Consumer and Mobile eBanking Fraud
User ID and Password Guidelines
- Create a "strong" password with at least 8 characters that includes a combination of mixed case letters, numbers and special characters.
- Change your password frequently
- Never share username and password information with third-party providers.
- Avoid using an automatic login feature that saves usernames and passwords.
- Do not use the same password for different account accesses.
- Do not use public or other unsecured computers for logging into Peoples Online Banking.
- Review account balances and detail transactions regularly (preferably daily) to confirm payment and other transaction data and immediately report any suspicious transactions to your financial institution.
- Whenever possible, use Bill Pay instead of checks to limit account number dissemination exposure and to obtain better electronic record keeping.
- Take advantage of and regularly view system alerts; examples include:
- Balance alerts
- Transfer alerts
- Password change alerts
- Do not use account numbers, your social security number, or other account or personal information when creating account nicknames or other titles.
- Never leave a computer unattended while using Peoples Online Banking.
- An FBI recommended best practice is to suggest that users dedicate a PC solely for financial transactions (e.g., no web browsing, emails, or social media).
Tips to Avoid Phishing, Spyware and Malware
- Do not open e-mail or texts from unknown sources. Be suspicious of e-mails or texts purporting to be from a financial institution, government department, or other agency requesting account information, account verification, or banking access credentials such as usernames, passwords, PIN codes, and similar information. Opening file attachments or clicking on web links in suspicious e-mails or texts could expose your system to malicious code that could hijack your computer or mobile device.
- Install anti-virus and spyware detection software on all computer systems and mobile devices.
- Update all of your computers and mobile devices regularly with the latest versions and patches of both anti-virus and anti-spyware software.
- Install a dedicated, actively managed firewall, especially if using a broadband or dedicated connection to the Internet, such as DSL or cable.
- Bookmark the Financial Institutions website and only use this bookmark to access the site to avoid phishing.
Tips for Wireless Network Management
- If your device offers encryption, secure your wireless network by enabling encryption. Purchase a device that supports the latest encryption standards.
- Change the wireless network hardware (router/access point) administrative password from the factory default to a complex password.
- If only known computers will access the wireless network, consider enabling MAC filtering on the network hardware. Every computer network card is assigned a unique MAC address. MAC filtering will only allow computers with permitted MAC addresses access to the wireless network.
- Avoid using unsecured, public Wi-Fi networks to access financial accounts.
- Add the Financial Institutions short code and customer service phone number to your contacts and only initiate SMS and phone calls from your contact list. Do not reply to SMS messages that do not exist in your contact list.
- Only download apps from stores, such as Apple and Android, which are submitted and branded by the Financial Institution.
- Know that the Financial Institution will not ask users to provide confidential information over an email or SMS message.
- Password protect your smartphone and always lock your phone when it's not in use.
- Clear data from your smartphone frequently. Delete text messages from Financial Institution, especially before sharing, discarding, or selling your phone.