TalkTalk has published a list of things it would never do in customer communications to help people spot fraudsters.
The provider's new guidelines state that it would never use a person's TalkTalk account number to prove a call is genuine.
Furthermore, it stressed that customers would never be asked to provide their full password - instead they would only be asked for two digits in order to protect their security.
The guidelines also said a person will not be asked for their bank details to process a refund, as this information is already registered on its systems.
TalkTalk added that it would never ask anybody to send it money through services such as Western Union or Moneygram, as scammers only do this to stop transactions from being traced back to them.
"We call these our 'Nevers'," the provider said.
"The October 2015 cyber attack was a pivotal moment for TalkTalk, leading us to consider carefully what more we, and all businesses, can do to tackle the growing threat of cybercrime."
"We remain determined to do more, both within our own business (where we are implementing a major ongoing programme of security work), and also externally."
TalkTalk went on to stress that scammers are becoming increasingly sophisticated, which means there are other warning signs that customers should look out for.
For instance, it said people must be wary of unsolicited links and attachments that prompt them to download software directly to their computer or mobile device.
TalkTalk stressed that whenever it does want customers to download a particular piece of software, information and download links will always be available on the company website.
The provider added that calls, texts or links and attachments sent via email asking to remote connect to a person's computer are also likely to be fraudulent.