- Business Email Compromise
- Key Points on Retail Compromises
- New Email Scam Alert
- Computer Fraud Basics
- News Articles
- Consumer Protection Disclosure
Despite efforts to protect customersí information, breaches can occur at the point-of-sale. Learn More...
We were made aware of yet another email scam that has appeared. This time the scammers are pretending to be from financial institutions. While none of this is new, First State Bank has always taken customer protection very seriously and will always do so. Today we learned that scammers are pretending to be from larger, national chain banks. The first type of email scam is the email contains an attachment that is a .zip file. This .zip file is said to contain several viruses and malicious code. The other type of email scam is the email contains a hyperlink to a malicious website where the potential for several types of viruses could be loaded onto a computer. As with any email scam, it is recommended to never open these files or click on any links if you are unsure of the sender.
Again, none of this is new information and happens all the time. Whenever these types of events hit the news, we like to take the opportunity to remind our customers the following: Employees of First State Bank will never contact you via email without first contacting you on the phone. This is especially true when the email may contains an attachment or a hyperlink. If you ever receive an unsolicited email claiming to be from First State Bank with an attachment or hyperlink, please do not open the file or click the link and contact us immediately.
It seems like everyday we hear about some form of fraud, whether itís Identity Theft or some sort of Hacker. Financial institutions continually see the latest attempts and schemes when it comes to IT related fraud.
The key point that needs to be made before you read any further is that First State Bank and our computer service provider devote countless resources and dollars to protect your information and your identity to the fullest. We take this matter very seriously, and do everything to ensure appropriate safeguards are in place.
The purpose of this article is to inform you of the types of things we are seeing in hopes that you will be aware of them in your day-to-day computer, internet, and email activities. Bank personnel have attended training to be aware of these different scenarios, but you also need to be aware so you can help protect your information. With Fraud loss in the U.S. over the past few years ranging in the hundreds-of-billions of dollar range, itís important to always take time to evaluate unusual or unexpected IT activity. Logic and common sense will be your best tools of defense.
Listed below are some definitions of what we have encountered this year on the computer side. These can all be a result of clicking an advertisement on a web site (coupons for free meals is a common one), opening that enticing attachment in your email or clicking that link to change your password on FaceBook. The slide shows, the spiritual wishes, the movies; the lists goes on and on all have potential of being malicious. We have seen them all.
Adware (or spyware) is a small program that is designed to show advertisements (in various form and degrees of intrusiveness) on your computer. It often reports personal information back to its owners. As a result your sense of privacy can be violated.
A backdoor is a small malicious program that is used to gain access to a computer by bypassing the computer access security mechanisms. It gives the attacker almost unlimited rights. While it can be used to spy on a user, it is mainly used to install other malware on the system.
A generic name for all types of malicious programs: adware, backdoors, rogues, trojans, viruses and worms.
A rogue program is a malicious program that is disguised, for instance, as trustworthy anti-spyware programs or registry cleaners. But these programs are only put on the market to scare you into buying these programs because they make exaggerated claims about the safety of your computer or, worse still, give erroneous scan results or put their own malware in your system.
A trojan (or Trojan horse) is a small malicious program that pretends to have a particular function, but that only shows its real purpose after execution and that purpose is often destructive. Trojans cannot multiply themselves, which differentiates them from viruses and worms.
A virus is a small malicious program that multiplies and is capable to attach itself to other programs after being executed. It then causes an infection and causes various degrees of damage to your computer.
A worm is often characterized as a malicious application that will use a host machine to infect other machines. Therefore worms can create enormous damage on networks with multiple computers.
Hopefully this information will help you to protect yourself as you continue to enjoy the benefits the internet and email can provide. Just be aware of these things, keep an eye opened, and let your common sense be your guide. If you receive anything suspicious, do not open it. Just delete it. Another thing you can do is keep your antivirus software updated, as these programs have the tools to clean up and remove many unwanted viruses, etc.
Important Information Regarding a Recent "Vishing" Scam
We have received information about a new type of fraud, called ďVishing.Ē This sort of activity is a form of social engineering over the phone system and/or cellular phone using text messaging in order to manipulate the customer to give access to private personal and financial information. Here is how it works:
- The fraudster configures a phone dialer to call phone numbers in a given region or accesses a legitimate voice messaging company with a list of phone numbers stolen from a financial institution.
- When the customer answers the call, an automated recording, often generated with a text to speech synthesizer, is played to alert the consumer that their credit card has had fraudulent activity or that their bank account has had unusual activity. The message instructs the consumer to call the following phone number immediately. The same phone number is often shown in the spoofed caller ID and given the same name as the financial company they are pretending to represent.\
- When the customer calls the number, it is answered by automated instructions to enter their credit card number or bank account number on the key pad.
- Once the consumer enters their credit card number or bank account number, the visher has the information necessary to make fraudulent use of the card or to access the account.
