Two-step verification process | CIBC (2024)

Table of Contents
What it means An extra layer of security No more personal verification questions Unique verification codes How it protects How it works STEP 1 Step 2 Fraud prevention Ways to receive the code Push notification Text message Voice calls How to set up push notifications What to do before you travel Review your settings Confirm your contact information FAQs References

Accessibility Quick Links

  • Skip to Online Banking
  • Skip to Content
  • Skip to Navigation

Contact Us Opens in a new window.

Sign On to C I B C Online Banking. Opens in a dialog.

×

Are you sure you want to delete this saved card number?

Cancel

Delete

Online banking

We're sorry, CIBC Online Banking is currently unavailable. We apologize for any inconvenience.

Security guaranteed shield

Electronic access agreement

Locations. Opens in a new window.

Sign on to CIBC Online Banking. Opens in a dialog.

×

Are you sure you want to delete this saved card number?

Cancel

Delete

Online Banking

We're sorry, CIBC Online Banking is currently unavailable. We apologize for any inconvenience.

Security Guaranteed

Electronic Access Agreement

Two-step verification process | CIBC (3)

What it means

An extra layer of security

Before you complete a sensitive request that requires greater protection, you’ll get a prompt to enter a one-time verification code.

After your password, it serves as a second check to make sure it’s really you accessing your account.

No more personal verification questions

Don’t worry about having to remember the answers to your personal verification questions anymore. The one-time verification code replaces them.

Unique verification codes

A new 6-digit one-time verification code is generated for each sensitive transaction or request, but you’ll only need to enter the code once during each online banking session.

Each code is unique, and we’ll never contact or ask you to reveal the code over the phone.

How it protects

Two-step verification applies to certain transactions and account changes as a way to verify your identity and confirm your request. So even if someone manages to access your account, they won’t be able to:

Two-step verification process | CIBC (5)

Register for online or mobile banking

Two-step verification process | CIBC (6)

Update your contact information

Add a new or change an existing Interac e-Transfer® contact

Two-step verification process | CIBC (8)

Add payees1

Two-step verification process | CIBC (9)

Make large payments

Two-step verification process | CIBC (10)

Reset your password

How it works

Two-step verification process | CIBC (11)

STEP 1

Select your contact method

Choose to get the code via text, push notification or voice call from the dropdown menu.

Note: For account security, we no longer send one-time verification codes to any email services and can’t leave a voicemail message.

Check which international numbers we can send verification codes to Opens in a new window..

Step 2

Enter your one-time verification code

Once you receive the code, enter it into the box to complete your transaction.

Note: Verification codes expire in 10 minutes, so enter it as soon as possible to complete your transaction. If you enter your 6-digit one-time verification code incorrectly 3 times in a row, the code will expire.

Two-step verification process | CIBC (12)

Fraud prevention

We want to protect you from scams. Fraudsters may contact you, pretending to be a member of CIBC’s fraud team. They may claim your account’s been compromised due to suspicious activity. They may also ask you to share a 6-digit one-time verification code with them to protect your account. If anything like this happens, disconnect the call immediately and call the number on the back of your card.

Learn more about banking fraud about how CIBC is supporting Ukraine.

Ways to receive the code

Push notification

This is the most convenient way to get the code, especially while travelling, as all you need is to be connected to a Wi-Fi network. Push provides a stronger method of security and doesn’t require connection to a national cell phone network.

You can receive the one-time verification code directly on your mobile device for most requests or transactions, with the exception of registering for online or mobile banking.

Get push notifications Skip to get push notifications.

Text message

Get the one-time verification code via text message. It’s convenient, arrives instantly and is easy to access in most countries while travelling. Make sure to enter the code within the body of the text message and not the number from which you got the text. Also, keep in mind that data charges may apply.

Voice calls

If receiving a phone call is more convenient for you, get the one-time verification code via voice call. Make sure

  • your contact information is up-to-date so you can choose the one you need, and
  • that you say something to activate the recording when you answer the call.

Select phone providers may block toll-free numbers which prevents you from receiving the one-time verification code through a voice call. Check with your phone provider if you don’t receive the one-time verification code from CIBC.

How to set up push notifications

Follow the steps in this demonstration to set up push notifications on your mobile device.

Two-step verification process | CIBC (13)

What to do before you travel

Review your settings

Make sure the device you’ll be travelling with is set up to receive push notifications. Keep in mind you can only enable push notifications on one mobile device at a time.

Confirm your contact information

Make sure your contact information is up-to-date. If you use a phone number registered to a region outside of Canada or the U.S., make sure it's an international number we can send verification codes to Opens in a new window..

When outside of a Wi-Fi network, make sure roaming is on, keeping in mind that data charges may apply.

Two-step verification process | CIBC (2024)

FAQs

What is the 2-step verification process? ›

2-step verification adds an extra layer of security to your Google Account. In addition to your username and password, you'll enter a code that Google will send you via text or voice message upon signing in.

Learn More
Why doesn't two-step verification work? ›

It may be because the time isn't correctly synced on your Google Authenticator app. On the next screen, the app confirms the time has been synced. You should be able to sign in. The sync will only affect the internal time of your Google Authenticator app, and will not change your device's Date & Time settings.

See Details
How secure is two-factor authentication? ›

Using two-factor authentication is like using two locks on your door — and is much more secure. Even if a hacker knows your username and password, they can't log in to your account without the second credential or authentication factor.

View Details
How to recover gmail account with 2-step verification? ›

Recovering a 2-step verification Google account:
  1. Go to the Recovery Page: Visit the website for Google Account Recovery.
  2. Give your email: Once you've entered it, press "Next."
  3. Verification Code: A code will be sent to the registered phone or email address you provided for recovery.
Aug 16, 2023

Read On
How does verification process work? ›

This works by comparing the data a person sends over, whether that's a document such as a passport or biometric data such as a picture of their face and comparing that against a verified data set. This can include government records, credit references or even mobile data.

