Latest Fraud Alerts For Businesses

When it comes to protecting your business from fraud and cybercrime, it pays to know the latest threats. That’s why NBT Bank is committed to providing you with the most up-to-date information and alerts. Click the headings below to learn more about recent scams and tactics being used by cyber criminals.

NBT Bank Themed Phishing Emails

NBT Bank has been made aware of phishing email attempts that have been increasing in frequency. Phishing is an email fraud attempt where an individual is asked to click on links or attachments in an email to gather personal information or cause damage to a computer or network.

How does it work?

In the latest phishing attempts, fraudsters send emails to customers posing as NBT Bank and are reaching out to confirm that your contact information has been changed or to let you know there is important information regarding your account. There is a link at the bottom of both emails directing you to a fake website to enter online banking login credentials and personal information. The fraudsters take this information and immediately use it to take over your account and change the information so it’s not accessible.

What are the red flags?

Email message says it is from NBT Bank but the email address it is coming from is not NBT Bank.
It contains multiple typos and incorrect grammar.
The link in the email does not take you to the company’s website.
The email requests personal information like your login credentials or social security number.
The email is completely different from previous emails you’ve received from the same NBT Bank.

What can you do to prevent this from happening?

Never share your personal information online with someone you don’t know.
Do not click on any links or attachments in emails that you do not recognize.
Delete any suspicious emails that you received.

Pictured are samples of the fraudulent emails. Please be advised that even if the body of the email is different or appears to be coming from a different sender, any similar emails could be a phishing attempt. If you believe you have received a phishing email, please report it to reportfraud@nbtbank.com. If you shared your personal information, please call NBT Bank immediately.

Sample of Phishing Email

Cybersecurity Tips For Businesses

On a daily basis, consumers and businesses are subject to malicious attacks from cyber criminals and fraudsters who are professionals at stealing information and financial resources. NBT Bank wants to give you the tools to recognize these red flags and the proper resources to report them so you don’t become a victim. Click on the dropdowns below to read more on the different topics.

Staying Safe Online

Protect your passwords. Set strong passwords and don’t them share with anyone, especially people you’ve only met online.
Secure your network. Make sure to keep your wireless network secure by placing a password on your account.
Keep your devices up to date. Using the latest security software, web browser, and operating system is the best defense against malicious attacks to your computer or phone.
Shop safely. Make sure websites you’re shopping on use secure technology. You can check by making sure the web address begins with https. You should also see a small padlock image on the page.

Protecting Your Identity

Shred sensitive documents. Any documents that contain sensitive information including social security numbers and bank account information should always be shredded.
Monitor your credit report. Obtain a free copy of your credit report annually on annualcreditreport.com and make sure there’s no unusual activity.
Protect your personal information. Don’t give out personal information to anyone that doesn’t need to know. This includes people you’ve only met online or strangers.
Keep track of your mail. Fraudsters look to take financial information that you get in the mail. Sign up for e-statements to reduce the likelihood of this information being compromised.

Common Scams

Lonely Hearts Scam. The love of your life that you met online is stuck overseas. You need to send them thousands of dollars so they can come home and live happily ever after. The only problem is they aren’t real and you’re not getting married.
Work from Home Scam. If you learn about a job opportunity online where you can work from home and make more money than the CEO of Apple, you’re probably being scammed.
Lottery Scam. You receive a letter in the mail claiming you won a lottery you didn’t even enter. A fraudulent check needs to be deposited and the funds need to be forwarded on to someone.
Remote Access Scam. Someone from tech support is calling you saying there are issues with your computer. They need to get remote access to “fix” the device and get in to your bank account.
Investment Scam. A fraudster contacts you claiming to have a unique opportunity to make money through investments. Sometimes they go as far as making phony certificates to make it look more convincing.
Grandparent Scam. This scam targets older individuals claiming their family members are in legal trouble or physical harm. Call your family member at a known phone number to verify what’s going on.

Recognizing Social Engineering Attempts

Don’t click on suspicious emails. If you get an email from someone you don’t know asking you to click on a link or attachment, ask yourself some questions first. If it doesn’t make sense, delete it.
Don’t pick up the phone if you don’t know who is calling. Fraudsters often call with different stories to get financial or personal information.
You debit card isn’t broken. If you get a text from your bank claiming your debit card is broken and you need to respond with the card information to fix it, call the bank at the number on the card to confirm.

Business Email Compromise

Business Email Compromise and Spear Phishing: A Sharp Cost

NBT Bank has recently noticed an increase in a type of fraud referred to as Business Email Compromise (BEC). This occurs when fraudsters fool an employee into submitting a wire transfer by posing as a supplier, vendor, or business partner. In a new variation of BEC, fraudsters are using spear phishing attempts. Spear phishing refers to targeted emails going to a specific department or line of business. For example, the accounting and finance department or payroll.

The email contains a link to what looks like an encrypted file. When clicked, the user is prompted for their username and password on a fake login screen. With this information, fraudsters can sort through their emails for invoices, communications with banks, or other important financial information. They also use this information to make rules in the user’s inbox to automatically forward emails for real time information. Most recently, there has been an increase in attacks toward healthcare, professional services, higher education and real estate closing companies.

