You can call us on the special security line: 22 598 44 44 (landline and mobile phone, fees according to the operator's price list)

Be vigilant!

  • In the most frequently used fraud scenarios involving the phishing of payment card or login details, the main exposed persons were those making payments - buying goods on the Internet. Recently, however, we have observed a new type of abuse also directed against people who display goods on local buying and selling portals. Recently, scams of this type appeared on the OLX platform.

    The fraudulent data is used by fraudsters to make online transactions from the card or add it to the fraudster's electronic wallet, which will allow him to perform further transactions from the account related to the card, also in stationary stores.

    If you are a buyer, the criminals impersonate the OLX platform and encourage you to use the option with delivery or the surcharge for the parcel. They also use an external communicator for this. The scam message contains a link that redirects you to a fake payment card phishing website.

    If you are selling goods, it might look like this:

    • You post an advertisement with the goods you want to sell.
    • A potential buyer comes to you and starts a conversation with you, usually using a popular messenger, and not directly through the page with the advertisement.
    • The buyer argues that he will make the payment for the goods and shipment by transfer to your payment card and for this purpose sends a link to the payment.
    • The link directs you to the page where you must provide payment card details (full card number, expiry date, authorization code) and confirm your willingness to receive payment by entering a password from an SMS.

    Please be cautious and pay special attention to:

    • any communication outside the sales website - the scammers contact mainly via external communicators
    • links directing to the sales offer, delivery order or payment - double-check the address of the page to which the link transferred you
    • linguistic errors, typos or other inaccuracies on the website - if something raises your doubts, do not provide your personal data and payment card details under any circumstances

    If anything raises your doubts, please let us know. You can call us on the special telephone line: 22 598 44 44 (for landline and mobile phones; fees according to the operator's price list).

  • Bank has recently received new signals that scammers impersonate TeleMillennium helpline consultants, calling to inform you about suspicious activity on your account/payment card. They ask for personal data and can ask you to install the application, which enables remote control of the user's device.

    • do not download any fishy apps - Bank consultants never encourage you to download any applications for quick customer service etc.
    • do not share confidential data with anyone, e.g. PESEL number, your payment card number or CVV code - our helpline consultants never ask for such data
    • never share login details to your bank account - Bank consultant will never log in to the system for you
    • log in to your bank account only on Bank's website and while logging in keep in mind that the system never requires entering a full PESEL number or a full ID number - only two randomly selected characters.

  • Bank has recently received signals about false emails sent by scammers impersonating Bank Millennium. They inform about loyalty bonus, available after clicking on the link. The link leads to fake login page, where you are asked to enter MilleCode and P@ssword 1, and then your payment card details.

    We inform that Bank sends no such messages or any links via email or SMS! Also, we never ask you to enter your payments card details while logging in your bank account.

    • Do not click on links in emails or SMS, especially if you are not sure about the sender or where the link will lead you
    • Log in to Millenet only at Bank's website and before logging in check if the connection is encrypted (closed padlock in the bar with the address)
    • When logging in to Millenet, enter only the 2 randomly selected characters of the PESEL number or a document - we never ask for more characters!
    • when logging in, never enter your payment card details.
  • HideSee more

Secure banking step by step

  • A lot depends on you

    Protect your personal data and money. Keep in mind a few security rules and do not be fooled by scammers.

    Learn the rules Security rules
  • Scam schemes

    Learn about the scammers methods and keep it secure when using your account online and when to be more careful.

    See popular frauds Security
  • Bank protects your account

    We keep your data and money safe to make using your account online very secure.

    See how Account protection

A lot depends on you

Keep in mind the secure banking rules

  • Do not click on unknown links in e-mails, text messages, messages on social networks.

  • Check the sender of the message carefully and do not enter confidential data in the e-mail.

  • Don't open attachments unless you know what might be in them.

  • Do not share your login details with anyone, keep passwords strong and change them from time to time.

  • Check transaction notifications carefully - if something is wrong, do not approve the operation!

  • Before logging in, check that the connection with the bank is encrypted.

  • Install anti-virus software on all devices on which you log into electronic banking and update them on a regular basis.

  • Use trusted devices and programs, if you share the device with other users, always remember to log out.

  • In case of losing a card or a phone with an active application - block them immediately, e.g. in Millenet

While shopping online

  • Before making a purchase, check that the store is trustworthy - look for opinions on the Internet carefully

  • Check the details of the transaction before confirming it with an SMS P@ssword or in the application

  • Do not enter data that you think are not needed to complete the transaction

Scammers' schemes

  1. Phishing
  2. Fake consultant
  3. Malware
  4. Card frauds
  5. Message from "a friend"
  6. Fake stores and ads
  7. Cryptocurrency frauds
  8. SIM card swap

  1. What is phishing?

    It's an attempt to catch you in scammers' nets, who e.g. impersonate your bank.

    What for? To make you pass your personal data, login or payment card details. As a result, your account or card will be accessed by unauthorized persons who can order transactions or impersonate you.

