Security
In order to make transactions safer and more secure for customers, Tokyo Star Bank offers a range of security measures and services to prevent financial crime. Please use these services to protect your valuable assets.
We offer a range of security tools, including one-time passwords in the form of smartphone app.
Please use this service to ensure safer and more secure transactions.
- Displays a one-time password on your smartphone
- You can start using one-time passwords as soon as you download the app to your smartphone and complete the registration process.
- One-time passwords are passwords that are valid just once to prevent unauthorized transactions.
- To prevent unauthorized transactions by malicious third parties, a new one-time password is issued every 30 seconds. Valid just once, one-time passwords provide additional peace of mind during transactions.
Internet Banking (Tokyo Star Direct)
Security Measures at Login
This security software prevents computer virus infections, theft of personal information using spyware and keylogger hacking, phishing, and fraud and alteration of input information, for free, while customers are accessing the Tokyo Star Bank website and internet banking, ensuring you can use our website and internet banking services with confidence.
| Financial crimes that can be prevented | Spyware and phishing measures |
|---|---|
| Security features | While accessing a website or internet banking, security features automatically operate to protect your computer from dangers while using the site. |
By using on a keyboard displayed on an internet screen, information inputted by customers is protected from tools that steal input history from a regular keyboard.
| Financial crimes that can be prevented | Keylogger (viruses that steal personal information) |
|---|---|
| Security features | Security boards help prevent crime by eliminating the need to enter login passwords and PIN numbers directly using a keyboard. |
You can change your bank card/telephone transaction PIN number at ATMs and via internet banking or telephone banking.
| Financial crimes that can be prevented | Spoofing (unauthorized access) |
|---|---|
| Security features | Can be changed at any time through internet banking |
| How to change your PIN |
|
- *Proxy card PIN numbers can only be changed at ATMs.
- *ATMs in our branches will gradually be replaced by Seven Bank ATMs operated by Seven Bank, Ltd. from September 2020 onward. PIN numbers cannot be changed at Seven Bank ATMs in our branches. Note that the services offered by ATMs not located in our branches remain the same and you can use these ATMs to change your PIN number.
If you log in from a device or environment whose information is different from the information you provided when you registered the “device for using Tokyo Star Direct”, additional authentication will be required using your secret word login password in addition to the authentication using your login ID and login password. We control access from devices and environments that are not normally used by customers to strengthen the prevention of unauthorized use.
| Financial crimes that can be prevented | Spoofing (unauthorized access) |
|---|---|
| Security features | By preliminarily registering a secret question and answer that only you can know as your "secret word login password", you can prevent unauthorized use by a third party even if your login ID and password are stolen. |
Security measures when transferring funds
When transferring funds via internet banking (Tokyo Star Direct), using a password valid just one time, in addition to the PIN number for telephone transactions, provides a higher level of security and prevents unauthorized use by malicious third parties.
| Financial crimes that can be prevented | Unauthorized use |
|---|---|
| Security features | One-time passwords can be used by downloading the Tokyo Star Bank One Time Password App to your smartphone. |
- *If you do not have a smartphone and wish to make a transfer via internet banking (Tokyo Star Direct), please check your “e-Security Card (random number card)” (in Japanese).
This stops the fund transfer function using via internet banking. For details, please contact the Tokyo Star Direct Support Desk.
| Financial crimes that can be prevented | Fraudulent withdrawals |
|---|---|
| Security features | The fund transfer function on internet banking is stopped to prevent fraudulent withdrawals.
|
- *You will need to call or submit a request to resume use.
E-mail notification settings
You can receive notifications via e-mail of ATM cash withdrawals using your bank card, fund transfers, and J-DEBIT transactions.
| Financial crimes that can be prevented | Fraudulent withdrawals |
|---|---|
| Security features | Receiving an e-mail notification can help promptly detect unauthorized withdrawals or other damage. |
| Eligibility |
|
| How to configure settings |
|
- *Not available for accounts for which a bank card has not been issued.
ATM
You can set a daily limit on the amount you can withdraw using your bank card via an ATM or internet banking (Tokyo Star Direct).
You can also set limits by visiting our head office, branch offices, and via telephone banking.
| Financial crimes that can be prevented | Skimming |
|---|---|
| Security features | You can easily change your ATM withdrawal limit as many times as you like using your smartphone or PC. You can also set the required amount only when necessary. |
| Recommended for these users |
|
| How to set limits |
|
- ATMs in our branches will gradually be replaced by Seven Bank ATMs operated by Seven Bank, Ltd. from September 2020 onward. Bank card withdrawal limits cannot be set (reduced) at Seven Bank ATMs in our branches.