How to protect yourself:

Don’t click on links in suspicious emails. Clicking a link could compromise your account or your network.
Check to see if the request is consistent with how earlier wire payments have been made. Is your supplier asking you to wire funds to a new bank account or different location?
Look carefully for small changes in email addresses that mimic legitimate email addresses. Do not rely on the display name shown, and always look for differences between the domain (@yahoo vs. @gmail) or sender name (ABCSupplies@ vs. ABCSupply@).
Use an alternate method of communication to verify. If the request is an email, then call and speak to the person using a known phone number to get a verbal confirmation for the request.
Implement dual control approvals with your bank for wire transfer requests. If an employee submits a request for a wire transfer, have a different employee who is aware of BEC and is willing to ask the right questions and provide approval to your financial institution.
Spread the word. Coach your employees about this type of fraud and the warning signs.

If you have any questions, please contact NBT Bank Cash Management Support at 800-NBT-Bank (628-2265), option 8.

Equifax Data Breach: 143 Million Consumers Affected

A massive data breach at one of the largest credit reporting agencies in the country could affect the personal information of up to 143 million consumers, almost half of the US population.

The breach exposes information including social security numbers, birthdays, addresses, and in some cases, driver’s license numbers. In addition, approximately 209,000 credit card numbers were exposed. Currently, it is believed the compromise lasted from mid-May through the end of July.

To Protect Yourself from Potential Fraud:

Review your account activity regularly and contact us if you see anything unusual.
Make sure you review your credit report annually to identify any unauthorized activity.
Make sure that NBT Bank has your most up to date contact information in the event we need to contact you about any unusual activity.
Watch out for scams related to the breach. Attackers are likely to take advantage of the situation and craft sophisticated phishing e-mails.
Check the Report Fraud section on the NBT website for additional steps if you are a victim of identity theft.

It is important to remember NBT Bank has fraud monitoring in place that watches customer accounts for unusual activity. NBT will contact you in the event that we see any suspicious activity.

NBT Bank will continue to monitor the situation and provide further information as needed. For more information on the breach or to see if your information was affected, follow the link below:

https://www.equifaxsecurity2017.com/

Please contact our Call Center at 1-800-NBT-BANK (1-800-628-2265) if you see any unusual activity on your account.

Ransomware: Not Going Away, Increasing in Frequency and Sophistication

Ransomware attacks continue to increase in frequency, and are becoming more sophisticated and targeted, meaning that an email containing an infected attachment can seem like it is coming from a trusted source such as a vendor or company. Malicious emails often no longer contain the typical indicators of phishing attempts, such as poor grammar and spelling, or "from" addresses which you do not recognize. It is extremely important to review all emails for content and purpose, and never open any attachments before verifying that the email is intended for you and is something which you were anticipating for a specific purpose.

What is Ransomware, and how does it happen to you? Ransomware attacks begin when an individual clicks on a malicious link or attachment in an email. Ransomware will then encrypt, or 'lock' all of the files on the user's computer, rendering the files unusable and inaccessible. After the files have been encrypted, the user will be prompted to pay a ransom to unlock their files.

Who is vulnerable? Ransomware attacks can be perpetrated against anyone, and caution must be practiced at all times.

How will you or your business be impacted?

If you fall victim to a Ransomware attack, the impact to individuals and businesses can reach far beyond removing the infection and recovering your files, and could also include:

Temporary or permanent loss of sensitive or proprietary information. Your personal or business files could be temporarily inaccessible or lost forever.
Disruption to regular operations. In the time it takes to respond to the attack, your computer files and the files on your network will be inaccessible, leaving your business inoperable or significantly impaired.
Financial loss. In order to fully respond to and recover from this threat, you may be required to invest significant resources in repairing and restoring your device or network, whether it be through the use of an internal or external IT Professional, or in extreme cases where a lack of preparation has left you with no other option to recover your files, paying the ransom.
Harm to an organization's reputation. Your business may suffer reputational harm when current customers or prospective clients learn that your business operations and their personal information have been affected by a Ransomware attack. Being prepared to appropriately prevent, detect, and respond to these events can help ensure a timely resumption of services and the protection of private customer information.

How to protect yourself: Prevent, Detect, Respond

Keep your anti-virus software active and up to date. Your anti-virus software is only as good as your last update.
Back up your files. Though creating a backup of your system will not prevent the execution of Ransomware, this preventative measure will allow for the recovery of data in an efficient and effective manner, without having to pay a ransom.
Be wary of suspicious or unsolicited emails, especially those which contain attachments or links.
Pay attention to anomalies when using your device, whether your computer seems to be running differently than usual, or if your computer is on a network of computers and seems to be communicating in a way in which it does not typically.
Educate yourself on Ransomware by reading this and similar alerts, such as the one released by the United States Department of Homeland Security (DHS) and the Canadian Cyber Incident Response Center (CCIRC), which can be found by typing the following link into your web browser: https://www.us-cert.gov/ncas/alerts/.
Paying the ransom is not recommended, and there is no guarantee the files will be decrypted upon paying the ransom. It is always recommended that victims work with an IT professional first before negotiating with the attackers.

For More information on Ransomware including an example of what a ransomware email might look like, please review our previous alert on Ransomware. It can be found by typing in the following web address into your browser:

https://www.nbtbank.com/Business/Customer-Support/Fraud-Information-Center/LatestFraudAlert/Ransomware

If you have any questions, please contact NBT Bank at 1-800-NBT-Bank (628-2265)

Nine Points of Protection.

Learn More

Latest Cyber Threats.

Learn More

Business Fraud Awareness, Prevention and Reporting Resources..

Find out about resources available for businesses to prevent fraud, cybercrime and report incidents.

Learn More