Though phishing and key-loggers is still widely in use, banks have become aware of these threats and introduced multi-factor authentication including one-time passwords to thwart such attacks. A relatively new attack which defeats such multi-factor authentication is the man-in-the-browser attack. Here we will talk about some precautions that one should take while doing online banking including counter-measures against Man-in-the-Browser attacks.