To minimise risks when conducting electronic banking transactions, what should customers be aware of?

To ensure the security of electronic banking transactions, Vietcombank advises customers to follow these principles:

1. Regarding Service Information Security

- Do not disclose your username and password to anyone, including family members.
- Avoid writing down or noting your password in any form, and refrain from reading your password out loud to prevent unauthorized access.

2. Regarding Device Usage

- Log in only from trusted devices. Remember and limit the devices used for login. Trusted devices are those equipped with licensed software, regularly updated, with licensed anti-virus software, and use reputable internet browsers such as IE, Firefox, Chrome, Safari.
- When using public or shared devices, make sure to disable automatic saving of personal information, account details, and e-banking credentials in web browsers.
- Do not use jailbroken/rooted or compromised mobile devices to download and use e-banking applications or OTP generation software (smart OTP).

3. During Login/Logout

- Log in to services from trusted networks.
- Access the official Vietcombank website (at, then click on the VCB Digibank icon on the web browser, directly from the homepage.
- Regularly clear browsing history, cache, and cookies.
- Do not save login credentials (username and password) in web browsers.
- Log out immediately after completing a transaction or when not in use.

4. When Setting and Using Passwords

- Use different passwords for different websites/services.
- Secret codes must be at least six characters long, including a combination of letters and numbers, with both uppercase and lowercase letters, or special characters.
- Avoid using basic personal information (date of birth, phone number, name) as passwords.
- Change passwords regularly, at least every three months or when there is a suspicion of a breach.

5. When Receiving and Using OTP

- OTP is a randomly generated security code that expires after a specific period. It is used to confirm that you are the one conducting the transaction. Each OTP is valid for a single transaction. Follow these recommendations:
- Do not ask others to log into your account or provide OTP through any means (phone, email, notes).
- When receiving an OTP, check the details in the OTP message (such as the amount, transaction type, and channel) carefully. Do not enter the OTP if the information does not match.
- Do not enter or temporarily enter OTP on any website/screen that lacks Vietcombank's authentication indicators.
- Choose secure and suitable authentication methods based on your transaction limits.
- Notify the bank immediately in cases of loss, theft, damage to OTP-generating devices, changes in the phone number for receiving SMS, or security key storage devices.

6. Other Considerations

- Install, use, and update antivirus software regularly. These programs help prevent viruses, trojans, and other harmful agents. Using a firewall will also help block unauthorized access to personal computers.
- Block spyware software: These programs can track and steal your online information. Please check settings and regularly update anti-spyware programs.
- Secure your internet connection: If your internet connection (cable/wifi) is not securely configured, unauthorized parties may interfere with your device. Set a password for your internet connection or apply security measures as instructed by the provider.
- Consider using the SMS Chủ Động (Active SMS) service to receive immediate notifications of any changes in your account balance, enhancing the early detection of fraudulent transactions or suspicious transactions.
- Do not access unfamiliar websites (websites with pirated software, cracked keys, free music, images, etc.), suspicious counterfeit websites, or email attachments, as they may contain virus-infected links or downloads that users may not recognize. In cases where access is necessary to download data, activate antivirus and antispyware software before downloading. Be cautious with unfamiliar links and files with unfamiliar extensions (*.exe, *.com, *.bat, *.scr, *.swf, *.zip, *.rar, *.js, etc.).
We use cookies for you to have a better experience on this website.