Agency for Regulation and Development of the Financial Market of the Republic of Kazakhstan publishes consumer guidance on securing mobile banking

The Agency for Regulation and Development of the Financial Market of the Republic of Kazakhstan published consumer guidance on mobile banking cyber safety, warning that while banks deploy protection systems, fraudsters often exploit weaknesses in user behaviour. The guidance highlights risks from using public Wi‑Fi, including fake networks and traffic interception, and advises users to verify the official network name, avoid entering credentials if a site or app looks unusual, use mobile internet or a personal hotspot where possible, and end sessions after transactions. It also recommends using unique, complex passwords of at least 10 characters (mixing cases, numbers and special characters), not storing passwords in notebooks or messengers, enabling two‑factor authentication (including via authenticator apps), and never sharing one‑time codes even with callers claiming to be bank staff. Additional steps include turning on SMS or push notifications for account activity, downloading banking apps only from official stores and official developers, securing device access (PIN, fingerprint or Face ID), promptly blocking the SIM and limiting app access if a phone is lost, setting daily transfer limits, regularly checking the list of active devices, and informing the bank when changing a phone number to maintain transaction confirmation and alerts. Further materials are referenced on Fingramota.kz.