Skip Header Navigation

Phishing Resource Website

Follow these tips to help you avoid falling victim to phishing scams:

  • Never provide your confidential or financial information over the Internet in response to unsolicited emails.

  • Play it safe! If you don't know the source of an email or if it looks suspicious, do not open it.

  • Be cautious! Even if you recognize a sender's email address, do not rely on that alone because addresses may be faked. Pay attention to the contents of the email and be careful of any embedded links.

  • Before you enter confidential or financial information online, check for the lock icon on your browser. Ensure the URL in the browser address bar starts with "https." Remember though, if this is a link that is contained in an unsolicited email, it may still be a fake site so do not provide your confidential or financial information.

  • Never click on a link in an email that you suspect may be fake.

  • Be sure! If you are unsure whether you are on a legitimate website, reopen your internet browser and type the company URL in the address bar yourself.

  • Be alert! Just because an email or website appears to be from a legitimate company doesn't mean it is. Phishing schemes are designed to look real to trick users into divulging personal information for the purpose of financial fraud or identity theft.

  • Verify any instructions for making payments included in an email to ensure they are legitimate. Always take additional steps to be certain of payment instructions. This can include confirming invoices with your suppliers through a different channel. For example, if you are contacted by email, it would be good practice to call the supplier to confirm using their known contact information.

  • Never share your security devices. Keep your Client and Business Client Cards, tokens, and other security devices in a safe place and do not reveal to anyone your card numbers, PINs, IDs, passwords, or token values.

  • Use security features. Implement all security features available e.g. for RBC Express online banking users set-up dual administration, two-factor authentication, and multiple approval rules. Review your account activity daily, and report any issues immediately.

  • See our alerts, 10 tips for safe computing and online privacy and 10 tips to safeguard your assets.

  • Always follow safe computing practices.

  • For more information on scams, see Schemes and Scams and also the Canadian Anti-Fraud Centre

  • Additional tips for RBC Express online banking are available in the Resource Centre after you sign in.

  • If you are unsure if the website is a valid RBC company site, play it safe. Do not sign in or enter any personal information. Instead, contact us.