Back to home

Digital Security Protect Yourself from Fraud

Complete guide to identify scams, protect your bank accounts, and know what to do if you've been a victim of fraud in the Dominican Republic. Information based on ProUsuario recommendations.

🎣
Topic 01

Phishing: How to Spot Fake Emails and Messages

The most common gateway for digital fraud

Phishing is a technique where criminals impersonate legitimate entities (banks, ProUsuario, government agencies) to steal your personal data, passwords, or banking information. In the Dominican Republic, phishing cases have increased over 200% in the last two years, and anyone can be a victim.

Key steps

  1. 1Check the sender: banks and official entities use emails with their own domain (e.g. @banco popular.com.do, @prousuario.gob.do), never generic addresses like @gmail.com or @hotmail.com.
  2. 2Hover over links without clicking: look at the real URL in your browser's bottom corner. If the address doesn't match the official site, it's phishing.
  3. 3Be suspicious of messages with spelling errors, pixelated logos, or designs that look different from the official site.
  4. 4No bank or official entity will ever ask you by email or SMS to 'verify your account,' 'update your information,' or 'click an urgent link.'
  5. 5If in doubt, open your browser and type the bank's address manually. Never use links from suspicious emails or messages.

⚠️ Golden Rule

Dominican banks NEVER send emails asking for passwords, verification codes, or links to 'update your security details.' If you receive one, report it immediately to your bank and to ProUsuario.

🔗 Useful Resources

ProUsuario — Phishing ReportsCentral Bank of DR — Security AlertsDominican Cyber Police
💬
Topic 02

WhatsApp Scams: Identity Theft, Codes, and Fake Links

The favorite channel for scammers in the DR

WhatsApp has become the primary tool for scams in the Dominican Republic. Criminals use increasingly sophisticated social engineering techniques: impersonating family members, friends, or trusted companies to trick you into giving up your information or money.

Key steps

  1. 1NEVER share your WhatsApp verification code that arrives by SMS, not even with someone claiming to be 'from WhatsApp support' or 'a friend who needs help.'
  2. 2If you receive a message from an unknown number pretending to be a family member saying they 'changed their number,' call the family member directly on their saved number to verify.
  3. 3Be wary of offers that are 'too good to be true': prizes, inheritances, high-salary job offers with no experience required, or investment opportunities with guaranteed returns.
  4. 4Don't click on shortened links (bit.ly, tinyurl, etc.) sent via WhatsApp, especially if they promise 'your photos,' 'your account information,' or 'bank alerts.'
  5. 5Enable two-step verification on WhatsApp: Settings > Account > Two-step verification. This prevents someone from registering your number on another device even if they have your SMS code.

🚨 Maximum Alert

If someone asks you on WhatsApp to 'share the code you received by SMS' to supposedly 'verify their account' or 'help a friend,' it's a scam. That code is the key to hijacking your WhatsApp.

What to do if it happened to you

  • If your WhatsApp was stolen: email support@whatsapp.com from the email associated with your account to request deactivation.
  • Notify your contacts that your number was compromised so they don't fall for scams.
  • Change all your banking and digital service passwords.

🔗 Useful Resources

WhatsApp — Official Security TipsProUsuario — Digital Scams Guide
🏦
Topic 03

Financial Cybersecurity: Protect Your Online Bank Accounts

Your money deserves more than a simple password

Online bank accounts are the primary target for cybercriminals. With the rise of digital banking in the DR, protecting your access is more important than ever. A single vulnerability can expose your entire net worth.

Key steps

  1. 1Use UNIQUE and STRONG passwords for each bank or financial service. Don't use your bank password on social media, online stores, or free services.
  2. 2Enable two-factor authentication (2FA) on ALL your bank accounts. Prefer authenticator apps (Google Authenticator, Microsoft Authenticator) over SMS, which can be intercepted.
  3. 3Never save bank passwords in your browser, notepad, Google Drive, or phone photos. Use a password manager like Bitwarden or 1Password.
  4. 4Set up transaction alerts in your online banking to receive notifications for every movement. If you see something suspicious, act immediately.
  5. 5Avoid making bank transactions on public WiFi networks (cafés, airports, hotels). If necessary, use a trusted VPN.

📊 Key Fact

A recent study showed that 65% of Dominicans use the same password on more than 3 different sites. If one service gets hacked, your bank is also exposed.

