Cyber Security Awareness

Cyber Security Awareness

Technology has become an integral part of our day to day life and It has changed the way we connect with everyone for numerous purpose like chatting, finding jobs, find matches for marrying, run businesses, play games, do shopping and so on.

With the ease of availability of smartphones, almost everyone has access to the cyber space, connecting virtually to millions of online users across the globe. Increasing use of cyber space has also made us vulnerable to cybercrime threats. A minor negligence can open the doors for cybercrimes and hence can lead to financial loss, damage to reputation, harassment etc. So, we must be vigilant and careful while connecting digitally to the outside world whether for financial transactions, social media networking, playing games or searching things on the internet etc.,

We as a bank, always try our best to educate our customers to prevent from cyber-attacks. We had launched New Year Calendar for year 2021-22 based on Cyber Security Awareness Theme, which was well appreciated by our shareholders, customers as well as well-wishers.

So, here are some important precautions/tips/possible ways by which one can avoid the particular cybercrime/fraud. We have tried to keep it simple so that even a layman can understand it.

  • 1. TWO-FACTOR / MULTI FACTOR AUTHENTICATION

    It’s important to have a strong password, but it’s even more imperative to have two-factor, or multi-factor, authentication. This method provides two layers of security measures so if a hacker can accurately guess your password, there is still an additional security measure in place to ensure that your account is not breached.

    • Two-Factor Authentication (2FA) is a type of authentication that requires exactly two factors of authentication.
    • Multi-Factor Authentication (MFA) is a type of authentication that requires two or more factors of authentication.
    • If passwords are your sole line of defence against unauthorized access, then you better enable Multi-Factor Authentication in your workforce before it’s too late.
  • 2. UPDATE YOUR SOFTWARES ON REGULAR BASIS

    Hackers can’t easily access your systems with a few clicks of the mouse, especially if your cybersecurity is airtight. Instead, they take advantage of errors in your software or manipulate employees into giving them access to your systems.

    By updating your software regularly (when prompted),it functions at its peak performance:

    • Tightened Security
    • Improved User Satisfaction
    • Sustained Compatibility

    Software Updates can prevent security issues and improve compatibility and program features. Software updates are necessary to keep computers, mobile devices and tablets running smoothly -- and they may lower security vulnerabilities

  • 3. DON’T OPEN UNKNOWN LINKS & ATTACHMENTS OVER EMAIL

    Phishing scams are one of the most common methods of attack you’re likely to come across. They are a hugely profitable attack method for cybercriminals, as thousands fall victim to them every year.

    Here are some simple ways to identify and prevent phishing scam:

    • If you receive suspicious emails, whether they’re from someone you know or don’t, DO NOT CLICK LINKS OR OPEN ATTACHMENTS.
    • If you don’t know the sender and it’s clearly something you don’t need, delete it and move on.
    • To identify a bad link, hover over it with your mouse – DON’T CLICK THE LINK. The real web address will show up. It’s generally obvious that something isn’t right.
    • The domain name may be different than that of the sender
    • Instead of .com or .org at the end of a URL, you might see .ro, .cn, or .ru indicating a site is based in Romania, China, or Russia – countries known to harbour cyber criminals. Those are just some examples, as hackers can live and work anywhere.
    • Professional companies and organizations usually have an editorial staff to ensure customers get high-quality, professional content. If an email message has obvious spelling or grammatical errors, it might be a scam. These errors are sometimes the result of awkward translation from a foreign language, and sometimes they're deliberate in an attempt to evade filters that try to block these attacks.
  • 4. CVV/OTP SHARING FRAUD

    Cyber criminals posing themselves as bank /RBI officials call people and tell them that their ATM card has been blocked or their KYC (Know Your Customer) is not updated or their Aadhaar is not linked to their bank account & hence their account will be blocked. Then on the pretext of updating the KYC/linking bank account to Aadhaar or for resuming the services of ATM card/activation of new ATM card asks for details related to victim’s bank account like ATM card number, CVV number, OTP etc. After these details are shared by victim, money is siphoned off from the victim’s bank account

    ALWAYS REMEMBER
    • Bank never asks for card number/CVV number/OTP.
    • Never share the ATM card number, CVV, OTP or any other confidential banking credentials with anyone over a phone call/SMS/WhatsApp.
    • E-mail should not be shared as this may lead to activation of Internet banking by cyber criminals, leading to siphoning off of one’s money.
  • 5. FRAUD BY REQUEST MONEY QR CODE/LINK ON GOOGLE PAY/PHONEPE/PAYTM

    Cyber fraudsters send debit links or QR codes to victims to scan and receive money in their bank accounts through Google Pay/PhonePe/Paytm. But instead of receiving money, it actually gets debited from the victim’s account as fraudsters actually send a request money QR code/link.

    ALWAYS REMEMBER
    • Never accept/click on any link or scan any QR code from unverified sources as they may send you a manipulated one.
    • For receiving money, there is no need to enter MPIN or UPI PIN
  • 6. FRAUD USING FAKE SOCIAL MEDIA ACCOUNT

    Fraudsters target accounts on popular social media platforms like Facebook and Instagram. They commit fraud by creating a similar fake account of the target profile and requesting his/her friends for instant money transfer citing some medical emergency etc. Target profile’s friends transfer the money considering him/her as his/her friend. By the time the target profile comes to know of it, many of his friends become victims of the fraud. Similar fraud is also committed by hacking the target account

    ALWAYS REMEMBER
    • Keep the privacy setting as “My friends” only.
    • Before transferring the money requested via Facebook, WhatsApp or other social media account, verify the authenticity of the message by meeting the concerned person or calling him.
    • Turn on 2-step verification for all your social media accounts.
    • Keep your password strong and maintain the privacy of the password
    • Social media sites offer privacy settings to manage who can view your posts, photos, or send you friend request etc. Restrict access to your profile.
    • Ensure your personal information, photos and videos are accessible only to your friends.
    • Refrain from making friendship with unknown persons over social media platforms.