Security Bank of California Internet Banking Security Awareness



Similar documents
Best Practices Guide to Electronic Banking

Payment Fraud and Risk Management

ONLINE BANKING SECURITY TIPS FOR OUR BUSINESS CLIENTS

Business Internet Banking / Cash Management Fraud Prevention Best Practices

Business ebanking Fraud Prevention Best Practices

Learn to protect yourself from Identity Theft. First National Bank can help.

Online Cash Manager Security Guide

Remote Deposit Quick Start Guide

Fraud Detection and Prevention. Timothy P. Minahan Vice President Government Banking TD Bank

Malware & Botnets. Botnets

1. Any requesting personal information, or asking you to verify an account, is usually a scam... even if it looks authentic.

Retail/Consumer Client. Internet Banking Awareness and Education Program

Online Banking Risks efraud: Hands off my Account!

Cybersecurity Best Practices

Corporate Account Take Over (CATO) Guide

Corporate Account Takeover & Information Security Awareness. Customer Training

Information Security Awareness

Don t Fall Victim to Cybercrime:

PROTECT YOUR COMPUTER AND YOUR PRIVACY!

Information Security. Be Aware, Secure, and Vigilant. Be vigilant about information security and enjoy using the internet

Presented by: Mike Morris and Jim Rumph

Securing Your Business s Bank Account

The information contained in this session may contain privileged and confidential information. This presentation is for information purposes only.

White paper. Phishing, Vishing and Smishing: Old Threats Present New Risks

Enhanced Security for Online Banking

Contact details For contacting ENISA or for general enquiries on information security awareness matters, please use the following details:

Protecting Yourself from Identity Theft

IT TRENDS AND FUTURE CONSIDERATIONS. Paul Rainbow CPA, CISA, CIA, CISSP, CTGA

What are the common online dangers?

Electronic Fraud Awareness Advisory

OKPAY guides. Security Guide

Frequently Asked Questions (FAQ)

FSOEP Web Banking & Fraud: Corporate Treasury Attacks

Fraud Prevention Tips

Business Online Banking Client Setup Form

Advice about online security

Online Banking Customer Awareness and Education Program

NATIONAL CYBER SECURITY AWARENESS MONTH

How To Protect Yourself Online

Protecting your business from fraud

WEB ATTACKS AND COUNTERMEASURES

Your security is our priority

How to stay safe online

TRAINING FOR AMERICAN MOMENTUM BANK CLIENTS. Corporate Account Takeover & Information Security Awareness

Information Security. Louis Morgan, CISSP Information Security Officer

IT Security Risks & Trends

Top 10 Anti-fraud Tips: The Cybersecurity Breach Aftermath

Enterprise Cybersecurity Best Practices Part Number MAN Revision 006

Secure and Safe Computing Primer Examples of Desktop and Laptop standards and guidelines

Deutsche Bank db easynet. Secure method of use of the db easynet e-banking system

Information Security

Internet threats: steps to security for your small business

How To Protect Your Online Banking From Fraud

Recognizing Spam. IT Computer Technical Support Newsletter

Keystroke Encryption Technology Explained

Analytics, Big Data, & Threat Intelligence: How Security is Transforming

Tips for Banking Online Safely

電 子 銀 行 風 險 - 認 證 與 核 實. Fraud Risk Management The Past and the Future 欺 詐 風 險 管 理 - 過 去 與 未 來

Kaspersky Fraud Prevention: a Comprehensive Protection Solution for Online and Mobile Banking

How do I contact someone if my question is not answered in this FAQ?

Bad Ads Trend Alert: Shining a Light on Tech Support Advertising Scams. May TrustInAds.org. Keeping people safe from bad online ads

Preventing Corporate Account Takeover Fraud

Cyber Security: An Introduction

RFG Secure FTP. Web Interface

Quick Start Guide to Logging in to Online Banking

FRAUD ALERT THESE SCAMS CAN COST YOU MONEY

Protect Yourself. Who is asking? What information are they asking for? Why do they need it?

Internet Security. For Home Users

Welcome to the Protecting Your Identity. Training Module

ecommercial SAT ecommercial Security Awareness Training Version 3.0

10 Things Every Web Application Firewall Should Provide Share this ebook

Cyber Security Survival Guide

Trusteer Rapport. User Guide. Version April 2014

Security Guidelines and Best Practices for Retail Online and Business Online

The Cost of Phishing. Understanding the True Cost Dynamics Behind Phishing Attacks A CYVEILLANCE WHITE PAPER MAY 2015

THE SECURITY OF HOSTED EXCHANGE FOR SMBs

Fraud Trends. HSBCnet Online Security Controls PUBLIC

Contents Security Centre

Cybersecurity: A Growing Concern for All Businesses. RLI Design Professionals Design Professionals Learning Event DPLE 160 October 7, 2015

MODERN THREATS DRIVE DEMAND FOR NEW GENERATION MULTI-FACTOR AUTHENTICATION

Countermeasures against Spyware

BE SAFE ONLINE: Lesson Plan

Transcription:

Security Bank of California Internet Banking Security Awareness

INTRODUCTION Fraudsters are using increasingly sophisticated and malicious techniques to thwart existing authentication controls and gain control of client accounts to transfer money. Many schemes target small to medium sized business clients since their account balances are generally higher than consumer accounts, and transaction activity is greater, making it easier to hide fraudulent transfers. Security Bank of California is committed to helping you be aware of these risks and liabilities, some risk mitigation techniques, and response strategies should online fraud be encountered.

