This is one of the clearest tests you can apply to any contact claiming to be from Credicorp. We will never ask you to tell us your portal password, and we will never ask you to read out or type in your two-factor authentication code.
Why we never ask
Your password and your one-time codes are yours alone. Our team does not need them to help you, and our systems do not work that way. A genuine request for help, a payment query or an account update will never require you to hand these over.
How fraudsters use this trick
- They call or message pretending to be from our security or payments team.
- They claim there is a problem and create a sense of urgency.
- They ask you to confirm a code that has just arrived on your phone, which is actually the code that lets them into your account.
What to do if you are asked
- Stop. Do not share anything.
- Hang up or close the message.
- Contact us yourself using the details in your portal or on our official website, not the number or link the other person gave you.
If you have already shared a code or password, change your password immediately and tell us through a verified channel so we can secure your account.
For related safety guidance, see what information we will and will not ask you to confirm, setting up two-factor authentication and how to report suspected fraud.
See also: Advance-fee and fake loan offer scams, Choosing a strong password for your business account, How Credicorp will — and won't — contact you.