Despite corporate warnings and efforts to educate clients, employees and employers about phishing (the act of obtaining business and personal information through internet), banks are still susceptible to this illegal activity. As the matter of fact, malware attacks become more aggressive than before. It was reported in ‘The Invisible Web Unmasked’ that in the period of July to September 2013, over 200,000 cyber attacks occurred. Online community and privacy advocates point out that employers, employees and stakeholders should develop awareness campaigns and strengthen their online protection to combat these illegal activities. It also pays to be vigilant about unfamiliar links that people see online.