🔗 Useful Resources

Superintendency of Banks DR — SecurityBitwarden — Free Password ManagerHave I Been Pwned — Check if your data was leaked
🔄
Topic 04

How to Safely Update Your Bank Information

Do it right, avoid surprises

Updating your phone, email, or address with your bank is necessary when you move or change numbers. But doing it incorrectly can leave your accounts exposed or, worse, hand your information to a scammer.

Key steps

  1. 1Always access your bank's portal by typing the address manually in your browser. Never from links in emails, SMS, or WhatsApp.
  2. 2If your bank has an official mobile app, use it. Official apps have additional security measures like fingerprint or facial recognition.
  3. 3Check with your bank what methods they accept for data changes. Some require a branch visit for sensitive changes (primary phone, email address).
  4. 4After updating, wait for confirmation on BOTH the old and new channels. If you only receive confirmation on one channel, something may be wrong.
  5. 5Write down the date of the change and save the receipt. If you later see suspicious activity, you'll have evidence of when and how the changes were made.

📞 Phone Caution

If you receive a call from someone claiming to be your bank asking you to 'verify your identity' with personal data or codes, HANG UP. Call your bank's official number yourself to confirm.

🔗 Useful Resources

ProUsuario — Safe Update Guide
👑
Topic 05

ProUsuario's Golden Rule

Urgency + Too-Good-To-Be-True = Scam

This is the most important rule to remember to protect your data and money. Scammers always create a sense of urgency or promise something extraordinary so you act without thinking. That combination is the clearest red flag.

Key steps

  1. 1IF A MESSAGE CREATES URGENCY: 'Your account will be locked in 24 hours,' 'Offer valid only today,' 'Your number will be deactivated' — STOP. Legitimate entities never pressure you with impossible deadlines.
  2. 2IF IT SEEMS TOO GOOD TO BE TRUE: 'You won RD$500,000 in a contest you don't remember entering,' 'Work from home earning RD$80,000/month' — STOP. If it sounds incredible, it's false.
  3. 3VERIFY FIRST: look up your bank's or entity's official number and call. Don't use the numbers provided in the suspicious message. Search on your own via Google or your account statement.
  4. 4PROTECT YOUR DATA: never give out your ID number, passwords, verification codes, card PIN, or expiration date by phone, email, or WhatsApp, even if the person sounds convincing.
  5. 5TRUST YOUR INSTINCT: if something feels off, it probably is. Better to seem distrustful 10 times than be scammed once.

🔑 ProUsuario's Golden Rule

REPEAT AFTER US: 'If a message creates urgency or seems too good to be true — verify first, protect your data.'

🔗 Useful Resources

ProUsuario — Education and Alerts Center
Topic 06

Steps to Follow If You've Been a Victim of Fraud

Every minute counts — act fast and in order

If you've fallen for a scam, don't panic. Acting quickly by following these steps can mean the difference between recovering your money or losing it forever. In the DR, reaction time is critical: the first 30 minutes are key.

Key steps

  1. 1FIRST — Contact your bank IMMEDIATELY. Use the emergency number on your card (usually on the back). Ask to block cards, accounts, and any ongoing transactions.
  2. 2SECOND — Change all your passwords: online banking, email, WhatsApp, social media. Start with the most sensitive accounts.
  3. 3THIRD — File a formal complaint with the Dominican Cyber Police. Bring all evidence: screenshots, phone numbers, emails, amounts, and dates.
  4. 4FOURTH — Report the incident to ProUsuario as a formal complaint. They can mediate with banks and financial institutions to speed up resolution.
  5. 5FIFTH — Notify the credit bureaus (DataCrédito and TransUnion RD) to place a fraud alert on your credit report. This prevents new accounts from being opened in your name.
  6. 6SIXTH — Monitor your accounts and credit report for the next 3-6 months. Review every transaction and report any suspicious activity immediately.

⏰ Act Now

Time is your biggest enemy in a scam. The first 30 minutes are critical for blocking transfers. After 24 hours, recovering money becomes significantly harder.

🔗 Useful Resources

Dominican Cyber Police — File a ReportProUsuario — Complaints and ClaimsDataCrédito — Fraud AlertTransUnion RD — Fraud Alert

Already a Contigo user?

Protect your financial identity. Contigo monitors your credit report and alerts you about suspicious activity, while helping you fix errors that affect your score.

Go to my dashboard