Banco De Oro (BDO) Issues Security Bulletin regarding Heartbleed Bug
Philippines’ largest bank, Banco De Oro (BDO Unibank, Inc) issued security bulletin on April 11, 2014 regarding internet security bug “Heartbleed”.
Dear Valued Client,
Recently, news of a new online security threat known as “Heartbleed” has been circulating. This refers to a vulnerability in OpenSSL technology that can be exploited to compromise sensitive data such as login credentials and account information.
In keeping with our commitment to ensure your security and privacy when transacting on-line with BDO, we assure you that:
- Our BDO Online Banking website uses a version of OpenSSL with enhanced security, and as such is not vulnerable to the Heartbleed bug
- Data transmission to and from our website is encrypted to protect your credentials and sensitive information
- Our login process is further protected with 2 Factor Authentication such as One-time Password (OTP) and Challenge Questions (CQ)
- Immediate actions are performed to eliminate the threat and protect your account once an incident is detected
If you suspect that your BDO Online Banking account has been compromised, call BDO Customer Contact Center at the following numbers immediately:
Metro Manila: 631-8000
International Toll-Free: (International Access Code)-800-8-6318000
BDO Electronic Banking
The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.