According to criminologists, the volume of fraudulent transactions to write off clients' bank accounts annually exceeds 100 billion rubles - an astronomical figure. Fraudsters act cunningly, taking advantage of the flaws of the modern law enforcement system and its weak technical base - write off small amounts of 70-100 rubles. Because of such a trifle, not everyone will go to the police, and if you multiply the figure by a couple of hundred, then an impressive amount is obtained for the fraudster.
Do not give the PIN code and details to strangers
This is one of the basic rules, which, despite all its evidence, for some reason is not always respected.
The worst option is to write a PIN code on the card itself or on a piece of paper that is always next to it (for example, in one case). In this case, the attacker will only have to go to the ATM and withdraw everything on the account if he receives your card at his disposal.
It is not a good idea to give the PIN code to the seller in the store, the waiter or the boy next door (if you ask him to withdraw a little money). Protecting the combination, which is actually the key to your wallet, is worth it with great care.
If it so happened that the PIN code was compromised, then it is urgent to change it. A number of banks allow you to do this even by telephone.
If you think that the data printed on the plastic — the date of “validity” of the card, the name of the holder and the three digits on the other hand (CVC code) - are needed only for a “reference” purpose, then you are mistaken. This data allows you to remotely identify the payment instrument and make a payment on it.
If the attacker has the card itself or its full data, he will be able to withdraw money, as an option - through an online transfer to an anonymous wallet or by making a purchase in a fake online store.
Be careful when voicing information for accepting payment for a sale on the Internet. If you are offered to transfer money, transfer only the card number. There is no need for other details.
Particular care must be taken to protect the CVC code. With online identification, it plays the role of a PIN code. Never, under any circumstances, post a scan or photo of your card in the public domain.
Do not voice codes from SMS
This is also a classic. Fraudsters use various methods of social engineering to casually cash out their victim’s card by hook or by crook.
If you receive SMS from your bank, carefully read what operation you confirm
For example, they associate with a card holder and announce to him that he won the lottery. And now, supposedly for crediting the prize, they need full details. After some time, an SMS with a code arrives on the victim’s phone, which the attackers also request. And the owner of the plastic informs him of his joys, not suspecting that he actually helped them make a transfer from his card to another or even gave them access to their Internet bank.
If such a situation has occurred, and they begin to receive SMS from your bank, do not rush to tell anyone about it, but carefully read what operation you confirm.
Important: some particularly "advanced" criminals can use special equipment to intercept SMS from the bank, so it’s better not to tell your card details to anyone.
Do not save passwords on the computer
If you are actively using remote banking on the Internet, follow a number of simple rules:
- Do not accept the offer of the browser to save the password or card data. They can be removed from the server.
- Do not save passwords on computers of strangers (in Internet cafes, with friends, etc.) and even on a workplace.
- If unauthorized persons have access to passwords, change them immediately.
- For prevention purposes, it is recommended to change passwords at least once every 2-3 months.
Be careful with contactless payment.
Paying with one touch is convenient, but not entirely safe. If a card is lost, anyone who finds plastic can pay her at the store. A few trips - and the balance is exhausted.
There are several ways to protect yourself from this:
- Disable contactless payment, leaving only authorization by PIN code,
- Set a limit on the amount of payment - by default it is 1000 rubles, lower it to 500 rubles, and even to 100.
Be sure to set up SMS notification. If you lose a card about unauthorized transactions, you will know immediately.
If convenience is fundamental - use special protective covers for the card - they are inexpensive, and protect reliably.
Special covers for cards with a contactless payment system have a mark on protection against unauthorized RFID access
The most widespread theft of money from bank cards PayPass received in the metro - where there is a huge crowd. Fraudsters acquire readers that read information from a payment instrument and quietly place it next to a bag or clothes, transactions of up to 1 thousand rubles are successful. Be carefull!
Do not open suspicious MMS and links
If you received a message from an unknown sender on your smartphone, especially with an enticing, “teaser” message, do not rush to open it. If you have opened - do not follow the links, especially the short ones. There is a risk of launching viruses on your smartphone that intercept information and transmit it to their "owners".
Contrary to popular belief, even Apple could be attacked by a similar virus.
Danger can come from everywhere: SMS, MMS, instant messengers. Stay Vigilant!
Pay attention to the number and address of the sender
Familiar numbers conceal no less danger. Modern technology does not stand still, and scammers have learned to "mimic" - more precisely, fake messages and send them on behalf of official representatives.
For example, they can enter the same email address as the Federal Tax Service, but with a change in one character in the name or with a different domain zone. The letter will contain a link leading to the infected resource, or the virus file will simply be attached.
Attackers can try to scare a client by trying to get his card details from him. For example, they will send him a message stating that a huge fine has been imposed on him or that he is being summoned to court. Or, on the contrary, they will report a “win” in the lottery.
