Security Advisory

To ensure the confidentiality of your password, we recommend the following:

• Create a password that is at least 8 alphanumeric characters long containing a combination of letters (A-Z) and numbers (0-9).
• Select a unique password to make it difficult for anyone to guess. Avoid using common phases and easily obtainable personal information in your passwords such as:
  • Partner’s name
  • License Plate Number
  • Phone number
  • NRIC Number
  • Date of birth
• Avoid using sequential numbers (e.g. 123456) or the same number more than once (e.g. 121145).
• Avoid writing down your password or storing it in a computer, mobile phone or any unprotected media.
• Change your password regularly.
• Memorise your password. If you suspect it has been revealed to others, change it immediately.
• Never reveal your User ID and password to anyone.

Note: No staff of AIA should ever need to ask you for your password for any reason.

Protect your computer against viruses and malicious programs.

You should exercise precaution to protect your PC against viruses. Besides damaging and/or destroying data, some of the viruses (e.g. Trojan Horse) can capture your password keystrokes as well as other personal information and transmit the data to a third party without your consent. To prevent against viruses and possible hacking, you should:

• Avoid using preview features of Outlook and other PC mail programs.
• Only download information/files from websites that have been verified to be authentic and safe.
• Equip your PC with the latest personal firewall software to protect against hackers and viruses and ensure that you update it to the latest version when it is available.
• Equip your PC with the latest virus detection software and update your PC virus definition file regularly.
• Do not open any email or attachment from an unknown sender. Delete the email immediately.

Exercise Vigilance against SPAM and Phishing

SPAM and Phishing attacks are increasingly prevalent in email communications that result in misleading communications, deceptive marketing and identity theft.

To assist you in continuing to enjoy safe transactions with AIA, we seek your ongoing vigilance and adherence to the following guidelines:

• Understand what SPAM, Phishing attacks or suspicious emails look like. They are often generated from obscure email addresses and recent examples we have include: john.d@b631.com; john2@catworld.net: abuse@aia.com and rich.c@zenzones.com
• Do not click on email, Web links or "shortcuts" from unknown or suspicious senders.
• Beware of email requesting confirmation of receipt of messages and personal information, such as bank accounts, Social Security numbers and credit card information. Contact the purported sender by means other than email to confirm the authenticity of the message.
• Do not contribute to SPAM and refrain from forwarding or "replying to all" for chain and junk email.
• Do not respond to email claiming to have identified a problem with your user identity, email address, employment status, credit or account. These communications are typically hoaxes seeking to extract information that may result in identity theft.

Avoid conducting any personalised or sensitive transaction using the Internet access provided by public places.

This is to minimise the possibility of hacking and viruses.

Always update internet browsers to the latest version so that you have the most updated security features available.

As a form of added security, clear your browser's cache and history after each session so that your account information is removed.

Legitimate AIA websites are represented by the lock icon which demonstrates that the website is secured by digital certificates issued by a trusted certificate authority. A valid certificate provides assurance that the website is genuine and not spoofed by malicious threat actors.

You can click on the icon to view the details of the certificate such as the issuing party, validity period, etc.

Whilst accessing My AIA SG, make sure that the URL is preceded by “https://”. You can check for security information about the site by clicking on the lock icon displayed at the browser bar.

When accessing AIA website, always personally and directly enter the relevant website address in the browser address bar to ensure that you are on AIA legitimate website. Do not login via any hyperlinks within emails.

You can prevent any User ID/Password from being stored in your browsers by de-activating the function:

Launch your Web Browser

• Search for Tools / Settings / Options / Preferences.
• Go to autofill / passwords / privacy and security / advanced settings.
• Uncheck or turn off save passwords feature.
• Remember to save your changes.

Logon to My AIA SG on a regular basis and monitor the 'Account Activities and History Transactions' displayed under 'Notices' section to make sure that the information displayed is accurate and there had been no unauthorised transactions on your accounts.

Also note the 'Last Login Login Date and Time' which is displayed within the summary section of My AIA SG.

Should the information be inconsistent with your previous login date and time, inform our Customer Care Consultants at 1800-248-8000 or (65) 6248-8000 (from overseas), Mondays to Fridays between 8:45 am and 5:30 pm excluding Public Holidays.

Log out from My AIA SG and disconnect from the Internet if you are to leave your computer, even for a short while. For security reasons, we have incorporated a function that will automatically log you out when no activity has been detected after a given duration.

Notify our Customer Care Consultants at 1800-248-8000 or (65) 6248-8000 (from overseas), Mondays to Fridays between 8:45 am and 5:30 pm excluding Public Holidays.