Security Tips
Samba is well aware of the fraudulent banking practices prevalent around the world these days. And hence we strongly recommend some simple security tips to ensure safe and secure banking sessions.
Using Public or Shared Computers
Avoid accessing your Internet Banking Account from a cyber cafe or a shared computer. However, if you happen to do so, please change your passwords from your own computer as soon as possible. For increased security, we request you to change your password on a regular basis.
Safe Online Banking
- Always type the Samba website URL samba.com.pk directly into your browser address bar before you login to ensure that you are on the correct Samba website. Never click a link that offers to take you to our website. This will reduce the chances of you becoming a victim of phishing attacks.
- Use a web browser that has good security controls such as pop-up blocker, checks on malicious sites etc. For example: Internet Explorer version 7.0 and above.
- See to it that the bank's website address changes from http:// to https:// and a security icon that looks like a lock appear in the status bar of the browser or at the end of the URL in some browsers.
- Click on the lock icon to verify if the certificate is issued to samba.com.pk. Double click on the Lock Icon highlighted in figure A. It will open a window with the certificate information as shown in figure B. Make sure that the certificate details show that the certificate is issued to samba.com.pk . as highlighted.
- Every time you complete your online banking session, log off from the website. Do not just close your browser.
- Update the bank when you change your contact details. This will enable us to contact you immediately in case we detect unusual transactions.
- Make sure you regularly receive and review your mobile alerts to be instantly aware of the transactions happening in your account.
- Check your account statement on a regular basis either using ATM or Internet Banking.
Protect your Password
- Choose strong passwords with a minimum of 8 characters using a combination of alphabets and numbers Avoid easy to guess passwords such as spouse/children name, date of birth, pet name, city name, car number etc.
- Memorize your password and do not write it down in your mobile or email. Use a different password for online banking and for logging into other non-banking websites.
- Ensure that no one is watching you while you type your password / PIN or any other sensitive information. Do not share your Password / PIN or make it accessible to others.
- Never reveal your password / PIN to anyone even if they claim to be a staff member of Samba.
- Do not allow anyone to use or tamper with your safe word password generating token or other authentication devices provided by the Bank. Do not divulge the serial number of your security token / authentication device to anyone.
Protecting your Computer
- Ensure that your computer has the latest anti-virus software and is updated regularly. Make sure your computer's Operating System and browser software are updated with the latest security patches.
- Install a personal firewall to prevent unauthorized access to your home computer, particularly when they are linked via broadband connections, (DSL) digital subscriber lines or cable modems. Update the personal firewall with security patches or newer versions on a regular basis.
- Do not select the option auto-save on browsers for storing or retaining user name and password when logging into online banking.
- Clear your browser's cache and history after each session so that your account information is removed, especially if you are using a shared or public computer from internet cafes.
- If you are using a Windows OS, ensure any unwanted ‘file & print’ sharing is disabled. Keep regular backups of critical data.
- Consider the use of encryption technology to protect highly sensitive data.
Wireless Networks
- Set a password for your wireless point and prevent unauthorized users from accessing and using your wireless connection.
- Disable broadcasting to your network name (SSID-Service Set Identifier) to prevent casual surfers from detecting and connecting to your wireless network.
- Enable encryption on data transmission to protect your wireless network. Allow only registered machines for your wireless network.
Beware of Spyware
- Spyware is a piece of software inserted in your computer that collects information about you and your internet browsing pattern. It is stored in your PC (with or without your consent) when you download software, games, screensavers, etc., from the Web. It usually claims to be able to improve your computer's performance.
- Spyware can be used maliciously to gain access to your passwords, PINs, card numbers and Internet browsing history. They can also be used to scan files on your hard drive and slow down your computer by consuming system resources leading to system instability or a crash.
- Do not log- in to Samba Online while such software is installed on your computer. If you have installed any software that claims to speed up your internet connection, or have additional third-party toolbars on your browsers, then you may be using software that has the ability to track your internet sessions. We recommend that you uninstall such software.
Beware of Phishing
Online phishing pronounced as "fishing" is a method of identity theft that tricks you to reveal personal or financial information online. Phishers use phony websites or deceptive email messages that mimic trusted businesses and brands in order to steal personally identifiable information such as usernames, passwords, credit card numbers, and billing information. For more information please email at samba.care@samba.com.pk.
Do not trust anybody even if they claim to be from the Bank
If you receive a call from an unknown number / person claiming that he is from the Bank, please call SambaPhone or your Relationship Manager and report the issue.
Information on the site
Please note that the information provided on this website is generic in nature and may not be up-to-date. In case you need specific information, please contact your relationship manager or SambaPhone to confirm. Samba will not be liable for any damages to you resulting from acting on information provided on this site. Also, the internet is susceptible to virus attacks, malicious software or other such security threats. Samba will not be liable for any damage to you resulting from any such virus, software or other security threats which you may be exposed to as a result of accessing the Banks' site.
Security
To protect information during transmission between your computer and our website, Samba Online banking uses SSL to encrypt the data. Please make sure the website where you are entering the user-id / password starts with https.
Unauthorized Access
To prevent unauthorized access to your account, Samba will automatically block / deactivate your account after predefined consecutive unsuccessful login attempts for your ID. Your account will also be blocked if it is not used for a consecutive period of 180 days.
To reactivate your accounts, please contact SambaPhone or your relationship manager.