Maldives Internet Banking® Security
Your security is our priority
Bank of Maldives has invested in the very latest technology to protect your financial information and ensure it is kept safe and secure.
For Standard Plan users, the Security Code is a confidential alphanumeric code provided by the Bank of Maldives, which may subsequently be changed by the user, similar to the Password. For Premium Plan users, a Security Token (also known as authentication token) is provided. It is a small physical device (illustrated below) which generates a single-use unique Token Code valid for 30 seconds. Along with this Security Token, a four digit numeric Token PIN will also be provided by the Bank of Maldives, which may subsequently be changed by the user. The Token Code together with Token PIN comprises the Security Code for Premium Plan users. To log in to Maldives Internet Banking, you have to simply press a button on the Security Token to generate the next code; then enter that one-time Token Code along with the Token PIN, in addition to the Maldives Internet Banking User ID and Password. This ensures maximum protection for your accounts when using Maldives Internet Banking.
128-bit SSL Encryption
We use the highest industry standard of encryption to safeguard Maldives Internet Banking sessions from intruders. All information within Maldives Internet Banking uses Secure Socket Layer (SSL) protocol for transferring data. SSL 128-bit encryption creates a secure environment for the information being transferred between your browser and Bank of Maldives Plc.
Secure Socket Layer (SSL) protects data in three key ways:
- Authentication ensures that you are communicating with the correct server. This prevents another computer from impersonating Bank of Maldives Plc.
- Encryption scrambles transferred data.
- Data integrity verifies that the information sent by you to Bank of Maldives was not altered during the transfer. The system detects if data was added or deleted after you sent the message. If any tampering has occurred, the connection is dropped.
Every page on Maldives Internet Banking site has been certified and noted with a digital certificate by VeriSign. To view this certificate, double-click on the yellow padlock at the bottom-right of the browser window. A small frame displaying site security information will appear which confirms that you are on the Maldives Internet Banking secure site.
We will automatically log you out of Maldives Internet Banking session after 5 minutes of inactivity, as a security measure.
We use multiple Firewalls to stop unauthorised access and protect the information on our systems.
Your role in Security
You can be assured that we review our security arrangements on a regular basis. Whilst we have incorporated many security features, please bear in mind that the majority of fraudulent cases are due to carelessness with password, security codes etc. Please also note that we have no control over the environment in which you choose to access Maldives Internet Banking (for example, at internet cafés), and accept no liability for any losses incurred due to such access. As such, it is essential that you take all possible measures to ensure the security of your access codes, and ensure that sufficient protection levels are offered by your log in computer.
How to protect yourself
- Make your Password alpha-numeric, change it periodically and keep it confidential. We strongly suggest you do not disclose your Password, Security Code, Security Token or Token PIN to anyone. And please know that Bank of Maldives will never request you to provide this information to the Bank.
- Do not write your User ID together with your Password. Do not write your Password or Security Code in a recognizable format and never leave your log in details with your Security Token.
- Disable functionality on your computer or browsers that remembers log in details.
- Always make sure you have the latest anti-virus and firewall protection on your computer. This must be updated regularly. We recommend you do not use Maldives Internet Banking until you are sure your anti-virus protection is up to date.
- Always access Maldives Internet Banking by typing www.bankofmaldives.com.mv into your browser.
- Avoid using Maldives Internet Banking on shared computers (e.g. at an Internet cafe) as you may be unable to verify the existence of proper security measures.
- Before you log into Maldives Internet Banking, for security purposes, ensure all other Internet sessions, i.e. browser windows, are closed.
- Remember to close the browser window after you have logged out of Maldives Internet Banking session.
- Never share any personal information, especially account numbers, or login and password information via email.
- Never click on a link in an email to go to your Internet Banking login page. Phishing emails will tell you that you must use a link provided to verify or change your account in some way. Bank of Maldives will never send an email asking you to do this, or for personal or account information. Be aware that fake emails can look quite genuine; appearing as though they are from Bank of Maldives and often includes Bank of Maldives and/or Maldives Internet Banking logos.
- Contact the 24hrs Fraud Monitoring Unit of Bank of Maldives Card Centre, at 3330290 if you suspect fraud has occurred on your account.
About Identity Theft
Identity theft occurs when someone uses your personal information, like your name, identity number, or credit card number, without your permission, to commit fraud or other crimes. The thieves may use a variety of methods to get hold of your information, including:
- Phishing : Phishing is a method by which a criminal pretends to be your Bank and sends spam or pop-up messages to get you to reveal your confidential information like passwords, credit card account numbers or Identity Numbers. You should never respond to e-mail messages that:
- Require you to enter personal information directly into the e-mail or submit that information in some other way.
- Threaten to close or suspend your account if you do not take immediate action by providing personal information.
- Solicits your participation in a survey where you are asked to enter personal information.
- States that your account has been compromised or that there has been third-party activity on your account and requests you to enter or confirm your account information.
- States that there are unauthorized charges on your account and requests your account information.
- Asks you to enter your User ID, Password, Security Code or account numbers into an e-mail or non-secure webpage.
- Asks you to confirm, verify, or refresh your account, credit card, or billing information.
- Vishing : In this latest twist, criminals use a telephone number instead of email. When you call, a person or an automated response asks for your personal and/or account information. Don't fall for it!
- When you call your bank, use only a phone number that comes from a reliable source, like the number given on the documents provided by the Bank, the back of your credit or debit card or the phone directory.
- Illegitimate Offers : Illegitimate offers are e-mails that entice users to purchase popular goods or services at reduced prices (or before they're available to the general public), with no intent to deliver those purchases. Usually, these e-mails are designed primarily to obtain credit card or bank account information.
- Other methods : There are many other methods including rummage through trash looking for credit card slips, bills or other paper with your personal or account information on it.
- You may also receive attractive offers or rewards. One common example is the sender asking you to supply a bank account number to hold large sums of money until the sender can retrieve it. In exchange, you are promised a percentage of the deposit. The sender uses the bank account number for fraudulent activity, and the recipient never receives the promised funds.
Awareness is an effective weapon against identity theft. Be aware of how inforation is stolen and what you can do to protect yours, monitor your personal information, and contact the 24hrs Fraud Monitoring Unit of Bank of Maldives Card Centre, at 3330290 if you suspect fraud has occurred on your account.