SBI Alert: Checklists To Keep Your Account & Net Banking Secure

Bank fraud is the false impersonation of a bank or other financial entity in order to amass funds, securities, or other property owned or controlled by a financial institution, or to steal money from depositors. Currently, internet banking is commonly used to check account details or balance, make payments, pay bills, transfer money, generate statements, and so on during the COVID-19 time, which is resulting in phase-by-phase lockdowns and shutdowns. As a result, scammers are actively looking for ways to use the vulnerabilities to defraud you. However, it will be better if bank customers stay vigilant and defend their accounts from this threat. As a result, SBI has advised customers should be careful of fraudsters and avoid disclosing personal information or downloading apps from unknown sources. In a recent tweet SBI has informed its customers that "We advise our customers to be alert of fraudsters and not to share any sensitive details online or download any app from an unknown source." SBI has urged its customers according to its website to follow the guidelines stated below to avoid falling victim to swindlers.

• Maintain a malware-free computer at all times.
• Change your net banking and mobile banking login credentials on a regular basis.
• Please double-check that the URL in your browser's address bar starts with "https", the padlock icon appears in the address or status bar, the address bar turns green, signalling that the site is protected with an Extended Validation Standard SSL Certificate.
• State Bank or any of its representatives will never send you an email, SMS, or phone call to acquire your personal details, password, or one-time SMS (high security) password. Any such e-mail, SMS, or phone call is an intention to use your Internet Banking account to take money fraudulently. Never reply to such email, text message, or phone call. If you receive such an email, SMS, or phone call, please report it immediately to [email protected]. If you have inadvertently disclosed your credentials, please instantly lock your user access.
• Customers of SBI do not download any smartphone app based on unsolicited phone calls or emails.
• Customers of SBI should stop opening attachments sent in emails from unknown senders.
• Customers of SBI must not respond to inappropriate deals received via email, SMS, or phone calls.
• If you receive an e-mail, SMS, or phone call offering a deal for sharing personal information or checking your account details on the bank's website, do not forget to report or avoid it.
• Your internet banking security will be improved if you use an updated operating system with the latest security updates, latest browsers, have a firewall available, and have anti-virus authentication installed.
• Regularly scan your computer with an antivirus software to make sure that it is free of viruses and trojans.
• In the post login tab, always verify the last login date and time.
• Avoid using cyber cafes or shared computers to access your online banking accounts.
• You will not be prompted to enter your username and password again once you have signed in. Additionally, while using internet banking, you will not be asked to include your CREDIT or DEBIT CARD details. Please do not enter such details if you get a message from a pop-up asking for it, no matter how 'genuine' the website seems to be.
• While logging into onlineSBI, search for the padlock and the URL address https://www.onlinesbi.com/retail/login.html, and when logging into Mobile OnlineSBI, look for https://m.onlinesbi.com/mretail/login.html. Type www.onlinesbi.com or https://m.onlinesbi.com in the browser address bar to be sure.
• Avoid clicking on embedded links in emails that promise to redirect you to a secure site.
• Never share personal details via text message, like account numbers, passwords, or any type of sensitive information that can be used for fraudulent activities. If you receive a text message requesting that you change your information, activate an account, or confirm your identity by calling a phone number or entering information on a website, proceed with caution. These messages may be part of a phishing attack used by offenders to steal your personal details.
• Make it a routine to check the address line of a website to see if it reflects anything other than the address listed in the received email or text message.
• Anti-virus applications, spyware, email and firewall scanners should all be updated on a regular basis.
• As a rule of thumb, be careful of any uninvited incoming email or phone call that asks personal or financial information or requests that you update them on a website. To check the validity of those calls, contact your bank directly via official channels.
• Under the "Profile" section of your net banking account, enable the 'high security' option. This is a second factor authentication that secures transactions such as adding a third party, transferring money to a third party, and so on.
• Suspicious emails, websites, social media networks, text messages, and phone calls should not be used to send or receive confidential information.
• Passwords should never be stored on any device.
• Allow your computer to remember your password. Accepting the autocomplete option offered by your computer/browser is not a wise practice.
• When accessing a sensitive service, do not use an untrusted device. If required, update the password instantly from a trusted device.
• Also, keep in mind that QR codes is only scanned to make payments, not to receive money. Concerning the same SBI has recently warned its customers through its Twitter account that "You don't receive money when you scan a QR code. All you get is a message that your bank account is debited for an 'X' amount. Do not scan #QRCodes shared by anyone unless the objective is to pay. Stay alert."