Ten rules for internet security

At Komerční banka Slovakia, we want our clients to have the best possible security for their business and online.

1

Be careful when entering sensitive data

  • double check any web address where you are asked to enter personal data. The difference between the real and fraudulent address can be very subtle – for example kb.sr instead of kb.sk,

  • if an unknown site requests your personal data or a card payment, check the site by searching Google. Pay special attention to the experiences and reviews of people on sites that you trust.

2

Be careful about visiting unfamiliar sites and download only what you are sure about

  • whenever you visit a site, check that the domain matches the contents,

  • do not download and run files with unknown content,

  • only download apps for your phone from the official app stores (Google Play, Apple Store).

3

Use a secure password and carefully protect your PIN

  • choose a combination of upper- and lower-case letters, numbers and special characters (full stop, exclamation mark, question mark). A secure password needs at least eight characters. As an alternative, you could use a favourite long quotation or a line from a film, as long as you have not shared it on your internet profile,

  • change your password every six months and do not use the same password for all your services,

  • do not write your PIN on paper or in your phone,

  • use two-factor authentication wherever possible (social networks, e-mail services, internet banking, etc.).

4

IF YOU OPEN A SUSPICIOUS E-MAIL

  • do not click on anything in the contents of the e-mail and do not open any attachments,

  • check the grammar and sentence structure. If it contains errors, you are probably dealing with an automatically translated fraudulent e-mail,

  • always compare the sender’s e-mail address with the company that the e-mail purports to be from. It should end “@name_of_firm/institution.suffix_of_their_official_website”,

  • if the subject of message is a request for payment or the provision of personal data, first contact the company or institution that the sender claims to be representing.

5

Do not provide sensitive information just because someone wrote you an e mail

  • do not click on links in suspicious or unsolicited e‑mails,

  • never let yourself be persuaded by any arguments. Neither the bank, nor the police nor even close family members have the right to such information.

6

When you need electronic banking

  • never log in to it on a public Wi-Fi network (if it is not encrypted, unless you are using a VPN),

  • use only your (company) computer or phone,

  • allow only your own biometric data (fingerprint, face) on your phone,

  • always properly log out from banking apps.

7

Protect your login credentials (PINs and passwords), the phone with your KB Klíč (Key) app or your certificate chip card at all times

  • never leave them unsupervised,

  • never provide your security elements or credentials to anyone else. If there is no alternative in urgent cases, change the information as soon as possible afterwards,

  • if KB Klíč shows a login request or a request to authorise a transaction that was not requested by you, reject it and contact us at once.

8

Protect your computer

  • use a licensed antivirus program,

  • use Trusteer Rapport - a browser extension specially developed to protect financial institutions. It will give you early warning of fake (fishing) websites and protect your password against abuse,

  • update your operating system, browser and other programs regularly.

  • Use only legally acquired software and systems

9

Regularly check your login history

  • in the banking app itself,

  • in online mail clients (e.g., Gmail),

  • on social networks.

10

Do not open e mails from unknown addressees, or messages with suspicious subject lines

  • think about the content and trustworthiness of the message.