Protecting Yourself from Internet Fraud
What is “Phishing”?
Phishing (FISH-ing) refers to how thieves steal victims’ personal financial information. They are phishing for information. These con artists pretend to represent a trusted source, like a bank.
What is “Pharming”?
Pharming (FARM-ing) is when criminal hackers redirect Internet traffic from one Web site to a different, identical-looking site in order to trick you into entering your user name and password into the database on their fake site, in order to acquire personal information to access your accounts, steal your identity, or commit other acts of fraud.
How do I protect myself?
The golden rule to avoid being phished is to never hit “reply” or click the links within a suspicious email. If you can tell an email is phishy, always delete the email immediately. The only reason you wouldn’t delete an obvious spoofed email right away is because you’re reporting it to the proper authorities. Once you’ve done that, and deleted the phishing email, empty the trash box on your email program as well. If you’re not sure whether the email is legitimate or fake, be suspicious of any emails that request financial or personal information. If you have reason to believe that a financial institution really does need personal information from you, call the company yourself – using the number in your phone book, not the one the email provides. Also, rather than just clicking on the link provided in the email, type the company’s official web address into your web browser yourself.
- To make sure a website has proper encryption and is secure, look at the prefix to the website. Note the http:// or the https:// that is before the website address. The “s” in “https” stands for secure and means that the information being passed through the site is being sent securely (encrypted).
- When you login to NetTeller, it will display your last login date and time. If this date and time does not match what you think was your last date and time, please contact the bank. We would also recommend that you change your password at this time.
Be cautious when using public computers (those in libraries, cafés, etc.). These computers can be used by any number of people and you will want to ensure that you log out of NetTeller properly and that your password is not stored in its memory to auto-complete. Additionally, these computers networks are public and you do not know who may be monitoring the traffic going across it.
- Make sure you update your operating system with the latest patches and service packs. Keep your other software up to date as well by upgrading regularly. Hackers can take advantage of vulnerabilities in the operating system and other software and can use them to compromise your computer.
- Install antivirus software to protect, detect, and repair attacks from most viruses on your computer. Keep the software up to date and keep the virus definitions current. Viruses are constantly being developed. Scan your system for viruses regularly.
- Spyware protection. Antivirus software only stops so much from infiltrating your computer. Your computer should also have anti-spyware software to keep your system clear of spyware. Your spyware software should be configured to scan your computer at least weekly.
- We recommend that you use a firewall on your personal computer to protect your computer from hackers. With many home computers being connected through wireless modems, many are connected to the internet 24/7. Hackers scan for systems that are connected that do not have firewalls in place.
You have the ability to reset your own password by choosing a security question and answer. Choose your question and answer wisely. We suggest that you choose a question that a fraudster could not guess with a simple search about you online. We have put some good examples of security questions below for you to choose from:
- What was your childhood nickname?
- In what city did you meet your spouse/significant other?
- What is the name of your favorite childhood friend?
- What street did you live on in third grade?
- What is your oldest sibling’s birthday month and year? (e.g., January 1900)
- What is the middle name of your oldest child?
- What is your oldest sibling’s middle name?
- What school did you attend for sixth grade?
- What was your childhood phone number including area code? (e.g., 000-000-0000)
- What is your oldest cousin’s first and last name?
- What was the name of your first stuffed animal?
- In what city or town did your mother and father meet?
- Where were you when you had your first kiss?
- What is the first name of the boy or girl that you first kissed?
- What was the last name of your third grade teacher?
- In what city does your nearest sibling live?
- What is your oldest brother’s birthday month and year? (e.g., January 1900)
- What is your maternal grandmother’s maiden name?
- In what city or town was your first job?
- What is the name of the place your wedding reception was held?
- What is the name of a college you applied to but didn’t attend?
- Where were you when you first heard about 9/11?
If you suspect that your username and password have been compromised, attempt to change your password. If you are unable to, contact the bank to have your profile disabled. This will stop anyone from being able to access your NetTeller account.
In addition to these safeguards, First National Bank will never:
- Send an email asking for your personal account information
- Ask for your account number, password or pin in an email, via phone or in the U.S. mail.
What should I do if I’ve responded to a phishing email or website?
If you’ve responded to a phishing email and think you may have compromised personal identification or financial information, don’t panic – but you need to act immediately. Notify First National Bank at 715.258.8381, credit card issuers, and credit reporting agencies, and ask them to flag your account and watch for unusual activity.
How do I check to see if I have been a victim of Identity Theft?
Review your credit report. Look over your credit report regularly – at least once a year – for any inaccuracies. You can get a free credit report once a year from each of the three major credit bureaus at www.annualcreditreport.com . For a small fee you can obtain a copy at any time directly from the credit bureaus:
Equifax: 1.800.685.1111 or www.equifax.com
Experian: 1.888.397.3742 or www.experian.com
TransUnion: 1.800.916.8800 or www.transunion.com
You can file a complaint or learn about ID theft by going to the Federal Trade Commission Website at www.ftc.gov or calling 1.877.382.4357.
First National Bank Security Statement
Please read the information below to learn about how First National Bank protects your information and how you can conduct online business safely.
FNB protects your accounts:
- Browser encryption. Your web browser must support 128 bit encryption and Secure Sockets Layer (SSL) protocol. These technologies provide the levels of security required to ensure that the transactions and business you initiate through NetTeller are safe. If your browser does not support these technologies, you will need to upgrade.
- Password length and strength. Passwords are required to be over 8 characters long and contain alpha, numeric, and special characters. Adding complexity to your password makes it much harder for a fraudster to guess. Try coming up with a sentence about your life and turn the first letters of each word in the sentence into the password. For example: We like to ski and ice skate in the winter! This would turn into the password: Wl2s&isitw! Turning words like “to” and “for” into “2” and “4” and the word “and” into “&” helps to satisfy the special character and numeric requirements of the password.
- Changing Your Password. FNB recommends that you change your password periodically. This can be done within NetTeller by going to the Options tab.
- Time-out feature. After 10 minutes of inactivity, NetTeller will automatically log you out of your session. When exiting NetTeller, we encourage you to logout and close your browser.
- Multi-Factor Authentication (MFA). With MFA, the system will ask you challenge questions if your risk rating is higher upon login. This helps to ensure that you are really you! If the system that validates the challenge answers is down for any reason, you will not be able to log in to NetTeller. This ensures that a fraudster could not bypass this level of security if the system were in a maintenance window or were having issues.
- Ensuring your identity.If you need your password reset, we will verify your identify through your name and your SSN or your NetTeller ID. We will not disclose your NetTeller ID to you over the phone. If you have forgotten your NetTeller ID, you will need to have a new one created and mailed to you or you can come into the bank personally to get this ID.
- IP Restriction. For our cash management customers, we offer IP restriction. You can give us the IP addresses of the computers that should be logging into your NetTeller to do cash management which we will save in our settings. If a fraudster attempts to login from another computer that is not that IP address even with the correct username and password, they will not be able to access the site.
- Time Restriction. For our cash management customers, we offer time restriction. You can give us the days and times in which your users of your cash management account should be accessing it online. If someone attempts to access the account with the correct username and password outside of the time window that was set, they will not be able to log on.