Software Protection

ST-01 Get the latest anti-virus, anti-spyware and internet security software

Download updates regularly to make sure you are protected against any new online threats.


Software Management

ST-02 Update your internet browser

The newest versions of internet browsers often provide built-in protection against fake websites and viruses.

ST-03 Download apps

Always download apps from trusted sources only.

ST-04 Update phone operating system and apps

Keep your phone's Operating System (OS) and apps updated.


Device Management

ST-05 Control your phone access

Restrict access to your phone with a password, PIN or pattern and turn on security controls (e.g., wipe after failed attempts, set your phone to lock after a short period of inactivity).

ST-06 No iPhone jail-break!

iPhone users should never jail-break their device and should back up their phone regularly.


Password Management

ST-07 Choose a memorable password but one that’s hard to guess

Passwords that combine letters and numbers are generally harder to guess.

ST-08 Use a different password to the one you use for other services

You should have a password unique to SWS HK account.

ST-09 Change your password on a regular basis

It is a good idea to change your password every month.

ST-10 Never share your password

No SWS HK employee will ever ask you for your password. If you receive a call or email from someone claiming to be from SWS HK, ignore it and contact us immediately.

ST-11 Don’t let your browser remember your log on details

It is much safer to re-enter your details every time you log on, even if it takes slightly longer.

ST-12 No passwords or account numbers on mobile phone

Do not store passwords or account numbers on your mobile phone.

ST-13 Keep your devices and secret codes secure

Take reasonable steps to keep any device (for example, personal computers, security devices that generate one-time passwords and smart cards that store digital certificates) or secret code (for example, passwords) used for accessing online trading services secure and secret, including but not limited to:
1)destroy the original printed copy of the secret code;
2)not to allow anyone else to use your secret code;
3)never write down the secret code on any device for accessing online trading services or on anything usually kept with or near it; and
4)not to write down or record the secret code without disguising it.


Physical Document Management

ST-14 Look after your paper statements

Fraudsters can use information on paper statements to steal someone’s identity. You should always tear up your statements before throwing them away.


Security Awareness

ST-15 Learn to spot fake emails and websites

Criminals use them to con people into giving away passwords and account details – the technical word is ‘phishing’.

ST-16 Avoid online fraud and con tricks

When it comes to protecting yourself and your money on the internet, look out for deals that look too good to be true.

ST-17 Beware of logon methods via QR codes or hyperlinks

Do not log into Internet trading services (via web or mobile apps) through hyperlinks or QR Code embedded in any third-party websites, mobile apps, emails or SMS. To ensure secure transactions, customers should input directly the website address of SWS HK into the browser address bar when logging into Internet trading services (via web or mobile apps).

ST-18 Beware of abnormal application behaviour

Stay vigilant to anything abnormal when logging into internet trading services (e.g. unusual pop-up screens, unusually slow browser response, multiple requests for password input).

ST-19 Keep your personal information secure

Keep your personal information secure. SWS HK will not enquire customer's personal information, e.g. user name, password, one-time password or other account details by email, SMS or phone.


Reporting

ST-20 Report immediately for lost phones

If you lose your phone, report it to your mobile phone service provider immediately or take proactive measures such as phone wipe.


Network Usage

ST-21 Avoid using public networks

Avoid connecting to public and unencrypted WiFi hotspots and network. Always use home, office or known networks.