At BSN, we are committed to your online peace of mind. However, you also play an important role in safeguarding your devices and online information. Here are some good practices that you should take into consideration when you are banking online.

DO's

  1. Manually type the correct URL address www.bsn.com.my or www.mybsn.com.my.

  1. Ensure the Security Certificate is for www.bsn.com.my or www.mybsn.com.my by clicking on the lock icon in the URL.

  1. Ensure the bank’s website is legitimate and secure with a “padlock icon” or https://

  1. Ensure your Security Image are correct before entering your password.

  1. Use a Strong Password (8-16 alphanumeric characters) and change your password every few months. If you think your password has been compromised, contact us immediately to reset your password.

  1. Ensure you read the service requested for TAC before you key in the TAC number.

  1. Check your banking transaction activities/ history / account and bank statement regularly for suspicious transactions and immediately report to the bank if there is an unauthorised transaction.

  1. Log out of myBSN immediately after completing transactions and before visiting other websites.

  1. Clear cache whenever you log out.

DON'Ts

  1. Do not respond to any phone call/SMS/email requesting your bank account details or follow instructions from unknown parties to do banking transactions or make changes to your bank account details. Banks and legitimate organizations will never ask for such details via these channels.

  1. Do not reveal your bank account details/ATM/PIN/internet banking password to anyone. They are unique to your account and designed to protect the privacy of your banking information.

  1. Do not use the "remember password" function on your browser as hackers can easily access this information.

  1. Do not login if the image for your internet banking is not your selected image.

  1. Do not share your online banking credentials (User ID & Password) with anyone.

  1. Do not share the OTP with any third parties and respond to requests for OTP passwords through phone, SMS, or social media.

  1. Do not respond to any unknown SMS/ WhatsApp messages containing suspicious links.

  1. Do not install applications/ apk from unofficial sources or links. Ensure mobile apps are downloaded from official platform.

AVOID

  1. AVOID accessing sensitive accounts on unsecured public networks.

  1. AVOID creating a password that contains details from your name, initials, or date of birth.