Your Security is Important to us.
Internet Banking Best Practices
- Always confirm the last login date on your internet banking Welcome page.
- Never use account numbers when providing nicknames for accounts.
- Register your PC to avoid answering challenge questions on each login.
- Limit where you log in, and never at a public or unsecure computer.
- If you experience login difficulties (error page, site down message, etc.), notify the bank immediately.
- Always review Consumer Alerts and transaction history and notify the bank immediately if you notice unusual or questionable activity.
- Make sure your virus protection and operating system updates are always updated.
- Avoid identity theft by receiving statements online instead of in the mail.
What information FCB asks for and how it will be used:
- When you register for online banking, FCB will ask you for basic registration information, such as your name, social security number, email address, and information to verify your relationship with us (e.g. ATM, Debit Card, Checking or Savings Account information). The bank uses this basic registration information for providing the services and/or accessing the sites customers select on their behalf, monitoring and improving our existing products and services, or for purposes of offering new product and service information of interest to customers.
Social Engineering and Your Security
Social engineering is the practice of obtaining confidential information by manipulation of legitimate users. It uses vulnerabilities in human behavior to gather personal and financial information from unwitting victims. Thieves who employ social engineering are highly-skilled in psychological persuasion, and use it to their advantage in order to gain your trust–and to get you to let down your guard.
Identity thieves use the phone, the Internet, and will even go through your trash (or “dumpster dive”) in order to obtain your sensitive information:
Over the phone, they will employ a well-rehearsed script and pretend to be someone important or official in order to gather your private information. Identity thieves gain their victims’ trust in order to extract important information from them–their Social Security number, their bank account number, passwords, etc.
Online, thieves use official-looking emails with attachments that try to convince you to open them, but these can contain programs that can record your keystrokes and send the info right to identity thieves with you even knowing it. These kind of “Trojan Horse” attachments can also install a pop-up window that resembles a legitimate network request for intended victims to re-enter their username and password, which then delivers the protected information to the hackers.
- Dumpster diving is the social engineering practice of going through someone’s trash to collect information from documents that have been discarded without being shredded first–bank or billing statements, old records, and the like. Trash can yield a goldmine of information for a would-be identity thief, as it can provide enough information to launch another form of social engineering via phone or the Internet.
Identity Theft and Fraud
Learning to Recognize Unusual Activity
Identity theft happens when a thief steals information such as your name, birth date or Social Security number to open credit cards, mortgages, and other accounts without your knowledge.
Fraud is an act that occurs when someone uses your account to make unauthorized purchases, usually when the account number or card has been stolen.
While it’s virtually impossible to prevent identity theft and fraud, it’s important to learn how to minimize your risk and recognize activities that may indicate possible fraud or identity theft.
The following occurrences may indicate signs of fraud:
- If expected bills or mailed statements were not received
- If unexpected charges occurred on your account
- If there are charges on your account from unrecognized vendors
- If posted checks appear on your account significantly out of sequence
Check your credit report for all three credit reporting agencies (Equifax, Experian, and TransUnion) at least once a year, to make sure that no one has opened any accounts or applied for and /or been approved for loans in your name. It’s free, and you can get yours by visiting annualcreditreport.com.
You can also choose to use a credit monitoring service, which provides additional peace of mind by issuing immediate alerts should suspicious activity arise (i.e, if someone opens or attempts to open a new line of credit in your name). There is usually a minimal monthly fee involved.
What Happens if It Happens to You?
Detecting Identity Theft and Fraud
Identity theft and fraud are serious crimes that can wreak havoc with your finances, credit history, and reputation — and can take time, money, and patience to resolve. The best detector of fraud and identity theft is you. Through proactive monitoring and best practices–including shredding of all important documents before tossing them–you can become more vigilant for unusual activities and act fast before real damage to your identity and your good name occurs.
Banking online gives you quick access to your accounts, so fraudulent activities can be detected sooner. Additionally, by taking advantage of Online Banking & Bill Pay, e-statements and good old-fashioned paper shredding, you can reduce the chances of identity theft via dumpster diving.
Personal & Small Business Bill Payment
- Always review bill payment history to verify recent payments.
- Set up bill pay alerts to actively monitor payments.
Business eBanking Bill Payment
- Role-based access should be used to limit the users who have approval authority to process bill payments.
- Bill pay history should be reviewed on a regular basis and all bill pay alerts should be activated and acknowledged.
Business e Banking (BeB) - Additional Considerations
- Retain ADMIN users for administrative purposes only. Log in with restricted users for operational or transactional functions.
- If using ACH, verify that all ACH-related alerts are activated and are being acknowledged as they are received.
- ADMIN users should implement multi-approval requirements for BeB functions, beyond the default bank-established requirements.
- ADMIN users can establish the requirement for multiple approvals to process account-to-account transfers.
- Funds transfer activity should be reviewed on a regular basis in internet banking.
Securing Your PC
- Use updated anti-spyware and anti-virus protection to detect and removes viruses, spyware, and other malware - which can steal vital personal information.
- Use a firewall to prevent unauthorized access to your computer, and to monitor transfers of information to and from your PC.
- Always install the most current operating system and software updates , also called "patches" or "service packs" - as soon as they are available.
- Keep your web browser version current, as updates are made available with your security in mind.
Securing Mobile Devices
- Use a unique PIN code to lock your device that only you know and always maintain your phone in a safe location.
- Only download applications or data from a trusted source.
- Only use wireless networks that require a password. Open networks are often unsecure and vulnerable to security breaches.
- Always maintain the most up-to-date firmware available for your device.
- Delete text messages or emails from your bank on your mobile device.
- Never send confidential information such as account numbers via a text message.
- Do not hack, jailbreak, or otherwise modify your device, as this will leave it susceptible to infection from malware, viruses, or trojans.
Additional Resources Online
- Strong Passwords: Review Microsoft's Online Security guide to creating strong passwords in order to more effectively protect your online transactions.
- Prohibit Your Browser from Saving Your Passwords: Most recent versions of web browsers prompt you to save login credentials for sites on the Internet. This feature can put your money and personal information at risk if you are not careful.
I BELIEVE I MAY HAVE ENCOUNTERED FRAUD
Contact us immediately or call your local branch if you suspect that your FCB account may have been compromised in any way by fraud. The sooner we are made aware, the sooner we can help you.
I RECEIVED A SUSPICIOUS EMAIL
If you you've received a suspicious or fraudulent email regarding your account or Florida Community Bank, do not act on it. Please forward it to email@example.com so we can investigate it for you.