Hot Deal Fraud in online Banking

429°
Sale Day King
2,446
20537
61

Just now received a message from SBI saying that
ALERT:You have made 2 invalid login attempts for userid XXXXXXXX on 26/08/2020 15:27 PM IST. Login access will be locked for day after 1 more attempt.
then I quickly changed my password.  Now I have few questions in my mind
1) my account will be safe after changing password or I have to do more
2) How these people even got my internet id username
3) It happens because when we pay through cred app it automatically save username (same for freecharge).
Please give ur valuable suggestions. how to be safe from online banking frauds
Thanks in advance

49 Comments  |  
13 Dimers
  • Sort By
148
8453
45

The worst thing in this sbi bank is it doesn’t require any otp for login Where as in kotak it asks every time otp when we want to login net banking

0
37578
587
Rocking_since_1992 wrote:

@androgame @getready

Could get username from many places. You use banking on phone?
Phones (especially android) are prone to various kinds of surveillance, better use only PCs for that.
Changing the password is fine for now, but if you face this again then better get your online access blocked and get new username

2,446
20537
61
sricharangunda wrote:

The worst thing in this sbi bank is it doesn’t require any otp for login Where as in kotak it asks every time otp when we want to login net banking

true

0
1162
12

It happens sometime, if another user has similar username as yours

once I entered one letter incorrectly of my username while logging in, then everytime it gave error of “wrong password”

on looking at username, I found it’s a typo mistake

2,446
20537
61
Expand
androgame wrote:

Could get username from many places. You use banking on phone?
Phones (especially android) are prone to various kinds of surveillance, better use only PCs for that.
Changing the password is fine for now, but if you face this again then better get your online access blocked and get new username

Thanks bro kg+

0
37578
587
Dastro wrote:

It happens sometime, if another user has similar username as yours

once I entered one letter incorrectly of my username while logging in, then everytime it gave error of “wrong password”

on looking at username, I found it’s a typo mistake

+1
Could be as simple as this too
Sbi is a big bank and most importantly a public sector bank toungueout

258
3056
20
sricharangunda wrote:

The worst thing in this sbi bank is it doesn’t require any otp for login Where as in kotak it asks every time otp when we want to login net banking

On one hand, people curse about a OTP requirement for logging in.

On a different note, SBI internet banking is also one among the most secured one’s. If you have noticed, its OTPs are always 2-3 digits extra than other banks. And even if some one could gain access over it, it needs OTP authentication for adding or transferring funds.

2,446
20537
61
Dastro wrote:

It happens sometime, if another user has similar username as yours

once I entered one letter incorrectly of my username while logging in, then everytime it gave error of “wrong password”

on looking at username, I found it’s a typo mistake

May be that can be a case, but my username is quit different

1,935
5748
77

Cred/ FC never stored usernames! 

Anyone else??

1,935
5748
77

Bro, SBI alerts are vague. It’s their server error. They will send you account balances of random accounts sometimes. When enquired with the branch, there won’t be any satisfactory responses. “Galati se chala gaya hoga..” was not something to be convinced easily. So, closed those gfn accounts long back.

PS: You can’t be anxious all the time with such lapses.

2,446
20537
61
deb3l wrote:

Bro, SBI alerts are vague. It’s their server error. They will send you account balances of random accounts sometimes. When enquired with the branch, there won’t be any satisfactory responses. “Galati se chala gaya hoga..” was not something to be convinced easily. So, closed those gfn accounts long back.

PS: You can’t be anxious all the time with such lapses.

Thanks bro kg+……but it’s good to discuss the things

1,935
5748
77
Expand
Rocking_since_1992 wrote:

Thanks bro kg+……but it’s good to discuss the things

Sure, but don’t worry much about such things and keep your passwords safe and changing in regular intervals. smile

2,446
20537
61
Expand
deb3l wrote:

Sure, but don’t worry much about such things and keep your passwords safe and changing in regular intervals. smile

Sure broda smile

106
1794
17
sricharangunda wrote:

The worst thing in this sbi bank is it doesn’t require any otp for login Where as in kotak it asks every time otp when we want to login net banking

Yes however every transaction requires OTP.

148
8453
45
Expand
igen wrote:

Yes however every transaction requires OTP.

