ICICI bank sent this note to teach their customers about Phishing or fake websites.

Anti-Phishing Game: Learn How to Spot Fake Websites

‘Phishing’ is a common form of Internet piracy. It is used to steal the personal and confidential information like bank account numbers, net banking passwords, credit or debit card numbers, personal identity details etc of customers. Later, the fraudsters may use the information for debiting money from the victim’s account or use the victims debit/credit cards to make high value purchases resulting in huge bills or even worse, one could also become the victim of identity theft.

Do’s and Don’ts:

  • ICICI Bank will NEVER ask you to verify your account information/Login or Transaction Passwords/ Debit or Credit Card details through an e-mail
  • ALWAYS logon to any website by typing the proper and complete URL in the address bar.Remain alert & look out for the padlock sign () at the right bottom of the browser and the VeriSign certificate assuring a secured website
  • ALWAYS CHECK if the URL of the login page starts with the text ‘https://’ and is not ‘http:// ‘ The ‘s’ stands for ‘secured’ & its presence is very important indicating that the Web Page uses secured encryption
  • Login with your User ID and Login Password only after verifying the above security details
  • The original ICICI Bank login page will never ask customers upfront for Transaction Passwords as that is required only and exclusively for the execution of an actual transaction
  • You may provide personal details over phone/Internet only if you have initiated a call or session and only after you have duly verified and authenticated the other party.
  • What to do if you have accidentally revealed password/PIN/TIN etc:

    If you feel that you have been phished or you have provided your personal information at a place you should not have, please carry out following immediately as a damage mitigation measure:

  • Change your password immediately
  • Check your account statement and ensure that it is correct in every respect
  • Report any erroneous entries to Bank.