Skip to main content Go to Personal Online Banking Go to Business Online Banking

Security Tips

Resource Center

Protect Your Identity

Every 3 seconds, someone in the United States becomes a victim of identity fraud. Make sure you don’t become a statistic by following these steps:

  • Secure personal and financial records in locked storage or behind a password on your computer or mobile device — both at home or at work.
  • Monitor all financial accounts at least weekly.
  • Don’t use unsecured wi-fi at a coffee shop, library, airport, hotel, etc. to transmit personal or financial information.
  • When paying for a purchase online, look for “https” and not just “http” at the start of a merchant’s web address. Most browsers will also show a bright green box and/or padlock graphic in the address bar.
  • Don’t overshare on social sites. If you post too much information, an identity thief may find it, use it to answer “challenge” questions on your other accounts, and gain access to your money and personal information.
  • Review your three credit reports (Experian, Equifax, and TransUnion) at least once a year. Request a report from one every four months on a rotating basis.

Learn more about identity theft.

Online Banking Security

Whether you’re checking your bank accounts, transferring funds or making a payment, online banking is a convenient way to manage your basic transactions. More banks and credit unions are offering online banking options as a convenience to customers, and now it’s easier than ever to keep track of your finances.

However, online banking is not without its risks, so you’ll need to be cautious when storing usernames and passwords on your computer. Also make sure you’re really logging in to your financial institution’s encrypted site.

Here are some tips for safe online banking:

Monitor Your Accounts Regularly

Check your accounts regularly to make sure all transactions posted are ones you authorized. Report any fraudulent or suspicious activity to your bank. Get into the habit of monitoring your accounts every few days and always after you’ve done any type of online shopping. You will want to make sure your account was charged appropriately and that your account number isn’t being used for other purchases you didn’t make.

Avoid Clicking Through Emails

Your bank or financial institution may send you email alerts and updates, but you don’t have to click through the links to access your account. It’s usually much safer to log into the website manually to ensure you are entering a secure site.

Phishing emails redirect the recipient to a malicious website or fraudulent version of the bank’s website, and some are designed to collect your username, password and other personal information. Don’t be afraid to call your bank to verify whether they sent you an email or if they need to get in touch with you. Never respond to emails that ask to verify your identity by providing your username or password. Banks will never ask for this information via email — at most, you will need to supply the answer to a security question and will do this over the phone with a personal banker.

Change Your Passwords Regularly

Avoid using the same password across multiple sites and make sure you are choosing a strong password that is a mix of upper- and lower-case letters, numbers and special characters. Avoid using any words or phrases that contain your name, initials or birthdate. Also get into the habit of changing them every couple of months.

Some banks have an extra security step in place, for which you will need to verify your identity by identifying a pre-selected image or answering a security question. This extra layer of security can make the online banking process that much safer.

Access Your Accounts from a Secure Location

Avoid using unsecured wireless access points to jump online and log into your online accounts. You should access these accounts when you’re certain you have a secure connection. Unsecured wireless access points, such as those found at airports, coffee shops and hotels, are easy to intercept, and someone could easily collect the information you’re using to log in.

Protect Your Computer

Make sure you’re running anti-virus protection software and the firewall is turned on so you aren’t vulnerable to any type of virus that might be downloaded and installed from a malicious site. Take the time to review different programs and pay a little extra for a higher-quality one that will provide you with protection when you are banking online, shopping online or just opening emails.

Check for Encryption

You’ll want to check if you’re really logging in to your bank’s site by looking for a small lock icon somewhere on your browser. The URL should also begin with “https.” Both the icon and the URL indicate you are accessing your account over an encrypted connection.

Keep Your System Up-to-date

Whether you’re using a laptop or desktop computer to access the internet, make sure you’re downloading appropriate updates and keeping your system up-to-date. Run anti-virus scans regularly and authorize system updates as needed. Some of the leading Trojan horse viruses only work on outdated systems, so your computer may be more vulnerable to an attack unless you continually update it.

You can also run scans on a schedule to double-check for bugs.

Notify the Bank Immediately of any Suspicious Activity or Concerns

Make sure the bank has current contact information for you so we can get in touch with you with any questions or other matters that require your attention.

Learn more about online security.

Mobile Banking Security

Many consumers use mobile devices for financial services to save time when accessing accounts, help track spending and manage money. Using mobile devices is a lot like using a computer, and you should use similar best practices for security — especially since your mobile device can get lost or stolen.

Here are some tips for using your mobile device more safely and securely:

Set up Alerts and Check Your Balances

You can set up alerts by text message, email or even app notifications. Alerts can tell you when your checking account balance is low, when your balance exceeds a limit you set and when a charge over a specified amount is placed on your card.

Protect Your Personal Information

Don’t share your PIN or password with anyone and don’t save them on your mobile device. Think twice about accessing your accounts on a phone or device that you share with another person.

Use Passwords

Password protecting your mobile device can help prevent access to your information in the device. Don’t use easily identifiable passwords, like your birthday, and never save passwords on your phone.

Report Loss or Theft to Your Financial Institutions/Services Providers as Soon as it Occurs

If you lose your mobile device, you may be focused on notifying the mobile provider, but don’t forget to report loss or theft to your financial providers if your device can provide access to your accounts through apps.

Use Secure Websites or Apps

This sounds obvious, but don’t log into your accounts through links that are sent to you by an email address or on a website or app that you don’t recognize. When using free or public wi-fi, try to use a private network and go to a secure site that begins with “https.”

Remove Sensitive Information from Your Old Phone or Device

If you get a new phone or mobile device, be sure to delete your data and information from the old phone. You may have left names of banks or credit unions, passwords or other clues that could help identify your personal information.

Learn more about mobile security.

These tips are provided for informational purposes only and are not intended to provide legal advice. This guidance is an exhaustive list of actions, and security threats change constantly.

Some content requires Adobe Acrobat Reader to view.