Online Security

How to protect yourself

  1. Do not share your personal information through online, e-mails, phone calls, or text messages.
  1. Do not share your internet banking user ID, password, and answers to your security questions with anyone.  Remember the answers to your security questions. Do not leave your personal information in an unsecured area.
  1. Make sure you have an anti-virus program that has the capability to update the virus list.  Install, update, and run your virus program frequently so that your computer will be virus free.
  1. Protect yourself from any type of spyware/malware by installing, running and updating the spyware/malware program.


ATM Skimming

ATM skimming theft is on the rise. ATM skimming is when thieves attach devices onto the ATM machines that will copy your credit or debit card number, the information on the magnetic strip and even your personal identification number. According to, theft from ATM-skimming is approaching $1 billion annually and estimates that one in five people have been hit by an ATM skimmer.

Here are some helpful tips to stay safe.

  1. Avoid using ATM machines that are not in the bank branch, not in a well-lit area and tucked away somewhere.
  2. Avoid using ATM machines that do not look or feel right. (ex. Mirrors, brochure holders or panels in an odd place, overlay on the keypad)
  3. Immediately remove your ATM card from the slot if you feel that the machine feels different than usual.
  4. Cover the keyboard with your hand to block your PIN number.

If you feel that our ATM machines feel different than usual or spot suspicious objects on our machines, please report it to the nearest branch or contact our e-banking department at 213-427-4277.


Malware is a program that gets installed without your knowledge.  You might have seen a pop up that stated that your computer has a virus or needs to be scanned.  Do not click on the link! The pop up message makes the potential victim think that they have a virus and will need to use the program suggested by the pop up to get rid of the virus.  But in fact by clicking on the pop up, a malware will get installed on your computer without your knowledge. Even if you think you have successfully deleted the malware sometimes the malware is hidden or still inside your computer and will install itself back onto your computer as the malware or spyware is left untreated.

As malware attacks are becoming more common, software companies have developed software that will detect virus, malware, and spyware.  Remember to always have the option for real-time protection selected and always scan your computer for viruses and malwares on a daily basis. 

E-mail Phishing 

There are different variations of phishing which fraudsters use to collect sensitive information from potential victims.  The most common type of phishing is an e-mail to lure customers into spoof websites.  Fraudsters do not know or care if the customer might or might not have a relation with the specific bank on the phish.  But fraudsters hope to lure an unsuspecting victim with a phishing e-mail to share their personal information.

Here are some simple guidelines to follow when you believe that you have received a phishing e-mail.

  • Never open an e-mail that you do not recognize.

  • Never click on an e-mail that has a link to direct you to a site that you do recognize.

  • Never enter your personal information on a website that you do not recognize (even though you might think the website is valid, always remember Hanmi Bank will never ask you for your personal information)
  • Never enter your user ID, password, account number, ATM Pin number, or your security answers, on a non-secured webpage or e-mail.

Below are examples of phishing e-mails.

Example 1:

By looking at the link everything seems to be fine and to an unsuspecting victim everything looks alright, but if you look closely there is a misspelling on the word Hanmi.

The web address is Fraudsters use clever methods to make the web address as close as possible to the address of the reputable bank. The word Hanmi is misspelled as “hamni”. This is not because fraudsters cannot spell; they purposely misspell the word so that the unsuspecting victim will not notice the difference of the actual word and the victim will think that they are actually clicking on to


Without clicking on the link on the e-mail if you move your mouse over the link, the real web address appears.  The link is written as, but the actual link ishttp://www.212.312.101./hanmi/login.htm.  Once an unsuspecting victim clicks on the link a spoof window will open which will take them to a website that looks exactly like the reputable banks website. On this spoof website the fraudsters will create a page that will ask the unsuspecting victim to enter their personal information such as SSN, user ID, password, security answers, mother’s maiden name, etc. 

If you feel that you have been a victim of a malware or an e-mail phishing attack, please call the electronic banking Department at 213-427-4277.  

Copyright ©2015 Hanmi Bank. All rights reserved.