Some Online Risks A. Malware Malicious Software 1. Viruses 2. Keystroke loggers Zeus Trojan B. Phishing (SpearPhishing, SMiShing, Vishing, etc.) C. Browser Attacks 1. Drive by b download d 2. Man in the middle D. All computers are susceptible. Microsoft Windows based machines are primary targets, due to their prevalence, but attacks on Apple, Android, and other operating systems are increasing as they become increasingly popular user options.

Liabilities You are responsible for your computer(s) and Internet access facilities. Business client liabilities are established by contract, Security Bank of California s Commercial Cash Management Enrollment Form and Agreement. Consumer regulatory lt protections, ti such as Regulation E, do not apply to businesses, not even to sole proprietors/practitioners.

Security Options A. End user Precautions (YOU) 1. Use a Secure Computer a. Keep Operating System (OS) and browser software current b. Watch for and Update Patches for security (application i software as well as OS and browser) c. Maintain anti malware suite w/current pattern files (Trend Micro, Symantec/Norton, McAfee, Kaspersky) d. Preferably isolated to online banking ONLY NO SURFING! e. Never use a public computer (hotel, café) for business banking f. Be very careful when using unknown wireless networks, even with your own mobile device. Be sure to use SSL connections (https) and maintain anti malware and firewall on your device. Consider Virtual Private Network (VPN) for secure communications when possible g. Use a firewall (OS supplied at a minimum; router preferred)

Security Options (Cont.) 2. If you have more than one online banking account, use a separate login name and password for each so the breach of one does not compromise all. Consider a complex/obscure Login ID to make guessing more difficult. 3. Use strong passwords a. At least eight characters, no more than 15, including: i. At least one upper and one and lower case letter ii. At least one number iii. Required to change every 90 days b. No words from dictionary c. No personal information, like license plate number, birthdate, anniversary, children s names, etc. Much of this can be found on Social Media sites. d. It may help to think of a sentence that will be easy to remember, and use the first letter of each word, including some punctuation (acronym). For example: It s a really nice day June 27! could become IarndJ27!, and that could be a fairly secure password.

Security Options (Cont.) 4. Set realistic ACH transaction limits, number/amount, daily/monthly 5. Restrict user access to their necessary functions, and require individual Login Name and Password (no sharing of credentials). 6. Never click on a link in any warning e mail purportedly from any bank (or any other source ACH, Fed, IRS ). Call instead to ensure it is legitimate. 7. If your computer is acting sluggish and/or you re getting lots of unexplained li pop up messages, do not use for online banking until you get it checked out by a computer security specialist. These may be signs of malware running on your computer. 8. Never respond to e mails requesting gpersonal information. No reputable business will ask for confidential information this way. 9. Security Bank of California will never initiate contact with you via e mail, telephone, or otherwise to ask for any confidential information.

Security Options (Cont.) B. Security Bank of California incorporates a robust set of features to support and facilitate security. 1. Secure Access Look for https:// and Padlock 2. Anti Phishing Phrase 3. Login ID/Password (Complex/strong recommended) 4. Computer Registration (per use or future use option) 5. Security Alerts such as: Login name change, password change, invalid password, profile update, new user, and more. 6. Limit i number and amount of transactions, per day and per month 7. Dual Authorization 8. Risk and Fraud Analytics Behavioral Modeling Software

Risk Mitigation Some other thoughts to reduce your risks: Check accounts frequently at least daily Determine Company risk tolerance/aversion vs. convenience and implement recommendations and Security Bank of California security features accordingly Educate others with ih access to company computing resources regarding risks and your policies/procedures Establish response plan if security/fraud event is detected Consider insurance to cover any losses contact your insurance agent

Contacts In the event of suspected online banking security issues or fraud, reach out ASAP to: (888) 459 BANK (2265) or (877) 461 SBOC (7262) E mail online@securitybankca.com

Risks Are Evolving Summary Basic techniques have been around quite a while, but sophistication is increasing and targeting is becoming much more focused New attacks as yet unknown Defenses Must Also Evolve There is no magic bullet. Security must be ongoing, and defense in layers There must be ongoing development of security features and options Awareness Is Vital Understand risks and liabilities, and options to mitigate Educate all your authorized users Take Action Increased implementation of security features by end users is essential Increased implementation of security features by end users is essential Work with your IT staff or outside specialists, as needed, to assess and remediate risks in your environment Work with Security Bank of California to implement security features to suit your risk tolerance Plan an event response so you may react quickly to any threats or attacks

A Few Resources http://www.ic3.gov/media/2010/corporateaccounttakeover.pdf Fraud Advisory for Businesses Corporate Account Takeover http://www.fcc.gov/cyberforsmallbiz http://www.microsoft.com/atwork/remotely/hotspots.aspx http://ask leo.com/how_do_i_stay_safe_in_an_internet_cafe.html http://www.ic3.gov http://www.antiphishing.org http://www.neach.org/uploads/resources/doc/rm_alert_keylogging.pdf http://www.onguardonline.gov/topics/overview.aspx /t i / i

Disclaimer This presentation is for training purposes only, and is intended d solely ll for the information i of our online banking clients. These materials have no effect on existing contracts or Bank policies and neither amend nor modify them, nor do they serve, and should not be construed, as legal advice.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information