What is Strong Customer Authentication (SCA) and how does it protect me?
Strong Customer Authentication (SCA) is a key European regulation (introduced by PSD2) designed to make online payments more secure and reduce fraud. SCA requires you to verify your identity using at least two out of three factors:
Something you know: This could be a PIN or a password.
Something you own: Examples include a smartphone or a payment card.
Something you are: This refers to biometric data like a fingerprint or facial recognition.
By combining these factors, SCA ensures that only the authorised user can approve a transaction, significantly reducing the chances of fraud. Additionally, SCA mandates that every payment is securely linked to the exact amount and the correct recipient. Before confirming a transaction, you will see these details displayed in the authentication window (e.g., in Smart-ID, Mobile-ID, or your bank’s authentication tool), allowing you to verify everything is correct before proceeding. SCA enhances security, prevents fraud, and ensures regulatory compliance, meeting high security standards for online payments within Europe.
How can I protect my personal and financial information and secure my online accounts?
Be Cautious: Exercise extreme caution when sharing sensitive data online or over the phone. Do not disclose payment instrument login details (PINs, CVV code, card number, e-banking user ID) to anyone.
Review Statements: Regularly review your financial statements for any unrecognised transactions.²
Monitor Credit: Apply for a free annual credit report periodically to monitor for suspicious activity.³
Strong Passwords & MFA: Use strong, unique passwords and enable multi-factor authentication (MFA) whenever available.²
Vigilance for ATO: Be vigilant for unusual login activity (e.g., from unfamiliar locations or devices, or at strange hours), as these are top signs of Account Takeover (ATO) fraud.²
Verify Links: Never click on suspicious links in emails or texts. Always verify the legitimacy of websites, especially their URL and security certificates, before entering credentials. Always access financial institution websites directly, not through email links.
Keep Authentication Tools Secure: Keep your authentication tools (like Smart-ID, Mobile-ID, ID-card, or bank’s authentication system) secure at all times. Only complete the authentication process if it was initiated by you.
Keep Software Updated: Keep your devices and software up to date to ensure security.
Check Smart-ID Messages: Always check the content of Smart-ID messages, as they often specify the transaction being authorised.
How can I safeguard against credit card and payment fraud?
Check for Skimmers: Remain vigilant for skimming devices on ATMs or payment terminals, which can capture card data and PINs.²
Secure Online Purchases: Ensure websites use a secure connection ("HTTPS") for online purchases and avoid using public Wi-Fi for sensitive transactions. Only buy from verified e-commerce sites.
Be Wary of Payment Demands: Be cautious of unsolicited offers or demands for payment, especially those involving unusual methods like gift cards, which are often favored by fraudsters.³
Monitor Statements: Regularly monitor credit card statements for unauthorised charges.²
What is the general rule for avoiding scams?
If you receive suspicious vishing (phone calls) or smishing (text messages), the best course of action is to IGNORE them. Never respond or interact with the senders or callers.⁴ Remember, legitimate companies will always contact you through official, verifiable channels, not through unsolicited, urgent, or error-ridden communications.⁴ If you are unsure if a call is from your bank, hang up immediately and call the bank using the number published on their official website; never call back the number from which the suspicious call was made.
How can I protect myself from Investment Fraud?
Be critical of promises of guaranteed returns or high earnings from investment platforms, especially those promising fast and unrealistic earnings without any risk. Fraudsters often use aggressive advertising with fake success stories of famous people or well-known brands/institutions on websites or social media. Ignore these, do not click fake links, and do not leave personal or contact information. Always verify if the company offering the investment is authorised to do so by checking their license or permit from the Bank of Lithuania here. Also, check if the website is listed as an illegal financial services provider here.
How can I avoid becoming a Money Mule?
Be wary of vague job offers, especially those promising attractive, high-paying positions via private message, social networks, or chat apps, which lack exact task descriptions or experience requirements. Always check publicly available information about the person or company offering the job and assess the risks. Becoming a money mule can lead to being considered an accomplice to a crime and prosecution. If you suspect you've become a money mule, immediately stop any payment transactions instructed by potential criminals and report them to your payment service provider and the police.
Relevant sources
Relevant sources
FRAUD PREVENTION GUIDELINES, accessed on June 10, 2025, https://www.lb.lt/uploads/documents/docs/45487_33a75af37e84f861c6009f2cba304e9a.pdf
8 Types of Financial Fraud to Look Out for in 2025 - Sumsub, accessed on June 10, 2025, https://sumsub.com/blog/8-types-of-financial-fraud-to-look-out-for-in-2025/
Consumer Fraud Awareness and Prevention | OCC, accessed on June 10, 2025, https://www.occ.gov/topics/consumers-and-communities/consumer-protection/fraud-resources/types-of-consumer-fraud.html
Phishing, Smishing, and Vishing..Oh My! | University Information Security Office, accessed on June 10, 2025, https://security.georgetown.edu/csam-2020/phishing-smishing-and-vishing-oh-my/
Phishing Vs Smishing Vs Vishing: 6 Critical Differences - SentinelOne, accessed on June 10, 2025, https://www.sentinelone.com/cybersecurity-101/threat-intelligence/phishing-vs-smishing-vs-vishing/
Fraud Resources | OCC, accessed on June 10, 2025, https://occ.treas.gov/topics/consumers-and-communities/consumer-protection/fraud-resources/index-fraud-resources.html
Information on fraud I The Bank of Lithuania, accessed on June 10, 2025 https://www.lb.lt/lt/sukciavimas
Useful links
Knowledge test, educational material and general information on Fraud prevention, shared by the Bank of Lithuania: https://www.lb.lt/lt/sukciavimo-prevencija.
If you have additional questions and need our help, feel free to contact our support team via the chat in the bottom right corner.