspicious emails but should instead delete them immediately. Please do not login Internet Banking through embedded links in any emails. You should also perform virus scanning before opening any attachment.
Red Arrow Bullet  How should I setup the security settings of Wireless LAN?
  • Do not place the Access Point (AP) too close to doors and windows.
  • Turn off the power supply and disconnect from the wireless network after use.
  • Do not use the default SSID, enable the Wired Equivalent Privacy (WEP) encryption or other encryption technology and change the password for WEP keys regularly. Do not disclose the security setting of your wireless network to any third party.
Red Arrow Bullet

 Precautionary measures for using Internet
  • Disconnect from Internet after you have finished using Internet Banking.
  • Encrypt and secure your electronic storage media to protect your personal data from unauthorised access.
  • Do not save or keep your password in your browser, and disable the "Auto-Complete" feature to prevent others from obtaining your information via the browser.
  • Disable the "File and Printer Sharing" function and set up the proper access rights of your computer to avoid unauthorised access to your data via the network.
  • Do not download any illegal or unauthorised software to prevent infection of computer virus or Trojan software. Remember to perform virus scanning before opening any files from insecure sources.
Red Arrow Bullet

 Where can I obtain more information about the precautionary measures of using Internet Banking?
Print Email