Note that the services offered by ATMs not located in our branches remain the same and you can use these ATMs to change your bank card withdrawal limit (reduce the limit).
You can enable and suspend ATM use via internet banking, in the same way as turning a key in a lock.
| Financial crimes that can be prevented | Skimming |
|---|---|
| Security features | If you lose your bank card, you can prevent unauthorized withdrawals from ATMs by restricting access to ATMs. |
| Recommended for these users |
|
| How to set limits |
|
- *Not available for accounts for which a bank card has not been issued.
Other
Star Safe is a security feature for ordinary deposit accounts, etc. which includes compensation By applying for Star Safe you can prevent withdrawals from ATMs and debit transactions and protect a certain amount of your deposits from skimming, etc. for an amount you set.
| Financial crimes that can be prevented | Skimming |
|---|---|
| Security features | If you are worried because you cannot find your bank card, you can use Star Safe to prevent withdrawal from ATMs and debit transactions, and protect a certain amount of your deposits from skimming, etc. |
| Recommended for these users |
|
- *Note that Star Safe cannot be used for internet banking (Tokyo Star Direct) transactions, account transfers, and cash withdrawals, fund transfers, or account transfers at branches.
As a measure to prevent damage from counterfeit or forged cards, Tokyo Star Bank uses IC cards (bank cards and loan cards), which make it difficult to illegally read card information.
| Financial crimes that can be prevented | Damage caused by counterfeit or forged cards |
|---|---|
| Security features | In addition to the magnetic stripe, cards also have an IC chip. IC chips are difficult to read by unauthorized persons, thereby providing enhanced security against counterfeiting and forgery. For customer convenience, both IC chips and magnetic stripe can be used. |
| Recommended for these users |
|
| How to set limits |
Please use ATMs labeled “IC Card Compatible” at our branches and affiliated financial institutions.
|
Tokyo Star Bank takes various measures to make internet banking transactions more secure.
Communications environment
We are taking various measures to strengthen the communication environment and servers.
- 256 Bit SSL encrypted communication
- 256-bit SSL (Secure Socket Layer) encryption is used to prevent important information about customers from being stolen or tampered with. It is virtually impossible to decrypt encrypted communications with the technology currently available.
- Firewall Protection
- Tokyo Star Bank’s internet banking system is protected by a firewall to prevent unauthorized intrusion.
- Unauthorized Access Monitoring
- We constantly monitor our system for unauthorized access by an external source, detecting signs and preventing unauthorized access before it occurs.
- BankSavior
- We monitor transactions to prevent fraud and the spread of criminal damage.
Login
We have also introduced various measures to ensure that customers can use pages with confidence after logging into our system.
- EV (Extended Validation) SSL certificates
- We use EV SSL certificates to provide more visual checks of the legitimacy of the Tokyo Star Direct site.
The address bar turns green when using the latest version of your browser (Microsoft Internet Explorer 7 or later) access Tokyo Star Direct. In addition, the name of the organization operating the website (NEC CORPORATION) and the name of the Certificate Authority that issued the SSL server certificate (VeriSign) appear alternately next to the URL in the address bar.
- Display the date and time of last login
- When you log in, you can check the date and time you last logged in, thereby enabling you to check for unauthorized access by a third party impersonator.
- Automatic logout after a certain period of time
- We have adopted an “automatic logout” system that automatically terminates use of the system if a device is not used for more than a certain period of time (such as when a user steps away from a device while logged in).
Tips for using internet banking safely and securely
Please keep the following in mind to ensure your safety:
- 1We NEVER ask you by telephone or e-mail, etc. for your ID, password (including one-time passwords), secret word login password for secret questions, or e-security card numbers, etc., which are necessary to use internet banking. If you are asked to provide such details, do NOT respond.
- 2Do not store the above details in your computer, smartphone, tablet or on a free e-mail service, cloud services such as photo storage sites, or social media, as it may be stolen by unauthorized access or a virus.
- 3To protect against viruses and other threats, please keep your internet browser, antivirus software, and operating system up-to-date.
- 4You will not be asked to enter a one-time password when installing or updating the free security software “SaAT Netizen”.
- 5If a suspicious screen is displayed or you accidentally enter any of the above information, please stop using the service immediately and contact us.
This document gives an overview of the financial crimes that have become more common in recent years and information on how to prevent them.
