Cyber Security Guidelines

Building a culture of Safety!

How FINCARE SFB secures you:
As a Bank, we go to all the possible lengths to secure you against any fraudulent activities. It is in our DNA, and it starts from our systems, processes, and people. We follow best practices across divisions and keep our systems, processes and people consistently updated with the latest in security, so that you can bank more and worry less.

How you can secure yourself:
While we do everything to safeguard money that you trust with us, we would likewise need you to be cautious about how you deal with money while you are online, so that you keep yourself far away from any online fraudulent activities.

We encourage you to follow the mentioned tips to keep your money safe and secure.

1. Recommended Security Procedures to Protect your data

Don’t leave your online security at risk. Here are some valuable online and email security tips. Peruse on to discover how you can prevent any kind of security breach of your information, online.

2. Beware of Digital Fraud – using AnyDesk or TeamViewer applications

Today fraudsters are gaining remote access to victims' phones by tricking them into installing software applications such as TeamViewer or AnyDesk (which are legal apps, not malware, but are remote device control apps). Their modus operandi is as follows:

Things to Remember.

Always Keep these in mind.

Please note that the Bank will never call to ask you to download any other app apart from their Mobile banking app and will also never ask you to share any OTP or passwords. Do not share your login credentials with anyone and maintain the privacy of your account.

3. Business Opportunity Fraud

Business Opportunity fraud involves a proposal to become financially independent, or to generate extra income, by setting up your own business.

You receive either a letter or an email, see a promotion or get diverted to a website where you are asked if you are interested in making easy money by working from home, or setting up your own online business.

The scheme allows you to choose when you work and enables you to fit your work around your other responsibilities. However, the scheme organizer will make you pay an advance fee to register with the scheme and then, depending on your work, either they will find fault with your work and use it as a reason for not paying you or any products or services you are asked to sell will be worthless and you won’t be able to sell them.

Things to Remember

4. Career Opportunity Scams

There are many online job scams that take advantage of job seekers in a variety of ways. Scammers have several purposes, depending on the scam - to collect confidential information to use for identity theft, to get you to cash fraudulent checks or to wire or send money, and to get you to pay for services or supplies.

Scammer make upbeat promises about your chances of employment, and virtually all of them ask you to pay them for their services before you get a job. If you must pay for the promise, it’s likely a scam.

Before you apply for a job online, especially work at home jobs, review typical job scams and scam warning signs to help you determine if a job is a scam. If you're not sure, take the time to research the company and make sure the job is legitimate.

Things to Remember

5. Crypto Currencies

RBI forbids dealing in Virtual Currency

The Reserve Bank of India (RBI), through its public notification, cautioned users, holders and traders of Virtual Currency (VCs), including Bitcoins, with regards to various risks associated with dealing in VCs. Considering the associated risks of VCs, including Bitcoins, the RBI, vide its circular on Prohibition on dealing in Virtual Currency (VCs), dated April 06, 2018, had instructed that with immediate effect, all entities regulated by the RBI shall not deal in VCs or provide services for facilitating any person or entity in dealing with or settling VCs. Such services include maintaining accounts, registering, trading, settling, clearing, giving loans against virtual tokens, accepting them as collateral, opening accounts of exchanges dealing with them and transfer/receipt of money in accounts relating to purchase/sale of VCs.

Regulated entities which already provide such services shall exit the relationship within three months from the date of issue of the RBI circular, April 06, 2018.

In accordance with the RBI Guidelines, Fincare Small Finance Bank wishes to sensitize you regarding the potential economic, financial, operational, legal and security related risks associated in dealing with cryptocurrencies and virtual currencies such as Bitcoins, Ripple, Litecoin, Ethereum, etc.

In order to protect the interest of our customers and to comply with the RBI guidelines, Fincare Small Finance Bank alerts all its customers to not undertake any transaction related to purchase or sale of Virtual Currency from the account maintained with the Bank. In case any such transactions are observed in any customer’s account, the Bank shall be obligated to close the account without any further intimation to the customer.

6. Debit Card and PIN Safety Guidelines

Using a Debit Card is a great convenience and a little bit of vigilance on your part can go a long way in preventing fraud and hampering your Debit Card experience.

Things to Remember

Do not use any ATM which appears to be tampered with, broken, scratched, damaged, sticky with glue, has extra wiring or loose parts around the slot or difficulty in inserting the card.

7. Fraud against Senior Citizens

Financial scams targeting seniors have become prevalent because it is believed that they have a significant amount of money in their accounts and are relatively easy to lure. Staying informed of the below pointers is a good way to ensure the security of their earnings.

Things to Remember

8. Friend / Family Emergency Scams

If you receive a telephone call or email from someone who has some specific information about you, such as your name and details about your friends and family, please beware as using this method, a scammer can trick you into believing he or she is a friend or family member and claim to be in need money for an emergency, such as posting bail, paying a hospital bill, or being detained at an airport. The scammer may pressure you to send money immediately.

Things to Remember

9. Impostor Frauds / Scams

Under Imposter scams, a fraudster or scammer may claim to be someone you would ordinarily trust or listen to, like a top official / employee of a corporate or banking institution. The impostor can disguise their identity and contact either by phone, email, fax or mail and submit an invoice / request a payment / instruct change for vendor related payments, so that payments reach the fraudster instead of where it is intended.

Check for Red flags, which include the following but aren’t limited to:

Things to Remember

10. Investment Fraud

Investment fraud generally refers to a wide range of deceptive practices that scammers use to induce investors to make investing decisions. These practices can include untrue or misleading information or fictitious opportunities.

It involves someone pretending to offer you the opportunity to invest in a variety of schemes or products that are either worthless or don’t even exist. Some of the types of Investment frauds are Pyramid Schemes, Ponzi Schemes, Pump-and-Dump, Advance Fee fraud and Offshore Scams.

