Practical End User Internet Security
 
  1. Keep your password confidential.
  2. Beware of Viruses, Malicious Programs, SPAM and Phishing attacks.
  3. Avoid sharing or use of public/shared computers.
  4. Always update your browser to the latest version.
  5. Clear your browser cache and history after each session.
  6. Verify the authenticity of the website when in doubt.
  7. Verify you are on a secure web page.
  8. Always log in direct through browser address bar.
  9. Do not store your User ID/Password in Microsoft Internet Explorer.
  10. Check your Last Login Date and Time displayed.
  11. Log off your online session when not in use.
  12. Inform us if you suspect any unauthorized access.
AIA recommends that you observe the followingsecurity best practices at all times.

  1. Keep your password confidential

    Do not release your User ID and password to anyone.

    To ensure the confidentiality of your password, we recommend the following:
    • Avoid choosing a password bearing your personal details such as spouse's name, license plate, social security number, telephone number, NRIC and date of birth.
    • Avoid using sequential numbers (e.g. 123456) or the same number more than once (e.g. 121145).
    • Avoid writing down your password or storing it in a computer harddisk, diskette, mobile phone or unprotected media.
    • Avoid revealing your password to anyone.
      Note: No staff of AIA should ever need to ask you for your password for any reason.
    • Select a unique password to make it difficult for anyone to guess.
    • Choose a password with at least 8 alphanumeric characters containing a combination of letters (A-Z) and numbers (0-9).
    • Change your password regularly.
    • Memorize your password. If you suspect it has been revealed to others, change it immediately.
  1. Beware of Viruses, Malicious Programs, SPAM and Phishing Attacks.

    Protect your computer against viruses and malicious programs.

    You should exercise precaution to protect your PC against viruses. Besides damaging and/or destroying data, some of the viruses (e.g. Trojan Horse) can capture your password keystrokes as well as other personal information and transmit the data to a third party without your consent. To prevent against viruses and possible hacking, you should:
    • Avoid using the preview feature found in Outlook and other PC mail programmes.
    • Avoid downloading any files from websites of doubtful origin.
    • Equip your PC with the latest personal firewall software to protect against hackers and viruses.
    • Equip your PC with the latest virus detection software.
    • Update your PC virus definition file regularly.
    • Do not open any email or attachment from an unknown sender. Delete the email immediately.
    Exercise Vigilance against SPAM and Phishing.

    SPAM and Phishing attacks are increasingly prevalent in email communications that result in misleading communications, deceptive marketing and identity theft.

    To assist you in continuing to enjoy safe transactions with AIA, we seek your ongoing vigilance and adherence to the following guidelines:
    • Understand what SPAM, Phishing attacks or suspicious emails look like. They are often generated from obscure email addresses and recent examples we have include: john.d@b631.com; john2@catworld.net; abuse@aig.com and rich.c@zenzones.com
    • Do not click on email, Web links or "shortcuts" from unknown or suspicious senders.
    • Beware of email requesting confirmation of receipt of messages and personal information, such as bank accounts, Social Security numbers and credit card information. Contact the purported sender by means other than email to confirm the authenticity of the message.
    • Do not contribute to SPAM and refrain from forwarding or "replying to all" for chain and junk email.
    • Do not respond to email claiming to have identified a problem with your user identity, email address, employment status, credit or account. These communications are typically hoaxes seeking to extract information that may result in identity theft.
  1. Avoid sharing or use of public/shared computers.

    Avoid sharing your PC/Notebook or conducting any personalized transaction using the Internet access provided by public places (e.g. cybercafes). This is to minimize the possibility of hacking and viruses.
  1. Always update your browser to the latest version.

    Always update your browser to the latest version so that you have the most updated security features available.
  1. Clear your browser cache and history after each session.

    As a form of added security, clear your browser's cache and history after each session so that your account information is removed.
  1. Verify that you are on a secure web page.

    While accessing AIA Internal Access, make sure that the URL is preceded by https://. For IE browsers, check that your session is secured by right-clicking on the page and selecting "properties".
  1. Always log in direct through the browser address bar.

    When accessing AIA website, always personally and directly enter the relevant website address in the browser address bar to ensure that you are on AIA legitimate website. Do not login via any hyperlinks within emails.
  1. Do not store your User ID/Password in Microsoft Internet Explorer.

    You can prevent any User ID/Password from being stored in your browsers by de-activating the function:

    Microsoft Internet Explorer Browser
    • Launch Internet Explorer browser.
    • Click on Tools --> Internet Options --> Content.
    • Under 'Personal Information' click on 'AutoComplete'
    • Uncheck "User names and passwords forms" click on 'Clear Passwords'.
    • Click 'OK' to save changes.
  1. Log off your online session when not in use.

    Log out from AIA Internal Access and disconnect from the Internet if you are to leave your computer, even for a short while. For security reasons, we have incorporated a function that will automatically log you out when no activity has been detected after a given duration.
  1. Inform us if you suspect any unauthorized access.

    Notify our IT Helpdesk at 6373 5885 should you suspect any unauthorized access or if your password is invalid.