i-Banking Services
Security Notes
 | 
DC

PIN
 
1. Do not disclose your User ID and password to anyone, including someone claims to be the Bank staff or the Police. Under no circumstances will our staff ask for such information from customers through whatever channels, such as in person, telephone or e-mail, etc.
 
2. Destroy the original printed copy of your password.
 
3. Do not allow anyone to use your password.
 
4. Avoid using easy-to-guess password such as your birthday, phone number, repeated numeric combination or the same user ID and password that you use to access other systems or online services.
 
5. Change your password from time to time.
 
Internet Surfer Best Practice
 
6. Do not leave your computer and mobile communication device (eg. mobile handset, tablet etc.) unattended and promptly exit by clicking "Logoff" button and disconnecting from on-line services. Set up auto-lock password to prevent unauthorized access of your computer and mobile communication device.
 
7. Remove the temporary files stored in the memory or in the hard disks of the computer shared with others.
 
8. Memorise your User ID and password and do not write it down. Do not store password in your computer/mobile communication device or the browser or re-use passwords, and disable auto-complete function.
 
9. Do not install document sharing software in your computer.
 
10. Check your account balances and statements regularly. Report to the Bank as soon as possible if you spot any unusual transactions.
 
11. Avoid using public or shared computer/shared mobile communication device or public Wi-Fi network or Wi-Fi without password setting to access our i-Banking services and ensure that your screen or input cannot be viewed by any person.
 
12. Ensure proper physical access controls for your personal computer/mobile communication device and Internet connections.
 
About Anti-Virus Protection
 
13. Install Firewall with appropriate safety level or access control set-up and regularly update PC security softwares (eg. Anti-Spyware, Anti-Virus etc.) to protect from Spyware and virus such as Trojan Horses. Also, scan your computer from time to time with anti-virus software and anti-spyware software.
 
14. Download and apply security updates and patches to the computer and mobile communication device/browser when they are made available to ensure you have the latest protection against any security vulnerabilities.
 
15. To prevent the Spyware installation without your knowledge and virus attack, avoid visiting or downloading software from suspicious websites, never install freewares, programs and smartphone applications from unreliable sources or pirated softwares or use jailbroken/rooted devices or open e-mails and attachments from unknown or doubtful sources. If any unusual screens pop-up and/or the computer responds unusually slow, log off from the Internet Banking and scan the computer with virus protection software.
 
16. To prevent unauthorized access by third party to your data through network, please disable the "File and Printer Sharing" function and set up the proper access rights of your computer.
 
When using Internet Banking
 
17. Verify last logon date and time.
 
18. Ensure all other Internet sessions are closed before and during logging on to our i-Banking services.
 
19. Avoid accessing our i-Banking services through hyperlinks embedded in e-mails or suspicious pop-up windows or third party websites. Do not enter any information (user ID, password etc.) to the screen pop-up or suspicious websites.
 
20. Access to the i-Banking's web site via the web browsers' bookmarks menu which has previously been identified genuine or typing the exact URL: http://www.shacombank.com.hk. The bank has adopted the latest Internet Security measure, EV SSL Certificate (Extended Validation SSL Certificate). If you are using the following browsers to access our i-Banking services, the colour of the browser address bar will be changed to green and the bank name will be displayed on the address bar (Internet Explorer 7.0 / Firefox 3.0 / Chrome / Safari 4.0 or above). If you are not using the above browsers, on the logon page you will see a small lock. If you double-click the lock, a server certificate issued by VeriSign will appear and the details and validity of the certificate will be shown to authenticate you are accessing the genuine website of the bank.
 
21. Ensure any device (for example, smart card, i-Key, that store digital certificate) and/or password used for accessing i-Banking services is secure and kept safe. Remove the storage media of the digital certificate from your PC after use.
 
22. Do not install the digital certificate on your web browser or store the digital certificate in a hard disk.
 
23. Notify the Bank of any changes in your personal details as soon as possible (e.g. telephone number, email and correspondence address).
 
24. If you suspect any unusual account activities, including discrepancy details found on the last logon time and certificate information, please change your i-Banking password immediately and contact our 24-hour hotline on (852) 2818 0282 or visit any of our branches for immediate assistance.
 

Please refer to the security advice provided by our Bank from time to time and visit


For Frequently Asked Questions, please visit

Copyright © 2013 Shanghai Commercial Bank Ltd. All rights reserved.