- The call is often used to harvest additional details such as security PIN, expiration date, date of birth, etc.
First State Bank will never ask our customers for PIN or account number information via the phone, email, or text message. If you have any questions, or believe you have been a victim of this sort of fraud, please contact us.
Don't Be A Victim During The Holiday Season (From the ABA Bank Risk News)
The Identity Theft Resource Center, based in San Diego, offers these tips on how to avoid having your identity stolen:
- Never carry your Social Security card or its number unless you really need it, such as for a job interview.
- Watch for the timely arrival of monthly statements, bills and any other item that usually comes in the mail.
- Mail your bills inside the post office, rather than trying to stuff them in an already full mail box out on the sidewalk.
- While talking on your cell phone, donít share your account numbers where other people can hear you.
- Keep an eye on your credit card at all times -- donít let a clerk or accomplice distract you while it could be swiped through a second scanner that secretly records your information.
- Keep track of all credit card receipts and shred any you donít need.
- Shred any documents you donít need that contain bar codes, account numbers or other sensitive data.
First State Bank is pleased and honored that you have chosen to do business with us. Because of your choice to do business with us, we have a heightened obligation to ensure that the information you provide to us, and the business that you transact with or through us remains private and confidential. First State Bank believes that customer privacy and confidentiality can be strictly maintained even though we must necessarily contract with suppliers and vendors to provide our customers an array of financial products, which they want and need to accomplish their goals. The way we do this is described in this Privacy Statement. If you have any questions regarding this Privacy Statement, please feel free to contact an Officer of First State Bank.
In our normal course of business, we collect, retain, and use information about customers for specific business purposes, and to enable First State Bank to better serve the financial needs of its customers In addition to the information you provide to us, or which becomes known to us through normal financial transactions, we also retain general statistical information form other sources, such as credit reports and public records. In certain instances, we may also obtain information from financial institutions with which a new customer has done business in the past. We use all of this information to protect, maintain, and administer your accounts, records and funds; to comply with the laws and regulations which govern bank operations, and to better understand and server our customers in this community with financial services that are wanted and desired.
Employee Access to Information
As with any business, employees of First State Bank necessarily learn, and have access to information about our customers. Because we value your trust so highly, our employees' access to customer information is authorized for business purposes only, based upon that employee's duties and job description, and upon that employee's need to know such information to competently and thoroughly do their job. We educate our employees, and ask them to maintain a heightened awareness of the importance of confidentiality and privacy. If a customer's confidentiality or privacy is ever breached by an employee, you can be assured that First States Bank will take immediate and appropriate disciplinary measures.
Restriction on Disclosure of Information to Non-Affiliated Parties
We do not reveal customer information about you or your accounts, to any person or party not affiliated with First State Bank, unless:
- You, the customer, request or authorize.
- The information is provided to help complete a transaction initiated by our customer.
- We are legally permitted or required to do so. It is not uncommon for banks to receive subpoenas, garnishment notices, or other judicial orders requiring banks to turn over customer information, and in some instances, funds. We also report information to reputable credit reporting agencies.
- In the future, if we ever feel that it is necessary or beneficial to share non-public personal information with unassociated parties, in order to provide a product or service to our customers, you will be notified and given the opportunity to "opt-out". If you elect to opt-out, no information about you will be provided to unassociated third parties.
Sharing Information with Service Providers
In order for First State Bank to provide the quality of service that we strive to provide, and to fully and completely serve our customers by providing an array of financial products and services, it is necessary for First State Bank to contract with vendors or suppliers to support our products, services or process documents. We are very selective in choosing these vendors and suppliers. When we enter into contractual relationships with these parties, they are contractually bound and required to adhere to strict standards requiring security and confidentiality of customer information. They are not allowed to release such information, or use any information for their own purposes.
Disclosure of Non-Financial Information
First State Bank will not, under any circumstances, sell the names, addresses or other nonfinancial information about our customers to any third party, nor will First State Bank accept any form of benefit or gain in exchange for disclosing customer names, addresses, or other nonfinancial information to any third party or marketing organization.
Accuracy of Information
If you ever believe that any of our records contain inaccurate or incomplete information about you, we encourage you to immediately contact us at 307-322-5222, in Wheatland, or 307-532-5600, in Torrington. We will immediately investigate your concerns and correct any inaccuracies as quickly as possible.
About Children's Online Privacy
The Children's Online Privacy Protection Act (COPPA) was passed to give parents increased control over what information is collected from their children online and how such information is used. The law applies to websites and services directed to, and which knowingly collect information from, children under the age of 13. First State Bank's websites and online services are not directed to children under the age of 13, nor is information knowingly collected from them. For additional information on COPPA protections, visit the Federal Trade Commission's website. For further information, the Federal Government has created a Web site, Kidz Privacy, aimed at educating both parents and children about the dangers of the Internet and how to browse safely.