Online Security

Protecting our customers and their information is a top priority - one that we take very seriously. We continue to enhance our systems and processes as electronic banking evolves. Because no single solution can ensure online security, we have developed a layered security approach with industry-leading solutions.

We have two major objectives in selecting the right electronic safeguards:

  • Protecting our customers' information and assets.
  • Minimizing customer impact while providing multiple layers of protection wherever customer transactions call for added security.

We are continually looking for ways to help our customers succeed financially and remain committed to providing superior online services.

 

How Fraudsters Operate
Fraudulent Emails and Websites
Identity Theft
Scams

How to Protect Yourself
Fraud Prevention Tips
Online and Computer Security Tips

 

How Fraudsters Operate

Fraudulent activity can take many forms. However, knowing how fraudsters operate can help you identify and protect yourself from fraud.

Fraudulent Emails and Websites

Identity Theft

Scams

 

Fraudulent Emails and Websites

Online fraud occurs when someone poses as a legitimate company to obtain sensitive personal data and fraudulently conducts transactions on your existing accounts. Often called "phishing" or "spoofing," the most current methods of online fraud are fraudulent emails, websites, and pop-up windows, or any combination of these.

We will never send emails containing attachments, or request that customers send personal information to us via email or pop-up windows. You should consider as fraudulent any unsolicited request for your account information you receive through emails, websites, or pop-up windows and report it immediately without replying to the email.

Fraudulent emails
Never respond to emails, open attachments, or click on links from suspicious or unknown senders.
Fraudulent emails will often:

  • Ask you for personal information. Fraudulent emails often contain an overly generic greeting and may claim that your information has been compromised, that your account has been frozen, or ask you to confirm the authenticity of your transactions.
  • Appear to come from a legitimate source. While some emails are easily identified as fraudulent, others may appear to come from a legitimate address and trusted online source. Do not rely on the name or address in the "From" field, as this is easily altered.
  • Contain fraudulent job offers. Some fraudulent emails appear to come from companies offering jobs. Learn more about job scams
  • Contain prizes or gift certificate offers.Some fraudulent emails promise a prize or gift certificate in exchange for completing a survey or answering questions. They may direct you to provide your personal information to collect the alleged prize or certificate. Always confirm that the prize or gift certificate is being issued from a known and trusted company.
  • Link to fraudulent websites. Fraudulent emails may direct you to counterfeit websites carefully designed to look legitimate, but which actually collect personal information for fraudulent use.
  • Link to real websites. In addition to links to counterfeit websites, some fraudulent emails also include links to legitimate websites to make the email appear legitimate.
  • Contain Trojan horses and other computer viruses. Fraudulent emails may include attachments that contain computer viruses. You can also access a virus via a link in an email. (A "Trojan horse" is a particularly harmful virus that can record your keystrokes or relay other information to an unauthorized source.)
  • Contain fraudulent phone numbers. Fraudulent emails often contain telephone numbers that are tied to the fraudsters. Never call a number featured on an email you suspect is fraudulent, and double-check any numbers you do call.
  • Contain real phone numbers. Some of the telephone numbers listed in fraudulent emails may be legitimate, connecting to actual companies. Fraudsters include the these phone numbers in an effort to make the email appear legitimate.


How fraudsters obtain my email address
Fraudsters obtain email addresses from publicly available sources or through randomly generated lists. Thus, if you receive a fraudulent email that appears to come from us, this does not mean that your email address, name, or any other information has been taken from our systems.

Fraudulent websites
Online fraudsters may attempt to direct you to fraudulent websites via email and pop-up windows and try to collect your personal information. In many cases there is no easy way to determine if you are on a fraudulent website because the URL will contain the name of the institution it is spoofing.
One way to detect a phony website is to consider how you got to the site. You may have followed a link in a fraudulent email requesting your account information.
Never click on a link in an email or pop-up window to go to a site. Type, or cut and paste, the URL into a new web browser window. If it does not take you to a legitimate website, or you get an error message, the link was probably a cover for a fraudulent website.

Pop-up windows
Fraudsters may use pop-up windows, the small windows or ads that appear suddenly over or under the window you are currently viewing, to obtain personal information. These windows may be generated by "Adware" or "spyware" programs possibly hidden in free downloads such as screen savers or music-sharing software and installed on your computer. While many of these programs enable harmless advertisements, some contain potentially harmful Trojan horse programs or may monitor your web viewing activity.

We do not use pop-up windows to request customer account information. All of our pop-up windows are user-initiated. We will never display a pop-up window on our site that you haven't requested by clicking on a link.

