Staying Safe from Phishing Scams Targeting Everest Bank Customers
6th November 2025, Kathmandu
Advertisement
In the digital age, while online banking offers unprecedented convenience, it also brings forth new and evolving threats from malicious actors.
EBL Issues Scam Alert
Everest Bank Limited has issued a critical SCAM ALERT to its valued customers, warning against sophisticated phishing attempts being conducted primarily through social media platforms. These scams are designed to harvest sensitive financial credentials by luring unsuspecting individuals with attractive but entirely fake offers, such as surveys or bonus programs. This comprehensive security article will break down the scam, provide essential vigilance tips, and outline the best practices for ensuring your financial security remains paramount.
Understanding the Phishing Threat: The Fake Survey Deception
The current scam alert highlights a common, yet dangerous, form of cybercrime known as phishing or credential harvesting. Scammers are leveraging the high traffic and trusted environment of social media to launch their attacks.
The Scammer’s Playbook: How the Fraud Works
Impersonation and Lure: The fraudulent actors start by creating posts or advertisements that deceptively mimic official Everest Bank communications. They often use high-value incentives, such as “guaranteed bonuses” or participation in a “special customer survey,” to catch the user’s eye and trigger a sense of excitement or urgency.
Creation of a Fake Login Page: The core of the scam is the fake login page. When a customer clicks on the social media link associated with the supposed survey or bonus program, they are redirected to a website that is a near-perfect replica of the genuine Everest Bank login portal. Scammers use sophisticated techniques like spoofing—minor variations in the URL, design, or layout—to fool the human eye.
Credential Harvesting: On this fraudulent page, the user is prompted to enter their User ID and password to participate in the “survey” or “claim their bonus.” Crucially, the bank explicitly states that it is not conducting any surveys or bonus programs that require customers to enter their login credentials on external or third-party platforms. Once the user enters their details, the information is instantly stolen by the scammers, who can then use it to gain unauthorized access to the victim’s actual bank account and initiate fraudulent transactions.
Your Digital Defense Strategy: Best Practices for Customer Safety
The best defense against these evolving social engineering scams is a proactive and vigilant approach. Everest Bank customers must treat all unsolicited financial communications with extreme caution.
1. Always Verify the Source and URL
The single most effective defense is to never rely on links found on social media for banking login.
Direct Navigation: Always access your online banking by typing the official Everest Bank website address directly into your browser’s address bar. Do not use search engine links or links provided in emails or social media.
Check the URL: Before entering any credentials, meticulously examine the website address (URL). Look for the correct official domain name (.com.np or the bank’s official domain). Scammers often use subtle misspellings (e.g., everesstbank.com instead of everestbankltd.com).
The Secure Connection: Always ensure the website address begins with https:// (the ‘s’ stands for secure) and that a lock icon is visible in the address bar. While this alone is not a guarantee against sophisticated scams, its absence is a definite red flag.
2. Official Channels are the ONLY Channels
Heed the bank’s firm instruction: Always use the official Everest Bank App or official website to login.
Mobile App Security: The official Everest Bank mobile application, downloaded directly from the Google Play Store or Apple App Store, provides a secure, encrypted environment for your transactions. Using the official app bypasses the risk of fake login pages on external websites.
No Unofficial Data Requests: Remember that legitimate banks, including Everest Bank, will never ask you for your login password, Transaction PIN, Card CVV, or OTP (One-Time Password) via email, SMS, social media, or even a phone call. If you are asked for these credentials, it is a scam.
3. Strengthen Your Account Security
While vigilance is key, robust account settings provide a powerful fallback layer of defense.
Unique and Strong Passwords: Use a complex password that combines uppercase letters, lowercase letters, numbers, and symbols. Critically, ensure your banking password is unique and not used for any social media or email accounts.
Enable Two-Factor Authentication (2FA): Where available, enable 2FA for your email and social media accounts. This makes it significantly harder for scammers who have stolen your password to gain access to other accounts that could be used for bank-related information.
When in Doubt: Contact Everest Bank Customer Care
If you encounter a suspicious post, receive an unusual email, or are in any doubt about the authenticity of a program claiming to be from Everest Bank, stop immediately and use the official, verified contact channels listed by the bank.
Official Customer Care (24/7):
Toll-Free Numbers: 1660-0171718 / 1810-2171718
Email: [email protected] (Note: The official email may also be [email protected]. Always double-check with the bank’s official website.)
The bank’s dedicated support team is available around the clock to address your security concerns, verify the legitimacy of any communication, and help you take immediate action if you suspect your credentials have been compromised. Your quick reporting can also help the bank take down the fraudulent pages, protecting the wider customer base.
In the digital world, awareness is your first line of defense, and caution is your strongest password. By following these security best practices and trusting only the official Everest Bank channels, you can ensure a safe and secure banking experience while navigating the threats posed by cybercriminals.
For More: EBL Issues Scam Alert