View More
What is the procedure of verification? ›

Verification activities include Analysis, Inspection, Demonstration, and Test. (see below) Choice of verification methods must be considered an area of potential risk. The use of inappropriate methods can lead to inaccurate verification.

Know More
Can people bypass 2-step verification? ›

Hackers often employ deceptive emails or websites to trick users into revealing their 2FA codes along with their login credentials. Once they obtain both, they can swiftly access the account. Attackers use psychological manipulation to deceive individuals into divulging their 2FA codes or other authentication data.

Learn More Now
Can hackers beat 2-step verification? ›

Can two-factor authentication be hacked? We now know how 2FA prevents hacking, but can hackers get past 2FA? The short answer: Yes, 2FA can be bypassed by hackers. But before we get into the potential weaknesses of 2FA, it's worth noting that even the biggest cybersecurity companies aren't immune to digital attacks.

Get More Info Here
Can I skip 2-step verification? ›

Manage your Google Account.

At the top, tap Security. Under "How you sign in to Google," tap 2-Step Verification. You might need to sign in. Tap Turn off.

Know More
What's the main disadvantage of two-factor authentication? ›

Drawbacks you may encounter

The most common reason for this can be the lack of a modern phone or any other gadget that would support such a feature. Problems due to loss of access to one of the authentication factors. This can make it difficult to access a personal account and take some time to solve it.

Read More

What are the weaknesses of 2 factor authentication? ›

Disadvantages of two-factor authentication:
  • Factors can get lost. There is no certainty that your authentication factors will be available when you need them. ...
  • False security. Two-factor authentication provides a level of security, but it's typically exaggerated. ...
  • It can be turned against users.
Oct 25, 2017

Read On
What is the strongest form of two-factor authentication? ›

The most effective two-factor authentication (2FA) methods are app-based and hardware-based. App-Based (e.g., Google Authenticator, Authy): They're more secure than SMS-based 2FA since they're less vulnerable to SIM-swapping attacks.

Find Out More
How to get past 2-Step Verification without phone? ›

If you know your Google account password but don't have the phone number for the second verification code, you can try the following: Use a backup code: If you created backup codes when you set up two-step verification, you can use one of those codes to sign in.

Read More
What happens to 2-Step Verification if I lost my phone? ›

If you've lost access to your 2FA device, you can recover your account by using backup codes, alternative recovery options like a secondary email or phone number, or by contacting customer support. Be ready to confirm your identity by answering a few security questions or providing proof of ID.

Read More
How do I get through two-step authentication if I changed my phone number? ›

To change the phone number for 2-Step Verification on the mobile apps:
  1. Go to the More menu.
  2. Select "Settings"
  3. Select "Password & Security"
  4. Click on "Change mobile phone"
  5. Go through 3 steps to re-authenticate, change your mobile phone number, and enter the code to verify the new number.

Explore More
What is an example of two-step authentication? ›

Using two knowledge factors like a password and a PIN is two-step authentication. Using two different factors like a password and a one-time passcode sent to a mobile phone via SMS is two-factor authentication.

Read On
What is customer verification process? ›

Customer verification is a process used by contact centers to substantiate the customer's information and validate their identity.

Read On
What is 2 level verification? ›

With 2-Step Verification, also called two-factor authentication, you can add an extra layer of security to your account in case your password is stolen. After you set up 2-Step Verification, you can sign in to your account with: Your password. Your phone.

See Details
What is the second step for strong authentication? ›

Strong authentication uses more than just user credentials for login. Secondary authentication steps may include MFA code, one-time password (OTP) sent via text message, RSA SecurID, smart card or biometrics.

Learn More Now

References

Top Articles
Warren Buffett on Success: Best quotes by the ace investor
Dubai Islamic Bank
Craigslist Apartments Queens
4 takeaways from the first presidential debate
What the teams said – Race day at the 2024 Austrian Grand Prix | Formula 1®
Daily Racing Form: How To Use DRF
Www-awu.aleks.com Content Th. Guettion 20 ct 32 (t point) I Question Attempt 1 of Unilimited Lebzang 18 19 20 21 22 23 24 25 26 27 28 29 Netflix: A study conducted by a technology company showed th he mean time spent per day browsing the video streaming s
elugtion 20 of 32 (1) point Ounution Aitempt: 1 of Unlimited Lebiang 2. 19 20 21 22 23 24 25 26 27 28 29 Erower =30, Netfix: A study conducted by a technology company showed that the mean time spent per day browsing the video streaming service Netfix for
RETURN TO TITLETOWN 2010 GREEN BAY PACKERS COLLECTORS EDITION BOOK NEW - books & magazines - by owner - sale -...
Man charged with killing mother, dumping body in South Carolina river, sheriff says
Latest Posts
Dividends vs Capital Gains | How They Work & Main Differences
Islamic Banking and Finance Definition: History and Example
Article information

Author: Jonah Leffler

Last Updated:

Views: 5896

Rating: 4.4 / 5 (45 voted)

Reviews: 84% of readers found this page helpful

Author information

Name: Jonah Leffler

Birthday: 1997-10-27

Address: 8987 Kieth Ports, Luettgenland, CT 54657-9808

Phone: +2611128251586

Job: Mining Supervisor

Hobby: Worldbuilding, Electronics, Amateur radio, Skiing, Cycling, Jogging, Taxidermy

Introduction: My name is Jonah Leffler, I am a determined, faithful, outstanding, inexpensive, cheerful, determined, smiling person who loves writing and wants to share my knowledge and understanding with you.