At TorFX we have numerous security measures in place and always put the safety of your funds first. However, there are also steps you can take to protect your transactions from external threats.
We rely on you to check that the person you’re paying is genuine and that the account details you’ve been given are correct. Fraud has become a big risk for everyone. Unfortunately, we can’t always recoup money that’s been sent to a criminal.
Password Security
Password protection is everywhere, with the average person having 23 online accounts requiring a password.
With so many to remember it’s not surprising that many people use the same password for multiple accounts and rely on memorable words, dates or phrases.
However, using a pets name or your birthday just isn’t secure enough.
If you want to create a super secure password follow the tips below:
Use 12 characters minimum
While there are no set parameters around password length, 12-14 characters is considered the optimum.
Use numbers, symbols, capital letters and lower case letters to build your passwordDon’t use personal information
Passwords based on personal information are far easier to crack than passwords based on random collections of words or characters.
However, even if you avoid using your birthdate or pets names in your passwords it’s still essential to restrict who has access to your private information online.
To safeguard your information you should check the privacy settings on your social media profiles, review the privacy policies of websites you use and refrain from taking part in online quizzes or games which ask for access to your social media accounts.
Make passwords complex
The more complex your password the less likely it is to be cracked. Use words and phrases with no direct connection to you and replace letters with special characters and numbers where possible.
As an example, bLu8sWan37?? meets the requirements above and would take a computer 63,000 years to crack. Adding a third word, making the password bLu8sWan37??Guit@r, would push the time taken to crack it to 380 quadrillion years.
Use a password checker
Review the strength of your password by running it through a secure online checker.
Don’t reuse passwords
An unfortunate side effect of making your passwords super secure is that they’re often harder to remember but don’t use this as an excuse to use one password for multiple accounts.
If a fraudster manages to crack your password for one account and you use it across multiple platforms they could potentially access them all.
Use a variety of passwords for maximum security.
Never share your password
Try to commit your passwords to memory and never write them down or share them with anyone.
You should also aim to change your passwords fairly regularly.
If you have any concerns that your password may have been compromised change it immediately.
At TorFX we will never ask for your password, and you should never share it with us.
Computer, Mobile and Tablet Security
Follow these top tips to maintain computer, mobile and tablet security.
Anti-virus software
Always have active anti-virus software on your devices and update your software and applications on a regular basis.
Password protection
Always protect your home Wi-Fi with a secure password (see our section on password security for more information).
Forget me
When using a computer, tablet or mobile which isn’t yours, never tick the ‘Remember me’ option. Always log out of a device when you’ve finished using it.
Public networks
Only connect to public networks you trust, and don’t use them where possible. Using mobile data is generally more secure than connecting with public Wi-Fi.
Always check your surroundings before logging into secure sites in a public place.
Click bait
Links or pop-ups commonly interrupt your experience when browsing the web – so you need to be careful not to click on them.
Suspicious links or pop-ups typically use prizes, urgency or threats to encourage you to click (with messages like ‘Click here to win £1000’ or ‘Your account is under attack’.
Use unexpected security questions
Many sites ask you to set security questions/secret answers, and the questions are often things like ‘Mother’s maiden name’.
Be aware that any information you’ve shared on social media or other web resources could be accessed by fraudsters, so avoid any security questions which can be answered with information in the public domain.
Where at all possible pick questions that only you know the answers to.
Enter web addresses manually
When visiting a website type the address directly into the search bar to make sure you’re going to the right place.
If clicking on a link to a website following a web search, be on the lookout for these signs of authenticity.
Transfer security
When making an international payment you should always be confident that the recipient of your funds is legitimate.
Be sure to verify your recipient’s details and their reason for transfer. If you aren’t 100% comfortable with the payment don’t be rushed into making it.
Email Security
When you receive an email it’s important to verify that it’s from a legitimate source.
We send several different types of emails to make sure you have access to all the information you need to plan your currency transfers for the right time, and there are points you can check to ensure the email you’ve received is from our team.
Give any email you receive from us a proper scan before clicking any of the links within it.
If there’s anything unusual about the communication or anything you would like to check, contact your Account Manager directly or email [email protected].
What should you look out for?
Telephone and Text Message Security
Receiving unsolicited phone calls and texts is something we’ve all had experience of, but some scam calls can sound very convincing.
These simple steps can help protect you from fraudulent calls and texts.
