ACCOUNT HOLDER UPDATES - 03-03-2017
Online Imposters Break Hearts and Bank Accounts
To stay safe online, be careful what you post, because scammers can use that information against you. Always use reputable websites, but assume that con artists are trolling even the most reputable dating and social media sites.
From “FBI” (2/13/2017)
Simple Gmail Spoofing Leaves Users Open To Targeted Attacks
Gmail shows no warning as it delivers legitimate-looking spoofed emails seemingly coming from an existing Gmail.com address, even though they come from a non-Gmail server. This fact can be misused by attackers who want to trick their targets into clicking on a malicious link or download a malicious attachment, as the likelihood of them doing so rises considerably if the spoofed email seems to have been sent from a known sender.
From “Help Net Security” Zeljka Zorz (2/09/2017)
Tax Identity Theft Awareness Week
US-CERT encourages taxpayers, business owners, and tax preparers to educate themselves on tax identity theft by reading Internal Revenue Service (IRS) publication Taxes.Security.Together. and the US-CERT Tip on Identity Theft.
From “US-CERT” (1/31/2017)
For information regarding The Heartbleed Bug, click here.
Asheville Savings Bank is dedicated to maintaining the highest level of online security. However, your financial information may still be at risk if your personal or professional computer is compromised by a virus or malware, sharing of User ID and/or passwords, use of public computers or sending sensitive information through email.
Install antivirus and firewall software on all computers
Install anti-virus and spyware detection software on all computer systems. Free software may not provide protection against the latest threats compared with an industry standard product.
Run a full antivirus scan on a weekly basis
Update all of your computers regularly with the latest versions and patches of both anti-virus and anti-spyware software.
Regularly install operating system and software updates
Ensure computers are patched regularly, particularly operating system and key application with security patches.
Take note of any strange or unusual behavior
If you notice that your computer is running slower than usual or if you start seeing strange pop-ups, this may be an indication of a potential problem. In addition, review account balances and detail transactions regularly (preferably daily) to confirm payment and other transaction data. Immediately report any suspicious transactions to Asheville Savings Bank by calling us at 1-800-222-3230.
Establish a dedicated computer for sensitive transactions
Dedicate and limit the number of computers used to complete online banking transactions; do not allow Internet browsing or email exchange and ensure these computers are equipped with the latest versions and patches of both anti-virus and anti-spyware software.
Monitor and reconcile your accounts daily
Reconcile by carefully monitoring account activity and reviewing all transactions initiated on a daily basis.
Avoid accessing your bank accounts at Internet cafes or from public Wi-Fi hotspots
Public Internet connections that you find in airports, hotels, coffee shops and Internet cafes typically do not have the level of security necessary to protect your sensitive financial information.
Notify Asheville Savings Bank if you receive a request to provide non-public data
Finally, if you are using Personal Online Banking or Business Online Banking and encounter different functionality, wording, pictures or text than what you are used to - or if you are being prompted for information that you do not normally have to provide - contact Asheville Savings Bank immediately. This may be an indication that your computer has been infected by a virus or malware. If you have concerns that your computer is compromised in any way, stop using it for sensitive transactions until you can have it safely cleaned.
For Personal Online Banking Support, call 1.866.818.7024. Customer Support is available 24 hours a day 7 days a week except Bank holidays.
For Business Online Banking Support, call 1.828.250.8401. Customer Support is available during regular banking hours.
Your User ID and Password
Always keep your user ID and password confidential and never share them. They are designed to protect you by confirming your identity to our computer network systems.
- Do not write down your password.
- Create a “strong” password with at least 8 characters that includes a combination of mixed case letters, numbers, and special characters.
- Change your password frequently.
- Never share username and password information with anyone including third-party providers.
- Avoid using an automatic login feature that saves usernames and passwords.
- Change your password immediately if it becomes known or you suspect it has been stolen.
- Never give your password to anyone over the phone.
Virus & Spyware Protection
Install, keep updated and use both virus and spyware protection software on your computer.
- There are programs designed to safeguard you from malicious viruses and spyware (software designed to intercept information or take partial control of your computer's operation without your consent). Keep both your anti-virus and anti-spyware programs updated as threats constantly change. Consider purchasing anti-virus software that automatically scans for virus updates whenever you go online.
- Install anti-virus and spyware detection software on all computer systems. Free software may not provide protection against the latest threats compared with an industry standard product.
- Update all of your computers regularly with the latest versions and patches of both anti-virus and anti-spyware software.
- Ensure computers are patched regularly, particularly operating system and key application with security patches.
- Install a dedicated, actively managed firewall, especially if using a broadband or dedicated connection to the Internet, such as DSL or cable. A firewall limits the potential for unauthorized access to your network and computers.
- When making Internet transactions, make sure the site is using a secure server to encrypt the transaction and that you are using a secure browser. The URL of a secure page should begin with “https” instead of “http.” Learn how your browser helps you identify secure sites.
Email sent over the Internet is not protected. It can be intercepted and seen by others and used to send damaging software that can infect your computer.
- When you've finished browsing the Web, disconnect from the Internet to avoid unwanted access to information on your computer. In addition, when you have completed a financial transaction, ensure you log off to close the connection with Asheville Savings Bank’s computer system.
- Never send confidential information (your password, credit card number, secret word, PIN, Social Security number, etc.) in an Internet e-mail.
- Never send an Internet e-mail reply to a solicitation for personal information. Asheville Savings bank will not ask you to send confidential or private information over the Internet via e-mail.
- Asheville Savings Bank Online Banking customers may use secure messaging within Online Banking to ask account questions.
- Do not open email from unknown sources. Be suspicious of e-mails purporting to be from a financial institution, government department, or other agency requesting account information, account verification, or banking access credentials such as usernames, passwords, PIN codes, and similar information. Opening file attachments or clicking on web links in suspicious emails could expose your system to malicious code that could hijack your computer.
- Never respond to a suspicious email or click on any hyperlink embedded in a suspicious email. Call the purported source if you are unsure who sent an email.
- If an email claiming to be from Asheville Savings Bank or another financial institution seems suspicious, checking with your financial institution may be appropriate.