eBanking Services

Like most leading banks, The Saudi Investment Bank has recently been targeted by a Phishing scam. This is where a scammer sends you an email asking you to key in critical personal information such as your eBank user identity and your password. You should not respond to such emails as we never send you such emails.

The phishing email is, in fact from a scam artist who may use bank logos or other convincing images with official looking instructions that are designed to trick you into believing they are from your bank. Typically, the scammer’s email states or implies that your account may be at risk or may be suspended or deactivated unless you click a link in the email to take you to some webpage where you will be asked for critical personal information, including your password. The scammer might say that someone is trying to use your account or that this is done for "security" purposes or that the bank is migrating to a new system. Once you are at the scammer’s page, you will be asked to provide or to verify personal information like your bank account, your national identity number and your passwords. If you receive such an email, you should delete it and you should never provide any of the requested information.

However, if you are not convinced that you have a fraud email, please contact us directly and explain the email you received. If you do, mistakenly give out any personal information about your bank accounts and your passwords, you may be at risk.

Trojans is the name given to a variety of computer viruses which may use one or more methods of obtaining your personal details without your knowledge. Personal computers can be infected with Trojans through email or by visiting sites that host these viruses. You can protect your computer against these threats by following the security steps shown in “Keeping Safe” below.

Typo squatting or cyber squatting refers to spoof websites that are set up to look exactly the same as the our genuine bank website. The sites are accessed by typing the bank address with various minor typing errors. For example, instead of www.saib.com.sa the fraudsters might set up sites at www.siab.com.sa and rely on customers arriving here through a simple spelling mistake “siab” rather than “saib”.

To avoid being caught by this type of scam you should always type the URL (the website address) into the address bar and check that it is correct before you enter your ebanking details.

To help you keep your online banking activity secure, we recommend that you follow some fairly simple rules:

Install and use the available security tools – anti-virus software, anti-spyware/adware software and use a firewall. Keep your security tools up to date. Remember if a new virus is created, out-of-date security software may not detect it.

Keep your operating system and important packages (such as Internet browsers and email programs) up to date by downloading and installing the latest updates. Your software manufacturers may release security updates to stop vulnerabilities discovered in their software. If you are not up to date then a virus might get through one of these vulnerabilities.

Avoid using public access terminals like those found in airport lounges or in Internet cafés. If you are not sure that the machine you are using is secure, then don’t use it for your online banking.

Keep your eBank logon and transaction credentials secure, and avoid writing them down. Never tell anyone what they are, even if you share a joint account with them. In fact, never tell a bank employee your passwords.

Make sure that we have up to date contact details for you in case we need to get in touch with you.

Don't send your account or personal details to us through ordinary email because of the risk that it could be intercepted on the way.

Always make sure that you log off when you have finished using the eBank service and for added security close down your Internet browser once you've logged off.

Never leave the computer alone while you are logged into the eBank service. We will automatically log you out of the service when our systems consider that you are inactive (usually between 10 to 15 minutes).

Be sure you know who you are dealing with when you are online. Type the address of the bank web site into your browser address line by typing its URL www.saib.com.sa – then enter the eBank service by clicking the Internet service links.

When using our online eBank service make sure you are talking to a secure site – check that the URL in the address bar starts with https://online.saib.com.sa/... or if you're using Internet Explorer check that the padlock appears in the area at the bottom of the window. You can get more information about the site by double-clicking the padlock - this will show you our SSL certificate shows who owns the certificate and if it is valid.

Be very wary of emails offering you something for nothing – for example asking you to act as an intermediary in a lucrative funds transfer, This might be another scam aimed at obtaining your account details or even worse, involving you in a money laundering fraud.