Fraudulent money transfers using internet banking
Criminal techniques employed
- Viruses that infect devices and steal authentication information*2
This technique infects PCs and smartphones with a virus to steal and misuse authentication information.
Recently, a virus capable of stealing one-time passwords has been discovered. - Fake (phishing) sites that trick users into entering authentication information, then steals that information
This is a technique that steals authentication information by infecting a PC or smartphone with a virus or sending an e-mail masquerading as a bank that directs recipients to a fake website.
- *2Authentication information: Information required to use internet banking, such as IDs, passwords, secret words, and random number card numbers
Prevention measures
- Do not allow PCs, smartphones, or other devices to be infected with viruses
Specifically, take measures such as installing commercially available security software or SaAT Netizen, which we provide free of charge, keeping the definition files constantly up-to-date, and regularly running scans.
- Do not store IDs and passwords as electronic data
Do not store authentication information as electronic data on a hard drive, flash memory, or in the cloud. There has been an uptick in viruses that steal and misuse this information.
- Delete suspicious e-mails, etc. without opening them
When using internet banking, access the site from a bookmark you have previously registered, or from our bank’s website. Phishing e-mails may lead you to fake phishing sites.
- It is extremely dangerous to do internet banking on a PC that can be used by the general public (such as PCs in internet cafes, hotels, and other accommodation facilities that can be used by anyone) and should be avoided as much as possible.
- It is extremely dangerous to do internet banking using free public wireless LAN (free Wi-Fi spots provided by stores and mobile telephone companies, etc.) and should be avoided as much as possible.
- Please keep your PC and smartphone operating systems and software up-to-date. In particular, please pay close attention to the following.
OS Browser Adobe Flash Player Adobe Acrobat JAVA
Transfer fraud and identity theft
Criminal techniques employed
- The scammer may have already researched your name, date of birth, and family structure. Do not trust the person on that basis alone.
- The stories being told to win your trust have become more sophisticated, and often involve multiple perpetrators claiming to be someone’s boss, co-workers, or a lawyer, etc. Women are sometimes also complicit.
Prevention measures
- Under no circumstance whatsoever should you hand over any money or your bank card.
- Remember that situations in which someone needs money straight away or in which money has to be transferred that day are situations that almost never occur in daily life. If you find yourself caught up in such a situation, immediately consult with your family or the police and ask them to be present at any meetings, etc.
X received a call from someone claiming to be the police who told him that there have been a spate of bank transfer scams in the area recently and that he should be vigilant. The caller gave X a phone number to call if he wanted to consult about anything.
Shortly thereafter, X received a suspicious phone call and immediately called the number he had been given. He was told to pretend to be deceived and to give the other party money.
Believing that he was cooperating with the police, X pretended to be deceived and gave money to the scammer only to discover that the “police officer” and the person to whom he gave the money were in fact part of the same criminal group, and that he had been defrauded.
Even if the police ask you to cooperate with an investigation and pretend to have been defrauded, they will NEVER instruct you to hand over money.
Under no circumstance whatsoever should you hand over any money.
Phishing scams
The following page provides information on phishing scam techniques, characteristics, and countermeasures.
Tax refund fraud
Criminal techniques employed
- If you are given instructions over the phone on how to operate an ATM, you are definitely being scammed.
- Scammers use words such as “refund” and “tax refund” to make people visit ATMs. Specifically, scammers will pretend that they will refund overpayment of medical expenses or transfer the unpaid portion of your pension to your account. They will say whatever it takes to get you to rush to an ATM such as telling you that you will not receive the money unless you go to an ATM immediately with your mobile telephone and bank card, or that they will resolve the situation if you act today.
- Scammers often claim to be a municipal employees or pension service employees to make you fall for their scam.
Prevention measures
- ATMs cannot be used to receive refunds, etc. Refunds, etc. are transferred into your account.
- If you are told to go to an ATM by someone, whatever the circumstance, immediately contact the police, a family member or someone you trust, and never operate an ATM.
Once at the ATM you are told to call a specific number,
- 1The caller tells you they will transfer one million yen into your account, and asks you to press the “transfer” button
This will transfer money from your account to the scammer’s account
- 2The caller then instructs you to enter “1,000,000 yen” in the “Amount” field to receive 1,000,000 yen
This will transfer one million yen to the scammer’s account
This is how scammers manipulate you into trusting them and make you operate the ATM in a way that makes it seem like they are transferring money into your account.
Stolen or counterfeit bank cards
Criminal techniques employed
- This is a technique that involves a criminal taking your card from a locker or valuables box (safety deposit box) while you are using a sports club, golf course, public bathhouse, or large communal bath in an accommodation facility and using a skimmer device to forge your bank card.
- Bank cards are stolen by burglars or pickpockets or from unattended vehicles or bags and used to withdraw deposits.
Prevention measures
- Make sure you securely lock lockers and valuables boxes. (Some facilities may have broken locks or lack security measures. We recommend that you try and avoid leaving your bank card in such locations.)
- Keep your bank card, passbook, and driver's license, etc. separate, be aware of any suspicious devices in or around the card slot when using ATMs, avoid using your date of birth as your PIN number, and use a different PIN number to your bank card PIN number when using a safety deposit box.
- If you notice that your bank card is missing, or if you notice anything suspicious when you return to your locker (such as your bank card having been taken out of your wallet), contact us immediately and take steps to cancel your card so that it cannot be used to withdraw cash.
Billing fraud
Criminal techniques employed
- Billing fraud involves being falsely billed for items you do not recall, such as fees for using pornographic or dating sites or claiming that you have not completed cancellation procedures after the free trial period.
In such cases, threats are always included to encourage payment, which makes people feel insecure.
Threats include initiating legal proceedings, taking compulsory execution proceedings to seize assets, publicizing your name, and going to your workplace or home to collect payment - Once money has been paid, the scammer knows your personal information such as your telephone number and employer and may demand even larger sums of money. (Victims are what is commonly referred to as “sitting ducks”)
Prevention measures
- NEVER contact the person who sent the bill.
The scammers are waiting for you to contact them. When you contact them, they will use techniques to get you to tell them your personal information (name, etc.), leading to further misuse of your personal information.
- NEVER transfer money to the scammers.
Even if the amount is small, do NOT pay it. Once you pay the bill, regardless of how much it is, you will receive further bills and other fictitious bills.
Many attempts are being made to misuse the court process. Please pay special attention to documents received that appear to be from a “court”
Other types of fraud
- Loan guarantee fraud
- This is a type of fraud that uses direct mail, faxes, and telephone calls to lure applicants for loans, and then defrauds them by forcing applicants to transfer money to their savings accounts by implying the money is a security deposit or some other payment.
- Investment solicitation fraud
- This is a type of fraud that offers to sell fictitious financial instruments such as unlisted stocks that are about to be listed on the stock exchange, and then induces the person being scammed to make purchases by telling them that they will make money off the transaction. Some scammers will transfer money to you in the form of dividends for a few months after the purchase to gain your trust, but will then disappear and be uncontactable.
- Online shopping fraud
- This is a type of fraud that attracts customers by making it look like they are selling a popular product at a discounted price. Scammers create websites that look exactly like famous websites to make you trust them. Sites ask for payment upfront but do not send products, or send unrelated products, and tend not to permit payment by credit card (even if you can choose to pay by credit card, the sites make up various excuses to make you pay by bank transfer. Sites often use strange Japanese).
Prevention measures
- Always be wary when something sounds too good to be true. Be particularly wary of sites that suggest you will make money easily.
- Be wary of counterfeits (it is vital to distinguish between the real thing and things that sound too good to be true).
- Talk to others first before making a decision (it is important to stay calm).
Consult with others to prevent financial crime
- If you think something is suspicious, do not make a decision on your own, but consult with others or the police and report it.
- It is important to remember first and foremost that situations in which you have to pay a large sum of money immediately or you will be in trouble are NOT situations that will ever occur in your lifetime.
- Please consult with your family, friends or acquaintances. The elderly in particular and more recently elementary school children have been targeted by such scams.
Tokyo Star Bank’s initiatives
We are taking the following measures to prevent financial crimes:
- Monitoring for unauthorized access.
- We monitor unauthorized account activity.
- We have trained staff to approach customers if they see someone trying to transfer a large amount of money at a bank counter, or operating an ATM while talking on a mobile telephone or operating a mobile telephone.
Related information
The following sites contain information on financial crimes. Please visit these sites to learn more.
If you are caught up in a financial crime, please contact our inquiry desk or your nearest police station.
If you have been the victim of a bank transfer scam, please also contact the financial institution to which the money was transferred.
Even if the situation only seems slightly suspicious, it may be possible to minimize the damage by contacting us.
Revisions to bank card regulations and provision of damage compensation
Following the introduction of the Act on Protection of Depositors from Unauthorized ATM Withdrawals Using Counterfeit or Stolen Cards, etc., we revised our bank card policy effective February 10, 2006 to provide compensation for damage caused by unauthorized withdrawals of deposits made using counterfeit or stolen bank cards belonging to individual customers.
