Security Tips

At FirstBank, keeping your personal information secure and confidential is a priority. We take appropriate measures to protect the security of your personal information and prevent unauthorized access to such information. Protecting information about you is every employee’s responsibility. FirstBank continuously monitors developments in information security and updates its processes to ensure consistency with industry practices. Whether you choose to bank with us through our branches, ATMs, Phone Banking, or Internet Banking, we are committed to maintaining information security when collecting, using, or sharing information about you.

Changes to this content: From time to time, it may be necessary for us to update the Security Tips. The current version will be maintained on our Website.

For More Information: Should you have any questions regarding this content or want to learn more about our privacy practices, please read our Privacy Statement section, or Contact Us

The security of our service and keeping your money safe is a primary concern for us. Online Banking is a safe way to manage your money. We have applied some security measures to ensure that your online account information are protected. Some of the measures we have applied include the following.

  • Online Banking services is hosted on an encrypted server.

Encryption converts your information into an encoded format before it is sent over the Internet.

  • Online Banking logs you out if you haven’t used the service for specified period of time. This provides security if you leave your PC and forget to log-out.

If you make a number of incorrect attempts to log-in, the online banking application will disable your access.

This is to stop fraudsters from repeatedly trying to gain access to your account. If your access is disabled, please click on the forgotten log-in details link on the Online Banking log-in page for information on how you can get back online.

  • Strong Authentication

We have added another layer of security to protect our customers who use our Online Banking services by introducing a second factor authentication through the use of Token devices. We encourage our customers to avail themselves of this service to secure their money. Contact any of our branches for more information or call +234 700 34778 2668228.

You may receive emails that look like they come from FirstBank and ask you to disclose your security information.

Don’t: These are probably from criminals looking to steal your money.
We will never ask you to disclose your personal or security details by email.

The people responsible for these fraudulent emails send the same message to as many email addresses as they can find. They don’t know your personal security details. The aim of the email is to get them.

We’ll never ask you to disclose your personal or security details by email. If you receive an email asking you to ‘verify your account’, ‘confirm your sign-in details’, or a similarly worded request, it’s certainly a scam.

Usually the links contained in these ‘phishing’ emails will direct you to a site that asks you to ‘update’ or ‘verify’ your details on the page. Be warned – these can appear to be genuine. Don’t click on these links or provide any of your security details.

Genuine emails from FirstBank may contain links, but they’ll never take you directly to the Online Banking log-in page.

If you’re ever in doubt about whether an email is genuine, don’t click on its links or open any attachments.

There are many steps that you can take to ensure that your computer does not become prey to an online fraudster.

  • Update your system and web browser

Manufacturers regularly release security patches when weaknesses are discovered in their systems and browsers. Check with your software provider for these updates on a regular basis.

  • Use a personal firewall and anti-virus software

This can prevent unauthorised access and viruses being downloaded onto your PC when you’re on the Internet.

  • Check the padlock symbol and site certificate

Double-click the padlock symbol at the bottom of your browser when you log-in to FirstBank Online Banking to ensure the site certificate belongs to First Bank of Nigeria Plc. This will ensure you’re not being duped into entering your details on a ‘fake’ site.

  • Keep your personal details secret

Never write down or reveal your password.

  • Be extra wary of emails

See the scam email section for all the details.

  • Check your accounts regularly

If in doubt about any transactions, note the details and report it to the helpdesk immediately on +234 700 34778 2668228.

  • Always log-out after using Online Banking

Just select the log-out button and never leave your PC unattended while you’re logged in to the service.

We automatically instruct most browsers not to store your personal information in the cache (memory) as this may be affected by the type of browser you use. A always clear the cache yourself.

Criminal activity including identity theft and fraud are more prevalent today than ever before. In an effort to obtain personal information about you, criminals may approach you pretending that they are a representative of an institution with which you do business. For this reason, ensure you know or can verify the identity of an individual or entity prior to responding, either verbal or electronic, to requests for personal or banking related information. Note that FirstBank does not request such information either via phone or email. Should you receive a similar request, please Contact us and report it immediately

There are various ways a fraudster may try to deceive you into giving them your personal and security details.

Some of the most common frauds are:

  • Trojan

Trojans are usually emails that may contain files, pages or attachments to open. Once opened, they can secretly install a program that can monitor your online activity, down to what keys you’re pushing on what page.

