Security
Protect your online banking activities
A few simple strategies when banking online can go a long way. Here are some things
you can do to ensure you are secure online at all times.
- How to recognize BMO's valid web site
- Learn how BMO uses security software to provide secure sites
- Protect your password
- Communicate with BMO safely and securely
- Keep your identity safe in public
For all BMO websites
When you're banking online, be sure to verify BMO's website address in the address
bar of your web browser. Valid BMO website addresses include:
www4.bmo.com/,
www.bmoinvestorline.com,
www4.bmo.com/creditcards
www.bmolife.com.
If you are using a current browser, you will see our web address is green, another sign that you have reached our legitimate web site.
www4.bmo.com/,
www.bmoinvestorline.com,
www4.bmo.com/creditcards
www.bmolife.com.
If you are using a current browser, you will see our web address is green, another sign that you have reached our legitimate web site.
When using Interac®* Email Money Transfer
If you use BMO's Interac Email Money Transfer, you'll be asked to click on a link
that redirects you to a secure
gateway.
If at any time you are unsure of a web address, email BMO immediately at
online.fraud@bmo.com.
BMO is committed to keeping your information secure, and that requires us to continuously
employ the latest security software to our sites. Our websites have been upgraded
with extended validation (EV) SSL Certificates. EV SSL Certificates add another
layer of protection for you while also providing a visual indicator to help identify
our sites as legitimate. The web address appears green when using current browsers.
If you're using Internet Explorer 7 or Firefox 3.0.4 (or later versions), you will
notice the following:
- All or part of the URL address bar will turn green if you are on the legitimate BMO site, and will turn red and display a warning message if you are on a fraudulent site. (See Figure 1)
- A gold padlock icon (indicating that you are on a secure site) will appear in the top right corner of the URL address toolbar (for Internet Explorer 7), and in the bottom right corner (for Firefox). (See Figure 1)
If you are not using the browsers listed above, you will not see the updated green
address bar — however, your online session with us is just as secure as it has always
been. To ensure you are using a legitimate BMO website you can check for the following:
- A URL that starts with "https"; the "s" indicating that the site is secure and legitimate. (See Figure 2)
- A small yellow or gold padlock displayed in the browser window somewhere, also indicating a secure site. The padlock can be double clicked to open a window outlining the certificate details for the site. (See Figure 2)
For more information about Extended Validation SSL Certificates, visit our list
of frequently asked questions.
Here are a few simple ways you can protect your passwords.
- Memorize your debit and/or credit card passwords and/or PINs.
- Never write down a password or PIN.
- Change your passwords and PINs on a regular basis (every 4-6 months). Always choose a strong password.
- Don't let web sites store your passwords. While this can seem convenient, storing passwords grants anyone with access to your computer, access to your accounts and information.
- BMO now has the ability to correspond with you using email in a secure manner. With the Secure Email Service we can email you confidential information, and you can reply confidentially using an encrypted channel. This service provides you with a convenient means to contact us about subjects you would have previously had to come to the branch to discuss. To access our Secure Email Service follow the instructions in the Contact Us section at the top of the page.
- BMO will never send you an unsolicited email requesting your account or login information. The same rule of thumb applies to most online company practices (emails asking for account or login information are part of a scam called Phishing).
- Avoid sending confidential or personal information through standard email. Email is unsuitable for confidential information.
- Always be sure to logout of your session and clear your cache when you've finished. Simply closing your browser window leaves your account vulnerable to intrusion.
BMO is committed to providing you with a secure banking environment. Our email encryption
program scrambles your personal, financial or confidential information. It's transmitted
and stored in a format accessible only to those with the correct password.
BMO will never request personal or financial information through unsolicited
emails. For further assistance, contact our Customer Service Centre by calling the
phone numbers on the back your credit/debit card or published on bmo.com or harrisbank.com.
BMO uses a free secure email service to protect confidential communications. The
service is "by invite only" so first you will need to receive a secure email from
us inviting you to join. Once received:
- You'll open an attachment to arrive at our secure email service site.
- Register with a username and password.
- Read and respond to any secure email from now on by logging in to the website.
- Compose emails by visiting the website https://ses.bmofg.com.
Visit our list of frequently
asked questions.
These instructions will remove the information stored on your computer that lists
where you have surfed on the Internet and the passwords you have provided to websites:
If you're using any version of Microsoft Internet Explorer :
If you're using any version of Microsoft Internet Explorer :
- From your browser menu select: Tools.
- From the View drop-down menu select: Internet Options.
- On the "General" tab (the first one at the top) look for the "Temporary Internet Files" section near the middle of the window.
- Click on the "Delete Files" button.
- A new window appears. Check the box that says: "Delete all offline content". Click the "OK" button. An hourglass tells you that files are being deleted.
If you're are using Firefox:
- Click "Tools" and select "Options" on the Firefox menu bar.
- Click the "Privacy Icon" on the Option menu bar to open the Privacy Properties.
- Click "Clear" across from the Cache/Private Data option.
- Click "Ok" to return to the browser main page.
- Exit and re-launch the browser.
For other browsers, please refer to your browser's documentation on memory/disk
caching.
Keep your computer secure when you're not around.
- Do not step away from your computer when you're logged in to a secure session.
- Always log off when you have finished banking online.
- If your session is idle for more than 10 minutes, you will automatically be logged off.
- Once you've logged off, delete all traces of your session from your computer's memory by clearing your cache.
- If you can avoid it, never use a public computer for your online financial transactions.
BMO Financial Group is providing you with the information contained on these Security
pages for your personal use only on the understanding that you agree that BMO Financial
Group has no liability to you for providing you with this information, whether or
not you rely on it. BMO Financial Group does not guarantee the accuracy or completeness
of the information. Links from this Website to other Websites, or references to
products, services or publications other than those of BMO Financial Group, do not
imply the endorsement or approval of such Websites, products, services or publications
by BMO Financial Group.