Some fraudsters manage to acquire toll-free numbers starting from 8-800 and begin to ring up victims, introducing themselves as bank employees. Checking if they are calling you on the hotline is very simple: just go to the bank’s official website and compare the numbers. If someone calls you from another, immediately disconnect.
Other attackers fake operator numbers. For example, instead of number 900, a message may come from number 9OO, in which instead of zeros is English O. Or instead of small English l (e) in the name Alfabank the capital I (a) can be written - in some fonts these letters are indistinguishable.
If the contents of the letter seem strange or suspicious, then the best thing you can do is simply ignore it.
Any bank informs its customers about the rules allowing to protect a bank card from fraudsters - pay attention to recommendations (data for Sberbank customers)
Use trusted ATMs
He will not describe in detail how scammers fake cards by reading data from magnetic tape using skimmers and other technical devices, as well as how they receive PIN codes when using keyboard overlays. We only note: there is such an opportunity, but it is easy to get such devices on the “black market”. Having received the data, the fraudster will be able to withdraw money without having the card itself.
Such devices are installed on ATMs located in crowded and low-light places - in underground passages, on the streets, in the basements of large shopping centers, etc. The older the ATM model, the easier it is to install skimmers on it.
Therefore, in order to protect your money, it is best to withdraw money, pay for services or replenish your card account in terminals that are located in the bank itself under the gun of many cameras. Or in large shopping centers, where security is watching over ATMs.
Many banks offer insurance against fraudulent bank card transactions - you can use this method as an additional means to protect your money (according to Sberbank)
The tips come from the previous one. If you read mail from a computer, be sure to enable the e-mail scan module in the settings of your antivirus. If from a smartphone, then purchase a special anti-virus program for mobile devices. A license is not expensive, and there are a lot of benefits from it.
Anti-Virus will not only prevent the download of dubious files, but also protect against frankly fake emails.
Set up two-factor authentication
If possible, make additional identification by voice, face (photo) or fingerprint. Even if your smartphone gets to an outsider, and he somehow gets access to the bank’s mobile application (for example, he will use programs for hacking), he will not be able to fake biometric data.
Biometric data allows you to protect your money more reliably
Log out of your account in the Internet Bank
After the session with the online bank is completed, do not forget to click the Exit button. Especially if it is someone else's computer. Often there are cases of theft of funds when the cardholder logged in to your account, but did not log out. And the one who sat down after him just sent himself his money.
Just closing a tab is not enough either. If you return to the page, for example, through the History tab, the session will be restored back.
Some banks, such as Tinkoff and Sberbank, automatically “log out” a client after 10 minutes of inactivity, even if he did not close the tab - this allows you to protect your account from unauthorized access. However, you should not rely on this. It is better to leave the online account yourself.
Use virtual cards to pay
If possible, do not use your primary bank card when paying for goods and services online. 3D-Secure technology reliably protects against data leakage, but you should definitely be safe.
To protect yourself, for online payments, use fallback options - for example, an unembossed or spare card, and store a minimum of money on it. Or even use a virtual backup. In this case, saving funds will be easier.
Recheck and call back
Be careful! At the slightest suspicion that you are being deceived, call the bank. Remember that the real employees of the bank will not find out any confidential data from you, but on the contrary, they will even start to stop you if you start dictating the card details or reporting the PIN code value.
The maximum that they can request from you is passport data and a code word, as well as such information that only you can know (for additional identification), for example, the available credit limit on the card.
Do not hesitate to break off the caller and specify his name, surname and position. It may turn out that among the bank employees there will be an unscrupulous employee.
Take an example from Sberbank - share information
The largest bank on the official page constantly updates information on new methods of fraud and timely notifies its customers about how to secure their account. Follow his example - be sure to read this article to your friends, parents and grandmother. No one is safe from fraud, and in the age of high technology, the tools of attackers are becoming more sophisticated. Watch your financial security and do not give scammers access to your money, simple actions will allow you to protect your bank card from scammers.
1. Inspect the ATM
If you see suspicious traces of glue, adhesive tape, a dent or chips on the keys, it is more advisable to keep your card away from this device. Fraudsters often use an on-board keyboard, so pay extra attention to it: if the keys differ in color from the rest of the body, look too new, or (even more so!) The panel staggers and lends itself to a “pick-up” with your fingernail - pass by.
2. For the safety of your funds, it is better not to use ATMs.
... located in dark alleys, on busy streets or tourist areas abroad. Installing a skimmer takes time. And in the above places, fraudsters are likely to have it. At the very least, the temptation to use a reader in such a vicious place will certainly appear.
7. Set a cash withdrawal limit
Choose the amount yourself. The main thing is that a fraudster will not be able to remove all its contents at a time. After the first transaction, you will receive a message and have time to “freeze” the account.
Do you like the article? Then support us press: