Security and You
Your Role in Safeguarding Your Account Information
Apart from the security measures put in place by the Bank, you play an equally important role to ensure your online security and account information is not compromised.
Keep your Username, Password and One Time Password (OTP) confidential at all times
Your Username, Password and OTP are like the key to your online safe. We identify you using your Username and Password. As such, protecting your online identity is very important and you need to safeguard your Password at all times. In addition, your Username and ATM/Cashline/Credit Card Number should not be placed together.
Important Tips on how you can safeguard and protect your Password:
- Never use the same DBS iBanking Password for other financial or non-financial web-based services such as for email, online shopping, digital identity and other online subscription services.
- Do not choose a Password that is easily guessed, like your telephone number, HKID number, date of birth, Username, or other associated data. You should select a robust and unique Password to make it difficult for anyone to guess.
- Do not use sequential numbers (eg. 123456) or the same number more than twice (eg. 121145).
- Do not share or divulge your Password, including your OTP, to any persons through any means such as email, over the phone or in person.
- Memorise your Password. Do not write down your Password or store it in computer hard-disk, USB, mobile phone or other insecure means.
- Do not use your Password when someone else can see you keying it in.
- Before entering your Username and Password, you should always check that the site you are visiting belongs to DBS by verifying that the URL displayed in the browser is correct. You should enter www.dbs.com.hk to visit the entry page of DBS iBanking.
- When performing online transactions, always ensure that the URL is preceded by "https".
Always log off your online session
Log off your online session whenever you leave your computer, even for a short while. This immediately ends your DBS iBanking session and prevents further transactions from being carried out without a fresh login. You should also shut down your computer, when not in use, to prevent unauthorised access to your computer.
Tip: You can set a Password for your screen saver to prevent unauthorised access to your computer when you need to leave for a while. To do so, simply:
- Right click at your desktop area
- Select "Properties"
- Click on the "Screen Saver" tab
- Select your choice of screen saver from the "Screen Saver" droplist
- Check the "Password protected" option
- Click on "Change..." to change your screen saver Password if necessary
- Under the "Wait:" option, select the period of inactivity before your screen saver is activated
- Click "OK" to save your settings
Do not store your Username/Password when using Internet browser
Some browsers store and list possible matches from entries that you have typed previously. You can prevent any Username/ Password from being stored in your browsers by de-activating the function.
Do not disclose your personal information to suspected websites
To prevent your personal information from being captured by bogus websites, you should not disclose your personal, financial or credit card information to little-known or suspected websites.
Do not leave your mobile phone unattended
Your mobile phone is the only device receiving the One Time Password (OTP) for you to log on to DBS iBanking and to conduct high-risk transactions online. In order to enjoy DBS iBanking with peace of mind, you should never leave your mobile phone unattended to prevent it from loss or thefts.
Ensure adequate security level for wireless network and devices
Poorly configured wireless equipment may allow malicious entry into your computer directly through the air waves. If you are using a wireless network/device, you are strongly advised to read your instruction manual, or consult your vendors if necessary, to configure your wireless network/device to ensure that adequate security levels are established.
Clear your browser's cache and history after each session
Temporary files stored in your computer called cache files and history can retain information and data. Always remember to clear your browser's cache and history after each session so that your account information is removed, especially if you are using a shared computer.
Protect your computer from viruses and malicious programs
Apart from destroying important data on your computer, viruses/malicious programs such as Trojan Horse may run a Password sniffing program in the background to capture your Password keystrokes without your knowledge.
To avoid getting infected, you should:
- Never download any files from sites (e.g. program, game, picture, mp3 song) or people (e.g. email attachments) that you aren't sure about.
- Be very cautious about opening attachments in emails from unfamiliar sources, and avoid visiting or downloading software from suspicious websites.
- Never access DBS iBanking through hyperlinks embedded in emails, internet search engines, suspicious pop-up windows or any other doubtful channels. You should connect to the DBS website through typing the authentic website address in the address bar of the browser or by bookmarking the genuine website and using that for subsequent access. If you find the website suspicious, you should not enter any information (including user ID, password and OTP) to the website and should report to the bank immediately.
- Delete junk or chain emails.