Things to Remember

11. Loan Scams

A loan scam happens when you are asked to apply for a loan, at low or no interest rates and asked to pay an upfront fee for getting the loan.

These loan scammers set up websites or provide articles and reviews that outline the loans they offer and share SMS / WhatsApp messages / e-mails offering loans to prospects and instruct them to transfer money as a deposit before the loan can be disbursed. After the transfer is done, the scammers are no longer contactable.

Things to Remember

Please remember that legitimate lenders don't send e-mails for offering loans without credit checks, at zero interest rates and do not demand payment to release the loan. Kindly reach out to us in case of any queries.

12. Lottery or Sweepstakes

A lottery or Sweepstakes scam refers to a scam where you may receive notification by mail, telephone, email, text message or social media that you have won a lot of money or a fantastic prize in a competition, lottery or sweepstake. Scammers require you to pay a fee to receive the prize to avoid taxes or additional fees or may even threaten to report you to the Income Tax department or police if you do not make the requested payment.

Things to Remember

13. Loan Repayment Fraud

Loan Repayment fraud is targeted towards people who may have taken loans.

The fraudsters often use a company name that is like an existing loan offering company and sends out letters / emails claiming that the loan recipient

In such an instance

14. Mobile Security Tips

To help you navigate your device in a secure manner, we have created a list of points that will help you always keep your valuable information.

Things to Remember

15. Online Dating

Scammers take advantage of people looking for romantic partners, often via dating websites, chat rooms or social network by pretending to be prospective companions. They create fake profiles with fictional name, or falsely take on the identities of real, trusted people such as military personnel, aid workers or professionals working abroad and play on emotional triggers to get you to provide money, gifts or personal details.

Things to Remember

16. Phishing

We live in a digital world where we are doing all transactions online. There are many fraudsters out there who use Phishing techniques. It is an attempt to obtain sensitive information such as usernames, passwords and account details by posing as a reputable company via email, text message, phone call, fake websites or social media. Once obtained, your personal and financial information can be used to access your account and steal money.

To safeguard your account from such fraudulent attempts, please note:

Things to Remember

Never reply to emails which claim to provide your personal information due to system upgrade or your account will be closed if fail to provide information.

17. Phishing during COVID-19

Phishing is the attempt of fraudsters to steal your personal information such as logins, passwords, and credit card details, to ultimately take your money. Fraudsters can reach out to you by impersonating a trustworthy entity, such as FINCARE SFB via digital channels like emails, text messages and fake websites that will redirect to a non-FINCARE SFB website.

Phishing during COVID-19

At FINCARE SFB, your safety is paramount to us. In these difficult times, it is very important for you to be aware of ways to spot a fraud communication so that you can be safe from these malicious mails. With this thought, we would like to take a moment to caution you on the risks associated with opening fraud emails sent on the subject of Coronavirus.

Check the sender of email carefully before clicking on anything, phishing emails are known to contain malicious attachment/links, which are capable of installing malware/ransomware, that can access and lock files on your system. This is then followed by cyber-criminals demanding a ransom to allow you access to your files.

If you are planning to contribute to the PM-CARES fund, be careful of fake UPI IDs. Since the announcement of the fund, some fraudsters have been reported to have setup fake UPI IDs. The correct UPI ID of the PM-CARES fund is "pmcares@sbi".

Precautions you can take

Things to Remember

Don’t leave your online security to chance. Here are some useful online and email security tips.

18. Protect your Bank Account

Secure your online banking transactions from fraudsters by following some important tips:

19. Ransomware

Ransom malware, or ransomware, is a type of malware (malicious software) that prevents users from accessing their system or personal files and demands ransom payment in order to regain access.

How does Ransomware affect my system?

There are several different ways that ransomware can infect your computer:

Things to Remember

Always Keep These in Mind

20. Socially Engineered

Social engineering is the term used for a broad range of malicious activities accomplished through human interactions. It uses psychological manipulation to trick users into making security mistakes or giving away sensitive information.

Some of the ways in which social engineering is carried out are:

Things to Remember

21. Tabnabbing

Tabnabbing is a computer exploit and phishing attack, which persuades users to submit their login details and passwords to popular websites by impersonating those sites and convincing the user that the site is genuine.

Tabnabbing targets people who keep multiple tabs open in their browser, often for long periods of time. The fraudsters then use JavaScript to change the contents and label of an open, but not active, tab to resemble the log-in screen of a bank, email provider or online shopping store.

Things to Remember

22. Technical Support Scams

A technical support scam refers to any class of telephone fraud activities in which a scammer claims to offer a legitimate technical support service, often via cold calls to unsuspecting users, claiming that they have detected viruses or other malware on your computer, or your software is outdated and asks for remote access to your computer to resolve the issue.

Scammer will direct you to open a system log or asks you to use command prompt to generate suspicious looking output to convince you with issues. They will ask you to give remote access of your computer. Once access is provided, the scammer may request you to make payment for technical assistance, install malicious software, change the settings of your compute to make it vulnerable, and / or steal your financial information.

Things to Remember

23. UPI Fraud

What is UPI - Unified Payments Interface (UPI) is an instant payment system developed by the National Payments Corporation of India (NPCI), an RBI regulated entity.

UPI is built over the IMPS infrastructure and allows you to instantly transfer money between any two parties' bank accounts.

Things to Remember

Beware of Fraudsters - If you receive a call from someone asking for card or bank details, or set up a new VPA, please disconnect and do not engage in any conversation.

Stay aware! Stay Safe!


Online digital FD is available for existing customers. Please click here to open saving account.

If existing customer, click here


Online digital RD is available for existing customers. Please click here to open saving account.

If existing customer, click here