| Expert Group | DO’s | DON’Ts |
|
Anti- Bank Fraud
|
In case of online transaction such as banking, shopping or online bill payment, ensure that URL begins with https://
|
During online transaction never use URL starting with http://
|
|
Always use complex password which must contains uppercase, lowercase, numeric and symbols.
|
Never use simple password like Dictionary words, street name, Birth date, etc
|
|
Keep computer and smart phones updated
|
Beware of links & attachments in messages or e-mail
|
|
Cyber Crime
|
Type the address of your social networking site directly into your browser or use your personal bookmarks
|
Avoid checking ‘Keep me logged in’ or ‘Remember me’ options on websites, especially on public computers
|
|
Change the passwords at regular interval
|
Never share your personal user information with friends, family and associates
|
|
Use 2-step verification for stronger security in mail Account. With 2-Step Verification, you’ll protect your account with both your password and your phone. Use your Mobile as a 2nd key for your account
|
Assume that everything you put on a social networking site is permanent. Even if you can delete your account, anyone on the Internet can easily print photos or text or save images and videos to a computer
|
|
Server security Management
|
For better monitoring of server system the facilities like Surveillance systems, Cameras, guards, exterior lighting etc. should be provided. The server room should be transparent from three sides.
|
Never test unknown/ new application
in active running server.
|
|
Proper storage/disposal of hard drives and other electronic storage media
|
Never delete current log files, crash damp files etc.
|
|
Always use proper security mechanism i.e. Access control, Intrusion detection and prevention, Encryption etc.
|
Never neglect security on gateway, logon attempts, Password etc.
|
|
Safe Banking
|
Always use bank’s website by manually typing in the address bar. Use of specific banks’ application for enabling or disabling the credit and debit card. Use of OTP as a mandatory for all transactions.
|
Do not respond to fake call/SMS. Do not respond to any call/SMS seems to be from your Bank seeking information regarding bank account or card details or mobile OTP.
|
|
Press “Shift+Ctrl+N” of a browser for safe browsing. It will also erase your private browsing data after closing the browser
|
Never save credit/debit card information on websites and web browsers
|
|
Always have up to date antivirus software and firewall updated on your devices
|
Never open bank or other payment gateway as copy/ paste from other source
|