Counterfeit cards
We changed our regulations to clearly state that reimbursements following damage caused by the use of counterfeit cards are invalid if we prove that the damage was caused by the customer’s willful misconduct or gross negligence.
Stolen cards
In principle, we will compensate for payments made on or within 30 days prior to the date of notification of the theft, provided that (1) you promptly notify us of the theft of your card, (2) you provide a full explanation in response to our investigation, and (3) you file a criminal complaint with the police. If we prove that you are at fault, the amount of compensation will be reduced to three-quarters of the actual amount.
However, this rule does not apply if notification is received after two years have elapsed since the date the card was stolen. Furthermore, you will not be eligible to receive damage compensation if the damage was caused through gross negligence on your part, or by your spouse, a relative within the second degree of kinship, or any other person living with you or employed by your household, or if you provided false information about important details in your explanation of the damage.
The revised bank card regulations are available at our branches. Please visit one of our bank counters if you would like a copy. If you are a victim of a crime involving your bank card, please report the incident to the police and contact us.
The following are examples of cases that may constitute “gross negligence” or “negligence” on your part. Please be aware of these situations.
Cases that may constitute gross negligence or negligence
Cases that may constitute gross negligence on your part
- 1Giving your PIN number to someone else
- 2Writing your PIN number on your card
- 3Giving your card to someone else
- 4Other cases where it is recognized that you have committed a significant breach of duty of care that could be considered intentional to the same extent as cases 1 to 3 above
Cases that may constitute negligence on your part
- 1Cases in (1) or (2) below
- 1Using your date of birth, home address, address number, telephone number, work telephone number, or car license plate number as your PIN number, despite repeated, individual, specific requests from us to change your PIN number from a number that is easily guessable such as date of birth, and carrying your bank card together with documents that enable someone to guess your PIN number (driver’s license, health insurance card, passport, etc.)
- 2Writing down your PIN number on a memo, etc., and carrying it or keeping it with your bank card
- 2In addition to 1 above, cases falling under (1) or (2) below, in which the damage is deemed to have been caused by the combination of these reasons
- 1PIN management
- Using your date of birth, home address, address number, telephone number, work telephone number, or car license plate number as your PIN number
- Using the same PIN number as a PIN number for lockers, valuables boxes, mobile phones, or other non-financial institution transactions
- 2Bank card management
- Leaving your wallet containing your bank card in an easily accessible place, such as in a car, where it can easily be stolen from you by a third party
- Being in a situation in which unable to take normal care of your bank card due to intoxication, etc. that make it easy for others to take your bank card from you
- 1PIN management
- 3Other cases where it is recognized that you have committed a breach of duty of care to the same extent as cases 1 or 2 above.
Compensation for damage caused by unauthorized use of our internet banking service, Tokyo Star Direct
If an individual customer suffers damage due to the unauthorized use of Tokyo Star Direct, in principle, we will compensate for payments, etc. made on or within 30 days prior to the date of notification of unauthorized use, subject to the following:
- 1Notifying us promptly after you become aware of any unauthorized withdrawal or transfer of your deposit
- 2Providing a full explanation in response to our investigation
- 3Filing a criminal complaint with the police
- *If we prove that you are at fault, the amount of compensation will be reduced to three-quarters of the actual amount.
- *You will not be eligible to receive damage compensation if the damage was caused through gross negligence on your part, or by your spouse, a relative within the second degree of kinship, or any other person living with you or employed by your household, or if you provided false information about important details in your explanation of the damage.
- Cases that constitute or may constitute gross negligence on your part
- Unlike cases in which your bank card is stolen, it is difficult to define types of gross negligence or negligence with respect to compensation for damage caused by unauthorized use of Tokyo Star Direct, and therefore, decisions on compensation will be made on an individual basis after carefully checking the circumstances and facts surrounding the damage.
Act on Payment of Damage Recovery Benefits from Funds in Deposit Accounts Used for Crime
The Act on Payment of Damage Recovery Benefits from Funds in Deposit Accounts Used for Crime (Transfer Fraud Remedies Act) came into effect on June 21, 2008. Based on this Act, we will initiate procedures to reimburse funds that have been used for crimes such as bank transfer fraud and funds remaining in financial institutions accounts due to freezing of accounts, etc.
Please visit the following Deposit Insurance Corporation of Japan (DICJ) website to confirm which deposit accounts are eligible for damage payments under the Transfer Fraud Remedies Act.
