Security tips to protect yourself from Phishing, Vishing and Smishing
Phishing is the fraudulent practice of sending emails claiming to be from reputable companies (including RBI, Income tax department) in order to induce individuals to reveal personal information, such as passwords and card details, online.
Vishing is the act of using the telephone (Mobile / Landline / IVR) in an attempt to scam the user into surrendering private information that will be used for identity theft such as income tax refund, card activation or upgrade, rewards redemption etc.
Smishing is type of phishing attack where mobile phone users receive text / Multimedia (MMS) messages containing a Web site hyperlink, which if clicked would download a Trojan horse (spread viruses) to the mobile phone.
Do's
Review your bank details periodically for any transactions that are not initiated by you.
Look for secure session indicators like
https:// and padlock on web sites that require personal information.
Use updated anti-virus software and firewall
software.
Communicate information such as credit card
numbers or account information only via a secure website or IVR.
Ensure that your browser is up to date and
security patches applied.
If you reveal your bank account details
mistakenly, report the theft of this information to
the bank immediately.
Always TYPE the bank's address
(www.online xxxxxxxxbank.co.in /.com/) in the browser URL
field to access and login to your account, rather
than clicking through a hyper-link.
Review your bank details periodically for any transactions that are not initiated by you.
Look for secure session indicators like
https:// and padlock on web sites that require personal information.
Use updated anti-virus software and firewall
software.
Communicate information such as credit card
numbers or account information only via a secure website or IVR.
Ensure that your browser is up to date and
security patches applied.
If you reveal your bank account details
mistakenly, report the theft of this information to
the bank immediately.
Always TYPE the bank's address
(www.online xxxxxxxxbank.co.in /.com/) in the browser URL
field to access and login to your account, rather
than clicking through a hyper-link.
Don'ts
Never click on hyperlinks within emails, instead verify the URL independently.
Never reply to emails that seek personal information.
Never respond to offers of money from
abroad.
abroad.
Never respond to/ make remittances/ participate in schemes or offers from unknown entities.
Do not reply to emails or SMS' claiming
that the recipient has won a substantial
sum of money in an online lottery or
promotion.
that the recipient has won a substantial
sum of money in an online lottery or
promotion.
Avoid filling out forms in email messages
that ask for personal financial information.
that ask for personal financial information.
Don't click or forward links in an email,
instant message, or chat from unknown
senders or if you suspect the authenticity
of the message.
instant message, or chat from unknown
senders or if you suspect the authenticity
of the message.
Never share confidential details like Card
number, Card expiry date, CVV, OTP,
Internet Password with anyone when you
receive any unsolicited calls, SMS, IVR or
email seeking for card activation or upgrade, income tax refund, reward point redemption. This could lead to fraud as no bank asks for the same.
number, Card expiry date, CVV, OTP,
Internet Password with anyone when you
receive any unsolicited calls, SMS, IVR or
email seeking for card activation or upgrade, income tax refund, reward point redemption. This could lead to fraud as no bank asks for the same.
GAUTAM SINHA ROY
No comments:
Post a Comment