There are certain govt websites they don’t ask any otp if we do sbi net banking

106
1794
17
Expand
sricharangunda wrote:

There are certain govt websites they don’t ask any otp if we do sbi net banking

This was true some years ago incl for IRCTC. Now it asks otp for irctc, dunno about govt websites.

50
3731
45
Expand
sricharangunda wrote:

There are certain govt websites they don’t ask any otp if we do sbi net banking

That’s because those websites are also the last place where any fraudster would want to spend the hacked money online. smile
@igen

50
3731
45
Expand
androgame wrote:

Could get username from many places. You use banking on phone?
Phones (especially android) are prone to various kinds of surveillance, better use only PCs for that.
Changing the password is fine for now, but if you face this again then better get your online access blocked and get new username

A misconception. By default android is more secure than windows because you don’t get root/admin access on any android version from the start. Without it a majority of vulnerabilities can’t be exploited. That leaves only installing insecure/malicious apps from either playstore or outside of playstore(I remember many ppl here used to install older version of cred & many similar apps to keep exploiting some loophole/removed feature in official updated versions) which compromises android device security but then clicking on any popup/visiting shady/pirate sites on pc is more likely to compromise your pc unless you are running linux.
@bikidas2060 @_One_Miller_ @drupal @Simbha3 @Total_Fun

952
8499
128
Expand
guest_999 wrote:

A misconception. By default android is more secure than windows because you don’t get root/admin access on any android version from the start. Without it a majority of vulnerabilities can’t be exploited. That leaves only installing insecure/malicious apps from either playstore or outside of playstore(I remember many ppl here used to install older version of cred & many similar apps to keep exploiting some loophole/removed feature in official updated versions) which compromises android device security but then clicking on any popup/visiting shady/pirate sites on pc is more likely to compromise your pc unless you are running linux.
@bikidas2060 @_One_Miller_ @drupal @Simbha3 @Total_Fun

Agree. Also like to add that 

1) almost all PC users use  physical keyboard to type in pass word ( instead of virtual one built-in) which makes them vulnerable to keyloggers.

2) There are lot more malwares for windows PC than Mac, iOS and Android combined.

3) There are hardware vulnerabilities ( that may or may not be solved/ mitigated with firmware updates)

Like few years ago computers science researchers found vulnerabilities in  CPU architectures of various companies from Intel (x86) architecture to IBM to  even some APPLE and ARM  (  ARM  designs mobile phone CPU [ SoC] architecture).


But it’s Intel’s  processors which were worst effects


https://www.techarp.com/guides/complete-meltdow...


https://www.anandtech.com/show/12214/understand...

952
8499
128
Dastro wrote:

It happens sometime, if another user has similar username as yours

once I entered one letter incorrectly of my username while logging in, then everytime it gave error of “wrong password”

on looking at username, I found it’s a typo mistake

Very true. Once I was receiving OTPs for Amazon login on my mom’s phone which doesn’t have Amazon account. I was upset because it was around 2AM middle of the night.

952
8499
128

@Rocking_since_1992 it could be just a typo in username. But just to be safe I’d suggest that use a separate bank account for regular NetBanking where you don’t keep much money. Whenever you do  need more money, transfer from your main account. Incase that account does get “hacked” you’d suffer minimum losses.

Also change your id to something more unique that typos by other users are very unlikely to occur

2,446
20537
61
Total_Fun wrote:

@Rocking_since_1992 it could be just a typo in username. But just to be safe I’d suggest that use a bank account for regular NetBanking where you don’t keep much money. Whenever you do  need more money, transfer from your main account. Incase that account does get “hacked” you’d suffer minimum losses.

Also change your id to something more unique that typos by other users are very unlikely to occur

Thank you bro for the suggestion…kg+

6,827
17160
42
Total_Fun wrote:

@Rocking_since_1992 it could be just a typo in username. But just to be safe I’d suggest that use a bank account for regular NetBanking where you don’t keep much money. Whenever you do  need more money, transfer from your main account. Incase that account does get “hacked” you’d suffer minimum losses.

Also change your id to something more unique that typos by other users are very unlikely to occur

SBI Username can’t be changed.

Missing