Malware and Netbank Business banking security tokens

Malware is any malicious software designed to hack or damage your computer, gaining sensitive information without your knowledge. Protect your business with these steps.

Malicious and dangerous

Malware could come in the form of a computer virus, worm, Trojan horse, ransomware, spyware, adware or scareware. Malware has one purpose: to make your machine vulnerable. Here are just a few examples:

• Key logging malware records every key you press, tracking your passwords, and taking screenshots as you work. This information is then forwarded to a fraudster. 
• Session hijacking malware takes over your session while you are on a specific website. The fraudster then bypasses the authentication process that is required to log on to the website.
• Banking 'Trojans' have been specifically created to recognise when a user has logged on to a banking website and will try to steal your log-in information and infiltrate your banking session.

How does malware get onto your computer?

A third party can download malware onto your computer or you can be tricked into downloading it onto your computer by:

• clicking on a link in an email;
• purchasing fake security software from someone claiming to be a representative from a reputable company such as Microsoft; and
• visiting an infected site, which results in a 'drive-by' infection.

Malware is often difficult to trace and remove as it hides in other applications and reinstalls itself if not properly removed.

Security is a top priority for NetBank Business and our advanced protection system integrates numerous precautions, such as security tokens, software and hardware certificates, PINs and passwords, to ensure your peace of mind. Nedbank's new Plug and Transact Token™ comes with its own secure browser-embedded software that makes malware or key logging attempts more difficult.

How to protect yourself

• Fortify your defences. Make sure your antivirus and operating-system software is up to date on all your computers. You should also consider installing a firewall to stop unauthorised information from being sent from your computer. For an impartial rating of various antivirus software visit av-comparatives.org.
• Always ensure that you are on the secure Nedbank internet banking website by checking that the URL (web address) begins with ‘https' rather than 'http'.
• Do not share security details, such as your PIN, password or token, with anybody.
• Guard your token. Don't keep your security token permanently plugged into your computer. Unplug it after each banking session and keep it secure.
• Segregate roles and duties. Separate the roles of capturer and authoriser for online banking transactions.
• Be proactive. Never open attachments from unknown sources. Remember, Nedbank will never ask you to confirm your banking details by email. You should also check your bank statements for any irregular activity. If you notice your computer behaving erratically while you're logged onto internet banking, immediately switch your machine off and contact Nedbank to ensure no unauthorised transactions have been made on your account.
• Verify details. Make sure that any correspondence from your clients is from a verified address. If a client sends you an email with new supplier banking details, verify them over the phone before making any payments, particularly when the account is outside South Africa.
• Take extra precautions. NetBank Business can offer extra protection in the form of:
  
  • account validations to ensure that beneficiary account details are valid.
  • payment authorisations to ensure that only mandated company representatives can authorise transactions.
  • payment limits to manage how much can be paid or transferred in a given time period
  • notifications by email or SMS when payments are made from your account.