Important Reminder Regarding Internet Account Takeover
E-mail and Internet-related fraudulent schemes, such as "account takeover" are being perpetrated with increasing frequency, creativity and intensity. Account Takeover is a form of corporate identity theft where a business' online credentials are stolen by malware or viruses. The malware or virus can then capture users online login credentials to online banking websites and initiate fraudulent banking activity. Account takeover usually starts in the form of "phishing" attempts such as:
- Disguising an email to look as though it's from a legitimate business. Often, these criminals will employ some type of scare tactic to entice the employee to open the email and/or provide account information.
- Accepting a fake friend request on a social networking site(s).
- Making an email appear to provide information regarding current events such as natural disasters, major sporting events, and celebrity news to entice people to open emails and click on links.
It is important to educate all users of your Online Banker account, and any employees that have access to corporate financial information, to be wary of any e-mails received containing attachments or directed to links through emails.
Don't take any chances; educate yourself and your employees to stay safe online using these 9 Points of Protaction tips:
- Designate a Banking PC- Carry out all online business banking activities from a stand-alone locked down computer system from which e-mail and Web browsing are not possible.
- Dual Control- Initiate ACH and wire transfer payments under dual control, with a transaction originator and separate transaction authorizer.
- Monitor Daily- Check all banking transactions on a daily basis instead of monthly.
- Know Phishing- Never access a website from a link in an email, especially a site asking for personal information
- Fresh Passwords- Change your passwords every 45-60 days
- Computer Security- Update anti-virus software frequently and know who your anti-virus provider is.
- E-Mail Safely- Do not include personal or sensitive data in or in response to an email.
- Trust but Verify- Be suspicious of e-mails or calls purporting to be from a financial institution that request access credentials, such as user names and passwords.
- Call your Bank- When in doubt, contact your bank!
If you have any questions or concerns please feel free to reach out to one of our dedicated Customer Service Representatives at 1-800-NBT-BANK (1-800-628-2265).