Sign in
Open account

Cybersecurity

Learn how to protect yourself from online scams and enjoy the benefits of secure digital banking with stronger protection.

What BBVA will never do

  • We don’t send links via SMS.
  • You won’t receive unexpected calls from us, all communication will come with a prior notification in the BBVA app under “My messages.”
  • We won’t ask for your full password, PIN, or any security codes sent by SMS.

What you should avoid doing

  • Do not share your passwords. This weakens account security and risks exposing your personal data.
  • Refrain from giving sensitive details to strangers. It could result in fraud, identity theft, or other misuse.
  • Keep your devices protected. Regular updates and security tools help shield you from viruses, malware, and cyberattacks.

Protect yourself from the most common scams

Phishing

Fake websites or emails pretending to be legitimate, designed to steal your personal information.

Vishing

Fraudulent phone calls from scammers posing as trusted entities to obtain sensitive details.

Smishing

Deceptive SMS messages trying to trick you into sharing private or financial data.

Spoofing

Scams using fake emails, texts, calls, or websites to impersonate others and capture confidential information.

Key terms in digital fraud

Adware
This type of program is created to display unwanted advertisements, often in the form of pop-ups or banners. It usually gets installed without the user’s awareness, bundled with other downloads. While not always harmful, it can slow down your computer, compromise your browsing experience, and sometimes be used as a gateway for more dangerous software.
A DDoS attack floods a website or online service with excessive traffic, overwhelming its servers until it becomes unavailable. Criminals often use large networks of infected computers (called botnets) to launch these attacks, which can interrupt banking services and compromise online security.
This is a trial-and-error method used by hackers to guess passwords, PINs, or encryption keys. By testing many combinations rapidly, cybercriminals can eventually crack weak or reused credentials. That’s why using strong, unique, and complex passwords is essential for your protection.
Baiting is a form of social engineering where attackers lure victims with tempting offers, such as free downloads, USB drives, or promotional files. Once the user interacts with the bait, malicious software is installed, giving the fraudster access to sensitive information or systems.
Short for “malicious software,” malware includes viruses, worms, Trojans, and spyware. Its purpose can vary from stealing sensitive data to damaging systems or spying on user activities. Malware often spreads through infected attachments, unsafe websites, or compromised downloads.
This occurs when individuals reveal too much personal information online — such as on social media. Details like birthdates, addresses, or daily routines can be exploited by fraudsters to guess passwords, commit identity theft, or impersonate victims in scams. Practicing digital discretion is a strong line of defense.

If you suspect you've fallen victim to a banking scam, contact us immediately to report it.

Our team is available 24/7 to assist you.