These windows may be generated by "adware" or "spyware" programs possibly hidden in free downloads such as screen savers or music-sharing software and installed on your computer. While many of these programs enable harmless advertisements, some contain potentially harmful Trojan horse programs or may monitor your web viewing activity. Learn ways to help protect yourself from fraudulent emails and websites.

 

Identity Theft

Fraudsters may attempt to steal your identity by fraudulently obtaining your personal information - such as your Social Security number, bank account number, or other identification - and using it to open new accounts or initiate transactions in your name. An identity thief might open new credit cards or bank accounts, forge checks, or even apply for loans. This can cause financial loss or damage your credit, and possibly lead to a lengthy resolution process.
In general, identity theft is more extensive than fraud, which is usually limited to an isolated attempt to steal money from an existing account.
Even if you think your security has been compromised, it does not automatically mean that you are a victim of identity theft. An incorrect entry or isolated incident of theft from your account may have occurred and can be quickly resolved - call your financial service provider immediately.

How does identity theft happen?
Identity theft is portrayed as a high-tech crime affecting only those people who shop, communicate, or do business online. However, while thieves can obtain personal information via online methods, the majority of identity theft occurs offline. Stealing wallets and purses, intercepting or rerouting your mail, and rummaging through your garbage are some of the common tactics that thieves use to obtain personal information.

How can I protect myself?
By understanding exactly what identity theft is, how it happens, and how it affects you, you can more effectively prevent and, if necessary, resolve identity theft.

The following sites also offer information about identity theft and phishing:

 

Scams

Fraudsters try to locate and defraud potential victims using various means, such as telephone calls, faxes, and online chat rooms. Once they contact potential victims, they will use many compelling schemes to scam them. None of these scams are new, but are variations on themes that have existed for a long time.

Job scams
Job scammers use reputable job boards such as Monster®, Craigslist, or Careerbuilder.com to offer jobs that are in reality scams. They may pretend to be members of online chat room communities and, after developing relationships with other chat room members, recruit and hire victims for fraudulent jobs.
Fraudsters may also pose as recruiters or employers offering attractive employment opportunities and may contact victims using email, fax, and telephone. They may also get people's contact information from resumes posted online.
Such jobs are often work-at-home accounting positions and may require job seekers to receive money into their existing bank account (or open new accounts for the job) and then forward or transfer the money via Western Union to another account, often overseas. As payment, the job seeker is instructed to keep a small percentage of the transfer.
To avoid job scams: Confirm that any job offer comes from a known and trusted company or individual. Be wary if an employer asks you to sign up immediately for a new account, requests that you transfer money, or asks for information about your personal accounts or credit card numbers.

Telephone fraud
Fraudsters may obtain your phone number from a telephone directory or mailing list and call you directly. They may mail promotions saying that you've won a prize or a contest and instruct you to call the promoter with personal information. Television, newspaper, or magazine advertisements may also contain telephone numbers that lead to fraudulent businesses.
No matter the means, the fraudsters will use persuasive sales pitches, false claims, or even scare tactics to get your personal information, which may lead them to stealing your money.
To avoid telephone scams: Be wary of any unsolicited phone calls from a individual or business that you're unfamiliar with. Even if you initiate a call, be cautious about buying or investing on the phone if you do not know and trust the business.

Dating scams
Dating scams prey on vulnerable people by offering companionship and emotional support. Fraudsters create false personal profiles on online dating sites and chat rooms, claiming they are seeking romance, need help with an emotional problem, or want to help others in need.
After building a relationship (online, by phone, and even postal mail), fraudsters will ask victims to send money for a variety of reasons. They may say they need money for urgent surgery, have to escape from an abusive situation, or that they want to meet their victim but don't have enough money to travel.

Tips for avoiding scams
First and foremost, use common sense. Fraudsters are very effective at pretending to be people and companies they're not, so carefully determine who you're dealing with. If a job or promise sounds too good to be true, it probably is.
Never give personal information to a stranger who contacts you, whether by telephone, email, or other means. Never agree to anything without researching the facts. No matter how urgent fraudsters claim a deal is, you can always wait a few days to give yourself time to research and confirm legitimacy. Time is on your side, not the fraudster's.

How to Protect Yourself

You can take action to protect your identity and your personal information. Check out the following tips and suggestions for keeping your online and offline transactions secure. 

Fraud Prevention Tips

Online and Computer Security Tips

 

Fraud Prevention Tips

Follow these tips to help protect yourself from fraud.

General precautions

  • Carry only necessary information with you. Leave items such as your Social Security card at home.
  • Do not provide your Social Security number unless absolutely necessary. If your Social Security number is requested to sign up for a service, confirm that it is actually needed rather than some other identifier.
  • Make photocopies of vital information you carry regularly and store them in a secure place, such as a safety deposit box.
  • Limit paper statements. A paperless environment helps reduce the chance of identity theft. The fewer personal documents sent through the mail, the less chance there is for possible fraud.
  • Shred documents containing personal or financial information before discarding. Most fraud and identity theft incidences happen as a result of mail and garbage theft.
  • Review your credit report. Look over your credit report regularly - at least yearly - for any inaccuracies. You can get a free credit report once a year from each of the three major credit bureaus at www.annualcreditreport.com. For a small fee you can obtain a copy at any time directly from:
  • Limit the credit offers you receive. To reduce the credit offers you receive and the information companies share about you, contact the National Consumer Credit Reporting Agencies at 1-888-5-OPTOUT (1-888-567-8688).
  • Remove your name from marketing lists. The Direct Marketing Association (DMA) notifies its members that they must remove your name from the lists they sell. Their members include the agencies and companies that compile mailing and telemarketing lists. Your name and address remain in the DMA's consumer exclusion files for five years. Contact the DMA at www.dmachoice.org.

Email and online security

  • Be wary of suspicious emails. Carefully review any email requesting your account information and password, particularly if the email states that the information is needed to "award a prize" or "verify a statement."
  • Avoid opening any questionable emails. If you have opened an email, do not open any attachments or links it may contain, and delete it.
  • Check up on the latest email fraud activity. Many financial services companies maintain and regularly update lists of some of the most recent fraud incidents they are investigating.
  • Keep your computer and online experience secure.Read our Online and Computer Security Tips to find out how protecting your passwords, installing anti-virus software, activating a pop-up blocker, and other careful computing practices can help keep your computer and personal information secure.

Phone and mail precautions

  • Be aware of telephone scams. Unless you initiated the contact, do not give out personal information over the telephone. If the call is not initiated by you, always ask for a call-back number.
  • Even though we may legitimately need to contact you by telephone, ask for a call back number and case number if you're suspicious of the call.
  • Do not place outgoing mail in your mailbox. Deposit mail in a U.S. Postal Service mail box or at the post office to reduce the chance of mail theft.
  • Promptly retrieve incoming mail. Collect your mail as soon as possible every day to limit the opportunity for theft.
  • Know your billing and statement cycles. Contact the company's customer service department if you stop receiving your regular bill or statement.

 

Online and Computer Security Tips

Consider the following tips to help protect your computer and your personal information when you are online.

  • Protect your passwords. Memorize your passwords. Do not write them down or share them with anyone. Change them regularly and use combinations of letters, numbers, and "special characters" such as the "pound" (#) and "at" (@) signs . Do not use your Social Security number as a username or password.
  • Keep your computer operating system up to date. If your computer is more than five years old, its operating system (e.g. Windows 98, OS 7, etc.) may not offer the same level of protection as newer systems. System manufacturers provide frequent updates to help make your system more secure, possibly automatically through email or via your Internet connection. You may also check their websites, including:
  • Use a current web browser. To provide our customers with the most secure online access to their accounts, we continually upgrades our online services. In certain cases, your browser eventually may become unsuitable for sensitive transactions such as Internet banking.
    To maintain a high level of security, we may not allow access to online tools to browsers that do not meet our security criteria. You may need to upgrade to a supported browser. You may also check their websites, including:
  • Install a personal firewall. Though most office networks include firewall protection, your home computer may benefit from this added level of security. Check to see if your operating system already includes a firewall prior to purchasing a separate one.
  • Install, run, and keep anti-virus software updated. Commercially available virus protection software helps reduce the risk of contracting computer viruses that can compromise your security. These programs offer continuous upgrades in response to the latest threats. Two of the most popular programs are:
  • Use secure websites for transactions and shopping. Make sure the web page you are viewing offers encryption of your data.
    Often you will see a lock symbol in the lower right-hand corner of your browser window, or the web address of the page you are viewing will begin with "https://...". The "s" indicates "secured" and means the web page uses encryption.
  • Avoid downloading programs from unknown sources. Downloads from unfamiliar sources may contain hidden programs or viruses that can compromise your computer's security.
  • Disconnect from the Internet when not in use. Dedicated services such as DSL or high-speed cable provide a constant connection between your computer and the Internet. Even if you have a firewall installed, as an additional step to help protect yourself, disconnect from the Internet when not in use to avoid unwanted access to your computer's data.
ABOUT SSL CERTIFICATES