We work proactively to understand and manage the cyber threats and risks we face on a day-to-day basis. Many believe that it’s not a case of “if” you will get hacked or scammed, but “when,” so we also understand the need to be prepared for the worst; and so should you!
One major threat involves cyber criminals who focus their efforts on targeting security weaknesses in personal and business banking information systems and processes. For example, we continue to see phishing campaigns aimed at taking over customer email accounts. The latest scam, known as “Business Email Compromise,” involves bogus email requests and altered instructions for wiring money to fraudulent bank accounts, sometimes overseas and often, the funds are never recovered. The simple message is not to trust email instructions alone, particularly for financial transactions; always check and verify the instructions via an alternative method such as a phone call to a number on file, text, or even a face-to-face discussion with the sender. Please know that we will never accept e-mail or phone instructions to execute wire transfers and we have enhanced layered security mechanisms that protect our wire system.
We are always willing to work with our customers to review the proper and safe use of online and/or traditional banking services, but it is critical that we all work together to improve security, protect information, and help reduce cyber crime, fraud and financial losses. We strongly encourage you to take cybersecurity as seriously as we do; we are all truly in this together. Please visit this page often and use the information available here to learn more about cyber threats, risks, and fraudulent methods that put your information, money and identity at risk. At the very least, follow and know the security basics so we can help each other to stay protected from cyber criminals and fraudsters.
Below are some resources to help you understand how to best secure yourself online. Although these are third party resources and the Bank does not take responsibility for the content or privacy policies of these sites, our customers have found these to be useful resources for personal or small business use.
- Cybersecurity Tips – US Computer Emergency Readiness Team (CERT)
- Top Ten Cybersecurity Best Practices – US Small Business Association
- Introduction to Phishing
- Identity Theft
Cybersecurity Best Practices
- Never provide your personal information in response to an unsolicited request.
- Never provide your password over the phone or in response to an unsolicited Internet request. We will never ask you for your password.
- Never reply to an e-mail that asks for personal information and tells you to access the link provided in the e-mail.
- Watch out for e-mails that say “urgent” or “time sensitive”. This is generally a scam to obtain your financial information.
- Review account statements regularly to ensure all charges are correct and make sure that they are arriving in a timely manner.
- Never provide personal financial information, including your Social Security number, account numbers or passwords, over the phone or the Internet if you did not initiate the contact.
- Never click on the link provided in an e-mail you believe is fraudulent. It may contain a virus that can contaminate your computer.
- Minimize the identification information and the number of cards you carry to what you actually need. If your I.D. or credit cards are lost or stolen, notify the creditors by phone immediately, and call the credit bureaus to ask that a “fraud alert” be placed in your file.
- Keep items with personal information in a safe place; shred or tear them up when you don’t need them anymore. Make sure charge receipts, copies of credit applications, insurance forms, bank checks and statements, expired charge cards, and credit offers you get in the mail are disposed of appropriately.
- Use complex passwords that include number, letters and special characters. Change your passwords periodically and avoid using options that allow your computer or mobile device to save your password.
- Avoid using public, unsecured Wi-Fi networks when accessing sensitive information or using online banking from a computer or mobile device.
- Secure your mobile device just like you would your computer by using anti-virus software, avoid downloading apps from unknown sources and avoid links in emails or text message from unknown sources.