Prevention Guideline for Online Banking
SCB provides internet banking services through PCs, note books, tablets, or smart phones to enable customers to perform transactions, such as balance inquiries, withdrawals, fund transfers, utility payments, or the purchase of goods and services by themselves. When using online banking services, users must exercise discretion regarding the confidentiality of user names, passwords, or PINs due to the increasing threat of attempts to obtain user names, passwords, or credit card numbers for transactions. Using this technique, called “phishing”, an e-mail containing a link will be sent to users. When a user clicks on the link it will connect to a fake website that will steal your confidential information in order to unauthorized conduct transactions.
- After completing all your transactions, you must always log out to prevent any unauthorized access.
- Do not disclose confidential information, such as credit card numbers, account numbers, or passwords to others.
- Make sure the Web page status turns to HTTPs:// from HTTP:// before proceeding with online transactions.
- Set a password for logging into your smart phone or tablet that is difficult to guess to prevent any unauthorized access to perform transactions on your behalf in the event that your smart phone or tablet is lost or stolen.
- You must download and use bank applications only.
- You should not use a jailbroken or rooted smart phone or tablet whose operating systems have been adjusted, which makes them vulnerable to information theft if they are used to conduct online transactions.
- Install virus or malware scanner programs and use a firewall to protect your computer from malware such as Trojans which can steal and send information from of your computer. Please update the programs to ensure that you are running the latest version.
- You must not use or install non-licensed operating systems and programs to avoid hidden programs such as Trojans or spyware.
- In the event that you are required to perform online transactions, you should avoid using public internet connections, including free wifi, which may be a fake wifi account created by fraudsters to capture confidential information such as User IDs and passwords.
- You should use your own smart phone or tablet when performing financial transactions and avoid using leased PCs or PCs with multiple users, such as PCs available at libraries or internet cafes.
- Closely monitor news, updates from SCB websites, The Bank of Thailand, or other media to learn new financial crime methods which that can pose a threat to anyone.
- Consider changing your passwords periodically for accounts using the same password. Never repeat a password.
- The Bank stresses that there is no policy that calls for sending an email or SMS with a link for you to click to access your account or to install any applications on smart phones or tablets for use with SCB Easy Net. The Bank never requests any personal data by email. Please log in through a Favourite or Bookmark created by yourself directly to www.scbeasy.com and to other websites of the Bank.
- As soon as you change your personal information, such as name, address, or telephone number, you must inform the bank immediately to enable the bank to contact you in the event of any incident concerning your account.
- Check you account on a regular basis and contact the bank immediately if you find any irregularity.
- In the event of the following suspicious incidents please act accordingly:
- You do not see the secure “https://...” mode after logging on to the bank's website, close the browser immediately and do not perform any transactions.
- Despite being linked to securely with “https://...”, a warning message regarding SSL Certificate still pops up. If this happens you must close the browser immediately and not perform any transactions.
- If you suspect you may have visited a phishing website, please call our customer service at 02-777-7777, 24 hours a day. to immediately change your password or block or close accounts from which data is suspected to have been stolen.
- If you find a website which has a malicious purpose, you can report it to the Financial Crime & Security Services Division, Retail Banking Group, or email to Security@scb.co.th 24 hours a day.