New Delhi: Days after HDFC Bank lost Rs 12 lakh to online fraudsters, it's signed a $7.4-million deal with web security firm Symantec for more protection.

Not just individuals, large Indian corporations are no safer with more than half being targeted by such attacks, according to web security firm Websense. But it's only now that industry bodies are waking up to combat the threat.

“We will set up a advisory body with CERTIN and CII, so all stake holders can decide together on issues including Phishing and Spam,” says Chief Information Officer, CII, Vikram Tiwathia. Till those guys get their act in order, you're on your own.

Spam e-mails can take you to fake websites that demand your banking details or install software to record your details secretly. Even real bank websites can be hacked, diverting you to a duplicate address.

Messages from strangers on your chat window or Orkut and Facebook or even direct calls from genuine sounding bank employees can similarly make you part with your login and password. Once that's done, rest assured your money's gone.

With criminals often operating from computer servers abroad, cops claim catching them isn't always easy. “Success rate is very low because servers are based outside and we can't catch them there,” says SBK Singh, ACP, Economic Wing, Delhi Police

Here's how to be on the safer side:

• Don't respond to spam emails. They look real but they aren't.
• Install and update your anti-virus package regularly - newer spyware versions come out almost every week.
• Double check for the http sign-in the address bar and other authentication before you send money online.
• Finally, read your bank statements carefully - they can warn you if you're being robbed and never give your bank or credit card details to anyone online or on the phone.