Before answering a call
Fraudsters can make themselves appear genuine using legitimate caller IDs.
Enter the number into a search engine to check whether it belongs to a real company/a company you’re comfortable talking to.
If you think a call is from us but you aren’t sure, check the numbers listed on the contact section of our website. You can also add your Account Manager’s number to your address book so you always know it’s them calling.
After you’ve picked up
When on a call never ever give out passwords or key security information, no matter who the person on the other end of the phone claims to be.
Text messages
We will send you occasional texts under very specific circumstances, for example if you’ve set a rate alert or have requested a One Time Pin.
If you receive a text message asking you to reply with a password, to call an unfamiliar number, or to click on a link, ignore it and contact your Account Manager by phone or email.
Tactics to prepare for
With any unsolicited calls or emails look out for these particular traits and tactics:
Online Service and App Security
Our online service and app have a number of inbuilt features to protect your transactions.
Online Service and App
App Only
Reporting fraud
If you notice something suspicious or think you may have been a victim of fraud, please let us know as soon as possible by contacting us on 1800 507 480 or [email protected].
Protecting yourself from fraud
We’re confident in the security systems we have in place but it’s vital that you stay vigilant too.
Our Fraud FAQs provide lots of useful information about protecting yourself from fraud, while our Help with fraud section has links to useful organisations.
Remember, an offer being too good to be true, being asked to send money out of the blue or being put under time pressure can all be warning signs. Never send a payment if you have any concerns and contact us immediately if you do – we’re here to help.
We can accept no responsibility for funds being sent to the wrong account based on the content of a fraudulent email, so always verify that any payment details sent or received by email are genuine, using a trusted source.
Fraud FAQs
I think I’m the victim of a scam in connection with my account. What do I do?
Contact us as soon as possible on 1800 507 480 or [email protected].
You can also report fraud to the police via Cyber.gov.au using their on-line reporting tool or by calling 1300 CYBER1 (1300 292 371).
You can also report fraud to the police or relevant anti-fraud authorities.
What can I do to protect myself against fraud?
These are some key actions you can take…
The above isn’t a full list but it gives you an idea of the type of questions you should be asking. You’ll find more on this in our Scams to watch out for section.
How do I spot someone trying to de-fraud me?
We’ve listed a range of red flags based on different transfer requirements in our Scams to watch out for section. It’s crucial that you take the time to check that your payment isn’t falling into the wrong hands.
Scams to watch out for
The red flags and warning signs to look out for can differ depending on the reason for your payment. Below are some of the main things to be wary of.
Payments to friends, family, or someone you’re in a relationship with
Instances of relationship fraud have increased enormously in recent years.
Be particularly careful about sending money to someone you’ve never met in person, especially if you made contact via a dating app. Are they now asking for help with medical fees, housing or travel costs? Are they genuine?
Also beware impersonation scams, where you’re asked to send money to a family member who’s in trouble. Always contact that relation independently to check that a fraudster hasn’t got hold of their phone or hacked their social media accounts.
Have you checked that the goods exist, and that the supplier is genuine?
Be wary if you’re asked to pay a deposit or a big fee up-front as this could be an advance fee scam. Where possible, always check online reviews and get an invoice before paying anything.
Have you met the supplier? Do they have a registered business address? Are the contact details given by the supplier vague (maybe just a PO Box and a mobile or premium number)? Always verify that the person or business you’re dealing with is legitimate before sending a payment.
Fraudsters can intercept payments and redirect money to their own accounts, often by sending out a false invoice or email featuring their own account details. Make sure that the account details you’re paying into are genuine and think about sending a small payment first to check that the money has gone to the right place. This type of fraud is a particular risk in the property and real estate sector.
If an investment sounds too good to be true (high returns and low risk), it could turn out to be a scam.
Be wary of dealing with any company that approaches you out of the blue and always check that the property or investment you’re buying exists.
Is the broker willing to supply his/her copy ID? Does the company promoting the investment have a registered business address? Are the contact details vague (maybe just a PO Box and a mobile or premium number?) What do the online reviews say?
Are you being put under pressure to buy? Always check the ASIC Register to see if there are any warnings about the individual or company you’re dealing with and look at the Moneysmart’s Warning List. Seek advice from an ASIC regulated firm before going ahead.
Where the company that has approached you is based outside of Australia, have you checked the local register to see if they are regulated in the country they claim to be in?
Help with fraud
You can get additional help and advice on fraud from the following organisations: