- Prevent Online Fraud and Identity Theft
Internet scams such as Phishing and Spoofing are becoming more prevalent, and protecting your personal information from Identity Theft is crucial. There are many ways the unscrupulous can gain access to information such as your name, Social Security Number, credit card or bank account numbers, or other identifying information to commit fraud or other crimes.
E-Mail Phishing - Involves you receiving an e-mail that appears to be from a legitimate company, such as FOCUS Bank. It may even include the company's logo and a link to an Internet address that looks appropriate. This e-mail directs you to a website where you are to supply account or personal information. However, simply clicking the link inside the email could secretly install software on your computer. The software may infect your computer with a virus or record and transmit everything you type, including passwords, to an unknown third party. Additionally, the website you link to may be spoofing the correct Internet site.
How to Recognize a Phishing E-Mail
- An email includes scare tactics that lead you to believe clicking on a website link is vital to your continued access to your financial accounts or other services
- There is a request for sensitive information such as your password, PIN number, and Social Security Number or account number. A legitimate company will never ask you for this via email
- The email message may contain misspelled words, poor grammar or strange formatting
Website Spoofing - Involves you trying to visit a website but accidentally keying-in or linking-to a different address. This may lead you to a website that mimics the legitimate site that you were trying to visit. The spoof Internet site may route whatever information you provide to criminals. This can include your account numbers, Social Security Numbers, credit card information, passwords and other personal identification numbers. To make spoof sites seem legitimate, criminals may use the logos, graphics, names and code of the real company's site. They also may attempt to fake the URL that appears in the address field at the top of your browser window and the padlock that appears in the lower right corner.
Identity Theft - Occurs when someone steals your personal information, credit cards, checks or driver's license and then obtains credit or merchandise in your name. Methods of obtaining this information include stealing wallets and purses, stealing mail from mailboxes, changing the address on credit accounts, or rummaging through garbage looking for personal data.
- Do not reply to an e-mail or pop-up message asking for personal information
- Do not e-mail personal or financial information
- Use bookmarks to access known sites to avoid being lured to imposter sites
- Use updated anti-virus software
- Don't write down your passwords, and don't use birth dates or names of family members as passwords
- Take your receipts from ATMs, gas pumps, etc.
- Review credit card and bank statements immediately for unauthorized charges
- Shred unwanted documents that contain personal information
- Enroll in / Log into FOCUS ID
Credit Reporting Agencies:
(by notifying one agency of fraudulent activity, you will notify all three)
Request a credit report: (800) 685-1111 Option 4
Reporting Fraud: (800) 525-6285
Request a credit report: (888) 397-3742
Reporting Fraud: (888) 397-3742
Request a credit Report: (800) 916-8800
Reporting Fraud: (800) 680-7289
Fraudulent use of Checks:
Attn: Consumer Relations
12005 Ford Road Suite 600
Dallas, TX 75234
SCAN : (800) 262-7771
TeleCheck : (800) 710-9898
U.S. Government Agencies on Identity Theft:
Federal Trade Commission
Identity Theft Clearing House
Hotline: (877) 438-4338
IDD: (202) 326-2502
Social Security Administration Fraud Hotline: (800) 269-0271
- FFIEC Consumer & Business Education
The Federal Financial Institutions Examination Council (FFIEC) recently issued new supervisory guidance designed to help make online transactions more secure. The new guidance is in response to an ever more dangerous online threat environment. Scams and hacking techniques are more sophisticated, new threats are continually being developed, and organized crime groups both in the United States and internationally have become a major force in expanding online fraud and theft.
The new guidance means you may begin to see new security features on the websites you visit. Each of our online products has built-in security features which are continually enhanced in response to changing threats. Some of these enhancements are visible to you, the user, but others occur behind the scenes.
The new guidance also means you will see more information on how you, as a user of online services, can take action to keep your identity and your financial information and funds secure.
*IMPORTANT INFORMATION FOR USERS OF OUR ONLINE SERVICES*
Focus Bank and your Log-in Credentials
We will never call, email or otherwise contact you to request your access ID, password, or other log-in credentials for the online services we offer. If you receive such a request, do not provide any information. Contact us at (800) 464-3150 to report the incident.
Reporting Suspicious Activity
If you see suspicious activity on your account(s) or have received a suspicious call, email, letter or other similar contact regarding your relationship to FOCUS Bank, call (800) 464-3150 or your local branch.
Protect Yourself by Controlling Online Risks
Understand the risks of online transaction processing:
- Our website includes information about preventing and reporting identity theft. The security tips and links to websites noted below provide important information and news to help you understand online transaction risk and options to help you control these risks. It is important to be informed and proactive. When it comes to internet fraud, account takeover and identity theft, an ounce of prevention is definitely worth a pound of cure.
Password Security Tips
- Do not share your User ID's or Passwords with another person or provide them to others. Safeguard your User ID and Password information--never leave the information in an unsecured location.
- Create a unique User ID and Password for each site. Do not use the same identifying information on multiple websites.
- Create strong User ID's and Passwords. In other words, use upper case letter(s), lower case letter(s), number(s), and special character(s) (!@#$%^&*)
- Many websites force password changes (i.e. every 60 days). If a website does not do so, take the initiative and change your password on a regular basis.
Website Security Tips
- Monitor account activity. View account activity online on a regular basis and review periodic account statements (monthly and/or quarterly) and reconcile them to your personal records.
- Log Off from a website; do not just close the page or "X" out.
- Secure websites have a web address that includes an "s" (https rather than http). If this is lacking, the site is not genuine. Do not log in or conduct business on the site.
- If a website displays a security monitor, verify it has the current date. If it does not, do not use the site; it may be a spoofed or hijacked.
- When completing financial transactions, verify encryption and other security methods are in place, protecting your account and personal information.
Computer / Network Security Tips
- Use quality security monitoring software on your PC that includes anti-virus, anti-malware and firewall functions.
- Use your PC's security features such as individual Log-In accounts.
- Keep PC operating system security up-to-date by applying patches and updates.
- Password-protect your computer network (physical or wireless).
Web Resources – Learn more and do more to protect yourself online!
Two user-friendly sites for users of all ages and interests:
Consumer alerts and online security tips on the FTC website:
Youth and teens and those concerned about them will find the following helpful:
Recent scams and how to report scams - Go to the IC3 website, a partnership of the FBI, the National White Collar Crime Center, and the Bureau of Justice:
Scams and fraud and tips to avoid being a victim - Go to the FBI website at:
The identity theft page of our website, under Quick Links, has information on how to protect yourself and what to do if you suspect you are an identity theft victim.
Consumer Protection - Regulation E
Regulation E provides rules for error resolution and unauthorized transactions for electronic fund transfers, which includes most transactions processed online. In addition, it establishes limits to your financial liability for unauthorized electronic fund transfers. These limits, however, are directly related to the timeliness of your detection and reporting of issues to FOCUS Bank. It is for this reason that we encourage you to immediately review periodic account statements and to regularly monitor your account activity online.
The "Electronic Fund Transfers" disclosure provided to you at the time of account opening provides detailed information. We will provide to you, upon request, a free printed copy of this disclosure.
Additional Information for Business Users of Online Services
The new FFIEC Guidance takes note that business transactions, because of their frequency and dollar value, are inherently more risky than consumer transactions. The Guidance also notes the steep rise of online account takeovers and unauthorized online fund transfers related to business accounts in the last five years.
Recently, small- to medium-sized businesses have been primary targets as cyber criminals have recognized that the security controls they have in place are not as robust as that of larger businesses. Analysis indicates enhanced controls over administrative access and functions related to business accounts and layered security using multiple and independent controls would help to reduce these types of crime.
The FFIEC Guidance suggests enhanced controls for businesses:
- Business customers should be encouraged to perform a periodic risk assessment and an evaluation of the effectiveness of the controls they have in place to minimize the risks of online transaction processing.
- The password, website, computer and network tips above provide a starting point for this process and the web resource links provide additional detailed information.
- The FTC Business Center has a great deal of information for businesses at http://business.ftc.gov/privacy-and-security/data-security.
- Business customers should understand the security features of the software and websites they utilize and take advantage of these features. Segregation of duties--the process of separating duties so no one person can perform all steps of a transaction--is an example of a very important security feature.
- Layered security options that may be available to business customers doing online transactions include transaction thresholds, out-of-band verification (such as telephone or email verifications), fraud detection and monitoring systems, and IP reputation–based services. The Guidance encourages establishing layered security processes.