1. You receive email/SMS appearing from bank
2. Message claims urgent action needed
3. Link leads to fake bank website
4. You enter card details
5. Fraudster captures information
6. Unauthorized transactions follow

❌ FRAUD MESSAGE:
"Dear Customer, Your SBI card has been blocked due to 
suspicious activity. Click here to verify: bit.ly/sbiverify"

Why It's Fraud:
- Uses URL shortener
- Creates urgency
- Generic greeting
- Not from official SBI domain

1. You receive call from "bank"
2. Caller knows some details (name, partial card number)
3. Claims security issue with your account
4. Asks for full card number, CVV, OTP
5. Uses details for unauthorized transactions

Fraudster: "Hello, this is calling from HDFC Bank fraud 
department. We detected suspicious activity on your card 
ending 4523. For your security, please confirm your 
full card number and the CVV on the back."

NEVER provide this information!

1. Fraudster installs device on ATM/POS
2. Device reads your card's magnetic stripe
3. Hidden camera captures PIN
4. Card cloned with stolen data
5. Clone used for transactions

1. Fraudster obtains your personal details
2. Visits telecom store with fake ID
3. Gets duplicate SIM issued
4. Your SIM stops working
5. Fraudster receives your OTPs
6. Takes over your accounts

Example Chain:
1. You shop at small online store
2. Store's database hacked
3. Your card details stolen
4. Sold on dark web
5. Used for fraudulent purchases

✓ DO:
- Shop only on HTTPS websites
- Use cards with 3D Secure (Verified by Visa/Mastercard)
- Check merchant reputation
- Use virtual cards for unknown sites
- Enable transaction alerts

✗ DON'T:
- Save card details on multiple sites
- Shop on public WiFi
- Click links in promotional emails
- Share card photos on social media

✓ DO:
- Cover keypad when entering PIN
- Use ATMs inside bank branches
- Keep card in sight during transactions
- Check ATM for unusual attachments
- Request card swipe in front of you

✗ DON'T:
- Let card out of your sight
- Use obviously tampered ATMs
- Share PIN with anyone
- Write PIN on card or wallet

Set Up:
- SMS alerts for all transactions
- Email alerts for transactions
- App notifications
- Alert for any amount (not just large)

Enable:
- 3D Secure enrollment
- Two-factor authentication on banking apps
- Biometric login where available
- Strong, unique passwords

Some banks offer:
- Temporary card numbers for online use
- Can be limited by amount/merchant
- Expire after use
- Real card number protected

Through Banking App:
- Turn off international transactions (if not needed)
- Set transaction limits
- Disable contactless temporarily
- Block card instantly if suspicious

✓ Safe:
- Memorize PIN (don't write)
- Shred card statements
- Check statements monthly
- Use password manager

✗ Unsafe:
- Storing card photos in phone gallery
- Sharing OTP screenshots
- Using same PIN/password everywhere
- Saving passwords in browser on shared computers

✓ Banks Will:
- Send statements to registered address
- Email from official domain (@hdfcbank.com)
- Call from numbers you can verify
- Never ask for sensitive details

✗ Banks Won't:
- Ask for OTP over phone
- Send links to update card details
- Request CVV or full card number
- Threaten immediate account closure

If you receive suspicious call:
1. Don't provide any information
2. Hang up
3. Call bank's official number (from card/website)
4. Verify if they actually called
5. Report the suspicious call

1. Block Card Immediately
   - Call bank hotline
   - Use mobile app to block
   - Don't delay!

2. Note Transaction Details
   - Amount
   - Date/time
   - Merchant (if shown)
   - Any communication received

3. Change Passwords
   - Internet banking
   - Mobile banking app
   - Email linked to account

Call: Bank's fraud helpline
Provide:
- Card number (last 4 digits)
- Fraudulent transaction details
- How fraud might have occurred

Get:
- Complaint reference number
- Written acknowledgment
- Timeline for resolution

Visit: Nearest police station or cybercrime.gov.in
File: FIR or NC (Non-Cognizable) report
Provide:
- Bank complaint details
- Transaction evidence
- Any communication from fraudster

If bank doesn't resolve:
- File complaint with RBI Banking Ombudsman
- Online at https://cms.rbi.org.in
- Include all correspondence with bank

Maintain Records:
- Bank complaint number
- FIR/police complaint copy
- All SMS/email from bank
- Disputed transaction statements
- Timeline of events
- Correspondence copies

Security Features:
- Limited to small transactions
- No PIN for small amounts
- Can disable if not used

Best Practice:
- Keep in RFID-blocking wallet
- Disable if traveling abroad
- Monitor small transactions too

When shopping with saved card:
- Actual card number not stored
- Replaced with random token
- Token only works for specific merchant
- Card number protected

1. Check website security (HTTPS)
2. Look for trust badges
3. Read reviews about merchant
4. Verify contact information exists
5. Check return/refund policy

1. Don't use public WiFi
2. Ensure 3D Secure popup appears
3. Verify OTP is for correct amount
4. Check merchant name matches
5. Use bank's official payment page

1. Screenshot confirmation
2. Verify SMS amount matches
3. Check statement next day
4. Save receipts/confirmations
5. Report discrepancies immediately

Situation:
- Received OTP for unknown transaction
- Didn't share OTP, but card compromised
- ₹45,000 transaction attempted

Action:
- Blocked card within 2 minutes via app
- Called bank immediately
- Filed written complaint same day

Result:
- Transaction reversed
- Zero liability (quick reporting)
- New card issued in 3 days

Situation:
- Noticed ₹15,000 unknown transaction on statement
- Transaction was 5 days old
- Delayed reporting to bank

Result:
- Partial liability applied
- Recovery took 45 days
- Lost ₹3,000 (limited liability clause)

Lesson: Check statements immediately

Situation:
- Received call from "bank"
- Shared OTP to "verify account"
- ₹80,000 transferred out

Result:
- Customer negligence established
- Full liability on customer
- FIR filed but recovery difficult

Lesson: Never share OTP, regardless of caller

✓ Check bank SMS/notifications immediately
✓ Review all transactions in app weekly
✓ Keep card in sight during transactions
✓ Use banking app instead of website when possible
✓ Log out of banking sessions properly

✓ Review full credit card statement
✓ Check for small unauthorized charges
✓ Verify all subscriptions/recurring charges
✓ Update passwords periodically
✓ Check saved cards on various websites

✓ Get free CIBIL report
✓ Review authorized users on accounts
✓ Update contact information with bank
✓ Evaluate card security features
✓ Consider new cards with better security

Via Mobile Banking App:
1. Log in to app
2. Go to Cards section
3. Select your credit card
4. Find "Card Controls" or "Security"
5. Enable/configure each feature
6. Set transaction limits

Most features work immediately.