    But how? The scammers send e-mails or SMS-s persuading to act immediately, such as:

    • 'Your bank account has been blocked'
    • 'Pay fee for your card'
    • 'Your parcel has been withheld due to underpayment, settle the arrears'
    • 'On ... the execution was initiated. Possibility of amicable repayment for PLN 8.44'

    Be careful

    • Do not click on links and do not download any applications unless you know the sender of the message.
    • You will never receive such a message from Bank Millennium, because we do not send any links in e-mails or SMS.
    • If you log on to the Bank's website, make sure that the connection is encrypted (the padlock in the address bar should be closed).
    • If something looks different than usual, please do not log in - we always inform about it when we change something on the login page.
    • On the login page, we always ask for only two randomly selected characters of the identifier - never enter the entire PESEL number or the entire document number.

  2. Fake consultant, or vishing

    How do you know that the person you are talking to on the phone is really who they say they are? This is obviously very difficult, and it is easy for fraudsters to gain our trust and obtain sensitive data.

    How to defend yourself?

    • Don't share login details with anyone - only you should know them.
    • The bank consultant can ask you to provide MilleCode, but will never ask for your login password.

  3. Malicious software, or malware

    How does it work? You get an e-mail or an SMS with a link to download an app or 'very important' attachment. You click on it and this way you infect your computer, phone or tablet.

    What for? This one click allows to install a malicious application or program on your device that can, for example, track your activity and download data, or take control of your device completely.

    Keep in mind:

    • never click on unknown links
    • don't download attachments if you don't know what's in them or you don't know the sender of the message
    • do not install unchecked applications - preferably before installing an application, look for comments about it in the application store

  4. Card frauds

    How? You enter your card details in an unchecked store, or in response to fake e-mail, you give someone your plastic card or write your PIN on the card or a sticky note attached to the card.

    What for? The fraudster needs your card details to make online transactions or tokenize the card, for example in Google Pay service. To pay in a stationary store the fraudster needs your card, and for larger payments also PIN.

    How to defend yourself?

    • Never scan the card, do not pass on the data from the card to anyone
    • Pay with your card in trusted online stores
    • Carefully read the terms and conditions of internet subscriptions you accept (sometimes the first month is free, and the next one is charged a high fee)
    • Do not give your card or PIN to an unauthorized person (e.g. waiter in a restaurant or bar

  5. Message from "a friend"

    Your friend informs you via messenger app that he need money at once, he will return tomorrow and you only need to give him a BLIK code. Or he sends you link to the transfer (PayByLink).

    What do you do? At first, everyone is probably willing to help their friend. Yet, be careful! This may be a fraud scheme. Before you help your friend, make sure It really is your friend - scammers could have get access to his account. The best you can do is to call him and ask if he really is in need.

  6. Fake stores and ads

    How does it work? Scammers publish fake ads and fake stores' websites. Very often they give "special offers" or even rewards to get your attention and persuade you to use their offer.

    Don't get yourself "caught":

    • Before taking advantage of such a "great deal", try to verify that it is trustworthy.
    • You can search for comments on the Internet about a given company or a specific website.
    • If you have any doubts, do not order a payment or share your details.

  7. Fraud on cryptocurrency exchanges

    How? You come across an ad promoting easy ways to invest in cryptocurrencies:

    • "You don't need to know anything about investing"
    • "We guarantee quick profit"
    • "We will do everything on your behalf, only scan your payment card/ID and give us your login details/SMS P@ssword"

    What for? To extort your personal details, login details to your bank account or payment card details, and above all, to persuade you to transfer your money. Unfortunately, when you want to withdraw your funds, contact with the "broker" is broken and the money transferred cannot be recovered.

    How to defend yourself?

    1. Before you make a decision to invest, check whether the broker is operating legally and if there are no warnings on the Internet regarding his activity (you can do it, for example, on the KNF website >)
    2. Do not provide confidential data to unknown people, do not scan your payment card, ID card, do not provide your bank account login details.

  8. SIM card swap

    How? The scammer goes to the mobile phone salon claiming to be you and asks for SIM card replacement. The operator blocks the old SIM card and gives the fraudster a duplicate.

    What for? To take control of the authorization of your transactions.

    When you should realize that you are a fraud victim?

    When you want to use your phone, for example call someone, and it is impossible.
    If such a thing has happened to you, be sure to report it to your mobile operator and check your account.

We take care of your online security

  • Secure solutions

    We use various security features in Millenet and Bank Millennium mobile application - we use the latest technologies and we design services so that they are very safe.

  • Additional card payment protection

    When paying with Bank Millennium cards online, we support the 3-D Secure solution offered by stores, which is an additional payment security.

    Check it Additional card payment protection

  • Transaction authorization

    Operations ordered in the electronic banking system need additional confirmation. Thanks to it, you can be sure that no online transfer or card payment will be ordered without your knowledge.

    Check methods Transaction authorization

  • Payment limits

    Transaction limits, i.e. the maximum amount you can order in a given operation or in total on a given day, will provide you with additional protection. You can easily adjust the limits to your needs in the settings in Millenet or in the mobile application.

    How to set Payment limits

  • Locking or restricting a card

    In Millenet and in the mobile app, you can temporarily lock or restain a card that has been lost or stolen at any time. You do not have to wait for a call to the helpline or for the opening of a Bank branch.

    How to do it Locking or restricting a card

  • Encrypted connection

    The security of Millenet internet banking is ensured by the use of encrypted data transmission between your computer and the Bank's server.

Are you a victim of fraud or want to report suspicious situation?

Write to us

Fill in the form

or call security helpline

22 598 44 44