This can mean the next time you enter your credit card details on your favourite online shop, the fraudsters will be alerted. To avert this fraud, we advise our customers not to download and install software from unknown sources.

  • Money mule/Additional income email scam

This scam involves someone offering, via an email or website, to pay funds into your account on the understanding that you then transfer them overseas. In return, you supposedly get a commission.

Many of these scams involve the proceeds of fraud and you should ignore the request. Any customer that participates will become involved in a police investigation and we could close any account involved in this scam. If it looks too good to be true, it probably is a con.

Phishing is a type of deception designed to obtain and use your personal data (such as Debit card/Credit card numbers, passwords, account data, etc.) for fraudulent purposes.

Con artists might send thousands of fraudulent e-mail messages that appear to come from websites you trust, like your bank or credit card Company, and request that you provide personal information via e-mail or on an illegitimate website created by them for this purpose.

Tips to Protect Yourself from Phishing

If you receive a suspicious e-mail that appears to be from FirstBank please do the following:

  • Do not respond to the message, or click on any of the links.
  • Contact us immediately and delete the e-mail after reporting it.
  • Check to make sure that your virus definitions and anti-spyware are up-to-date and scan the computer, especially if you accidentally clicked on the link or attachment in the e-mail.

Other Tips to Safeguard Your Personal Information:

  • Exercise extreme caution when shopping online. Only enter credit card and personal information when it involves a transaction you initiate and on Websites you trust.
  • Always use a secure Website when submitting credit card numbers or personal information online. Look for the Security Certificate and https links before entering your personal information.
  • Use bank services (i.e. Internet Banking, SMS Banking, Phone Banking, or ATM Banking) regularly to monitor your account activity and detect any fraudulent transactions if any.
  • If using cable modems or DSL for Internet access, do not keep the connection active when not in use; also consider installing personal firewall software.
  • Obtain the Token password generator being issued by FirstBank as this protects your online transactions

Here are some of the tips to note concerning the use of your Credit/Debit Cards:

  • Guard your Credit/Debit Card and Personal Identification Number (PIN) like you guard your cash.
  • Never write your PIN anywhere or send it via email.
  • Prevent others from seeing you enter your PIN at the ATM by using your body to shield their view.
  • Do not accept assistance from others at the ATM facility.
  • Promptly notify FirstBank if your Credit/Debit Card is lost, stolen or jammed in the machine. Please call +234 700 34778 2668228.

Secure Code Enrolment

Click the link for the corresponding card
Naira MasterCard Secure Code enrollment
MasterCard Credit SecureCode enrollment

Check a Telephone Number

Keeping you safe, keeping you first

If you receive an unusual phone call asking you to share your personal account information such as your ATM card PIN, card number, card expiry date, CVV number online banking password(s) and token-generated numbers, you can verify the number with our telephone checker.

Scammers may also send fraudulent emails and SMS providing you with fake FirstContact numbers. You can verify these numbers as well as the short code for any SMS received using our telephone number checker.

If you are ever unsure about any communication you receive via email, phone call or SMS, please call our 24/7 interactive call center on any of these numbers 0700FIRSTCONTACT (+234-700-34778-2668228), (+234) 1 4485500, (+234) 708-062-5000, SMS short code 30012 or email

Please ensure the number is entered correctly (eg 0818 491 1534)

Customers gain access to their accounts online by supplying their username and password to the internet banking application for verification and authentication. Passwords are the keys to your personal and account information. Therefore care must be exercised in constructing passwords. The following are some easy steps that you can take to protect yourself from having your personal information compromised.


  • Do use at least eight (8) characters
  • Do use both letters and numbers
  • Do use special characters if possible (e.g !,@#&$)
  • Do use UPPER and lower case
  • Do use combined or misspelled words
  • Do guard your fingers when typing
  • Do change password periodically


  • Do not use names
  • Do not use personal information
  • Do not use dictionary words
  • Do not write it on a sticky note and paste it on your monitor
  • Do not keep it in a drawer or write it in your dairy
  • Do not use the same password for several applications
  • Do not recycle old passwords
  • Do not send through mail or SMS
  • Do not disclose it to someone else

If you have a feeling that your login details have been compromised, kindly contact us on +234 700 34778 2668228

Press like to get our latest offers on Facebook