- Never use features in your programs that automatically get or preview files. For example, never turn on "auto DCC get" in mIRC - Internet Relay Chat Client and never enable the preview mode in Outlook and other mail programs.
- Install firewall and virus detection software to protect against hackers, virus attacks or malicious "Trojan Horse" programs. You should also update your software's virus definition frequently.
- If any unusual screens pop up and/or the computer responds unusually slow, you are advised to log out from DBS iBanking and scan the computer with the most updated version of virus protection software.
- Do not install software or run programs of unknown origin.
Protect your critical data
Make regular backup of your critical data and ensure that these data in your computer is adequately protected or encrypted.
Disable the "File and Printer Sharing" feature on your Operating System
This prevents an external party from gaining illegal control or access to your computer. You can refer to your computer vendor or instruction manual on how this is done.
Check your SMS notification, account and transaction history details on a timely basis
Check your SMS notification, transaction history details and statements on a timely basis to make sure that all details are updated and there are no unauthorised transactions on your accounts. Also take note of your 'last logon date and time' whenever you log on to DBS iBanking to make sure that there has not been any unauthorised access.
Update us when you change your contact particulars
To make it easier for us to reach you whenever we detect unusual transactions in your account, always keep us updated with your latest contact numbers and mailing address.
Let us know immediately if there's a problem!
Follow the DBS iBanking logon instructions and security tips published by the Bank when conducting Internet banking transactions.
If you notice any unusual/unauthorised transactions, please change your PASSWORD and notify us immediately at our 24-hour Customer Services Hotline (852) 2290 8888. Where necessary, your DBS iBanking access can be suspended at your request to protect your interest. If you wish to suspend the receipt of One Time Password (OTP) due to loss/damage of mobile phone or if you cannot receive an OTP during iBanking logon or conducting high-risk transactions, please contact us immediately on our hotline (852) 2290 8888 for assistance.
Security Of Wireless Connections
Due to its promise of ease of use and mobility, wireless networks are fast gaining popularity. But are you aware that wireless networks, if not configured securely, could be used by others who can easily connect to your wireless connections via default settings? This could potentially allow anyone to tap into your wireless connection to surf the Internet or download files on your account.
Here are some important tips to protect your wireless networks:
- Set a personal and unique Password for your wireless point. This would prevent unauthorised users from accessing and using your wireless connection.
- Disable broadcasting your network name (SSID-Service Set Identifier) to prevent casual passerbys from detecting and connecting to your wireless network.
- Use encryption to protect your wireless network. As encryption scrambles the data that is transmitted from your network and prevents taping, strangers cannot read the personal information that you are transmitting, such as personal emails, chat files or confidential financial information.
- Use only registered machines for your wireless network. To do this, enter the wireless card address of the specific machine that you are granting authority to.
- Disable any wireless network functions not in use.
Protecting your Password
Important Tips on how you can safeguard and protect your PASSWORD
- Never use the same Password for other financial or non-financial services.
- Do not choose a Password that is easily guessed, like your telephone number, HKID number, date of birth, Username, or other associated data.
- Do select a robust and unique Password to make it difficult for anyone to guess.
- Avoid using sequential numbers or the same number more than twice.
- Do not reveal your Password to anyone.
- Do not share your Password with others.
- Memorise your Password. Do not write down your Password or store it in computer hard-disk, diskette, mobile phone or other insecure means.
- Do not use your Password when someone else can see you keying it in.
- Change your Password regularly by using the 'Change of Password' service.
- Change your Password immediately if you suspect it has been exposed to others or the moment you suspect any unauthorised access.
Advisory Message on Recent Fraud Trend
Customers are advised not to leave their bank cards unattended in public areas, including lockers in changing rooms. Fraudsters have stolen/ copied bank cards from public lockers then impersonated bank staff to obtain the cardholders' ATM Personal Identity Number ("PASSWORD"), or the Telephone Identity Number ("TIN") for phone banking services. Please note that DBS staff will not ask customers for their PASSWORDs or TINs - for any purpose. Please call our customer hotline if in doubt.
Alternative Channels if DBS iBanking Service is Unavailable
In the event should our DBS iBanking service be unavailable, you may choose to use our alternative electronic channels listed below for your banking needs:
Thank you for your feedbackLet us know how this article helped:
We're sorry to hear that.How can we do better?