To access online banking, you need your personal customer number, your banking ID number and your PIN. In addition, TAN authorisation is required to make online banking payments. We will only send the electronic TAN to the mobile phone number you have provided.

If the PIN or TAN is entered incorrectly three times in a row, access is automatically blocked. In this case, please send an email to ebanking@eihbank.de or call +49 40 32109-835. The Terms and Conditions for Online Banking that you have received from us apply. If you no longer have a copy, we are happy to provide them on request.

To protect your data and assets, always keep your PIN and TAN secret and do not disclose them to third parties. Also make sure that you are not observed when entering your PIN/TAN and do not save your PIN or a TAN on your computer. To protect your transactions, please also note that you can only use each TAN once.

If another person knows your PIN/TAN or if you suspect your PIN/TAN has been used by someone else, you must immediately change your PIN or ask for your online banking access to be blocked by sending an email to sperren@eihbank.de.

With reference to clause 7 of our Terms and Conditions for Online Banking, you have cer-tain responsibilities as an online banking user. Taking these steps allows you to use online banking securely and protect the data and assets you have entrusted to us.

Note in particular the steps you must take to maintain confidentiality and to notify and inform us and the ability to block your online banking login details. All these steps are designed to prevent or quickly counteract fraud.

We would like to draw your attention to the most significant current threats and general attempted attacks in cyber security below:

Increase in phishing attacks against the backdrop of Russia sanctions
"Your account will be deactivated - Russia sanctions" - this or similar is the subject of fake e-mails that are currently being circulated by fraudsters, according to the „Landeskriminalamt Niedersachen“. The fraudsters claim that financial service providers need to request confidential customer data in order to comply with the Russia sanctions and that verification of the data is required. The criminals are trying to trick customers into revealing their confidential data in a variety of ways. Never reply to such emails and do not open attached links. Never disclose confidential information. When logging in, use only the link on our website www.eihbank.de (source: https://www.polizei-praevention.de/aktuelles/russland-sanktionen-gefaelschte-bitcoin-mail-und-weitere-maschen.html)

Emotet about to make a comeback?
The ransomware Emotet was actually considered as eradicated. But now security researchers are noticing a sharp increase in spam emails with malware in the attachment. The emails look like a reply from a known sender and contain contaminated Excel or Zip files. The malware represents a significant threat to companies, authorities and private users. Recipients of such messages should never open the attachments, because this is how they load malware onto their computers (source: BSI, „SICHER • INFORMIERT“ newsletter dated 03/02/2022; see also https://www.bsi.bund.de/DE/Themen/Verbraucherinnen-und-Verbraucher/Cyber-Sicherheitslage/Methoden-der-Cyber-Kriminalitaet/Sonderfall-Emotet/sonderfall-emotet_node.html)

Log4J vulnerability can still harm your data
The Log4Shell vulnerability in the popular Log4j library for Java applications is a threat to IT systems around the world and may affect all Java applications that can be accessed from the Internet and use Log4j to log system states centrally. The vulnerability is most acute for server and data centre operators. Nevertheless, as a user you may also be affected, e.g. if you are using vulnerable Log4j versions on private devices. Even if not, you may suffer harm from having your data stolen, vital services going down or your systems becoming infected. We therefore strongly recommend installing updates immediately as soon as IT manufacturers make them available (source: BSI, "SICHER - INFORMIERT" newsletter dated 15/12/2021).

Before confirming a payment, carefully check that the data that is displayed matches the data for the payment and is accurate. This is an effective way to prevent fraud.

Always use the latest version of your internet browser and keep your computer's operat-ing system up to date.

Always use an antivirus program and a personal firewall and keep them up to date. This will protect you effectively against fraudsters and significantly increase your security when you are using online banking.

When you are browsing the Internet or reading emails, there is a risk that you will down-load a file attachment or a program that contains a virus. The virus could seriously affect the security of your computer. Therefore, never install programs unless you know where they have come from and do not open any emails from suspicious/unknown senders. Always check the identity of the website before downloading software.

We will never ask you for your PIN or TAN or ask you to enter your login details. Fraud-sters may use fake emails to try to direct you to a fake website that looks very similar to our online banking portal. They will then ask you to enter your login details, which they can then use. Never reply to these emails and do not open any links in such emails. Al-ways use the link on our website to log in at www.eihbank.de

When you access the online banking login page via the link on our website at www.eihbank.de an encrypted connection is established between your PC and the server of our online banking service provider.

You can see whether a connection is secure from the URL (information in the address bar of your internet browser), which starts with HTTPS for a secure connection. A secure con-nection means that data sent between your PC and the online banking server is encrypt-ed, and therefore protected from being accessed by third parties.

To protect the data you send, please therefore always make sure that you only use secure connections.