NBT Bank Logo
NBT Bank - Please Upgrade Your Browser.

It appears that the version of Internet Explorer you are using to view this site is no longer supported by our enhanced website. At NBT Bank we value your security and strive to deliver the highest quality online experience. To ensure the best and most secure performance we recommend upgrading to the latest version of Internet Explorer, Mozilla Firefox or Google Chrome.

Please visit Microsoft.com, Google.com, or Mozilla.org to download the current version(s).

To directly access an account login page please use the links below:
NBT Online Banker | eStatements | NBT Wealth Connection | NBT 401(k) Daily Services | NBT Remote Deposit | LPL Account View Online

If you have any questions or need any assistance please contact Customer Service at 1-800-NBT-BANK.

Google Docs Phishing Attack

Massive Google Docs sophisticated phishing attack might be in your inbox

A new phishing scam is enticing end users to click on what appears to be Google Docs but actually prompts recipients to give access to a third-party app called "Google Docs" which is only named Google Docs and is not the real Google Docs. Once clicked, your Gmail account will begin sending spam messages to all your contacts.

Additionally, if access is granted, the phishing scheme gains the ability to read, send, delete and manage all your emails and manage all your contacts — enabling it to spam everyone you've ever emailed.

There is one giveaway. The emails either sent to or cc'd to an address of "hhhhhhhhhh@mailinator.com."

Google issued an official statement confirming the issue has been resolved. However, there might still be a lingering phish in your inbox.

What to do if you clicked the link:

  • Your account may have already sent spam messages to the people in your address book. Revoke future access through Google's "Connected Apps and Sites" page (Note: it will appear as "Google Docs")
  • Change your Gmail password
  • Report the phish to Google
  • Contact individuals that you email to let them know if they received a shared Google Docs from you not to open it
  • Reset any passwords for any 3rd party services tied to the affected Gmail account that share the same password (i.e. Netflix, Amazon, etc.)


What to do if you didn't click the link:

  • Delete it from your inbox
  • Beware of emails asking for information, asking you to click links or attachments, or requesting the ability to read/send/delete/manage your emails
  • Research any apps before downloading them
  • Change passwords for email accounts and other applications frequently and do not reuse previous passwords.


What to do if you are a business customer using Gmail for Business (G Suite Email):

  • Contact your IT Department local/onsite admin or IT specialist


If you have any questions or concerns please contact the Information Security & Fraud Risk team at Reportfraud@nbtbank.com

Fraud Alert Icon.

Fraud Alert Archive.

Please visit our Fraud Alert Archive to stay up to date on common ways that cyber criminals try to defraud consumers.

Learn More

This link will take you from NBT Bank's website to a third-party location that is not controlled by NBT Bank. Please note that this new site may have a different policy on privacy, cookies, data collection and other user issues. NBT Bank does not monitor content on third-party websites and does not endorse and is not responsible for the content, guarantees, privacy policy, security, and products and services that are offered or expressed on them.

Are you sure you want to continue?

Yes No