“There are many ways for people to protect themselves if they still want to use e-wallets. The easiest way is to create 2 main/sub accounts at the bank and only link the secondary account (with no money available) to the wallet. Only when you need to make a payment do you transfer money from the account with money to the linked account,” he shared.
Monday, You should limit the transaction amount as low as possible, for example 1-2 million VND/transaction or only 1-2 million VND/day.
The wallet side will usually have this configuration for customers to choose the limit. In Mr. Manh’s case, he opened a limit of up to 50 million VND/day, so the crooks took a large amount of money.
Tuesday, Regularly change new cards, perhaps at some point the exposed card information will be in the sights of hackers. If you periodically replace the card, this risk will be limited.
Usually people wait until their card expires before renewing their card. According to him, users should periodically change to minimize the risk of card information exposure.
Wednesday, Review card links with banks, remove unnecessary links that have not been used for a long time. There are many users who use the subscription service but forget to disconnect and their money may be deducted without them noticing.
Thursday, Do not be subjective with the payment option without OTP code. Wallets currently have this setting, users will have the option to set a certain limit, if transactions are below that limit, OTP authentication is not required. This is very convenient but also very risky.
Friday, Never use public wifi networks to pay for any transactions. Hackers can set up a wifi hub to share free wifi. If a user connects to a hacker’s network, all user information is “exposed” on the hacker’s computer, including personal information and card information.
Saturday, Users need to increase security of all types of accounts, including social network accounts, chat applications… with security methods such as biometric security, 2-layer security… in order to Minimize account hijacking.
Mr. Manh said that in the past, banks allowed wallet service providers to store users’ card information. Then the OTP code will be sent via SMS gateways or partners themselves so they can send SMS OTP to users
“OTP can cross many bridges, so revealing the OTP code anywhere is difficult to trace. Assuming the hacker gets my card information, the last stop is the OTP. However, due to the above method of OTP transmission, hackers can completely take advantage of it to capture the OTP and complete the process of hacking the user’s account,” he said.
