Tips to Protect Yourself And Your Loved Ones

There are many proactive things you can do to help protect your financial accounts and to help prevent fraud or identity theft.  Below are a few security tips to follow whenever you are online ... and even when you are off.

	Stupid Password Tricks
	Online Shopping
	Online Banking
	Browsing the Web
	Email
	Credit Card Security
	ATM Security

Stupid Password Tricks

The web offers a very convenient means to access your financial accounts, your credit and debit cards, and to communicate with banking institutions. Here are a few simple tips to make your transactions safe and to help ensure a secure online experience:

STRONG PASSWORDS are always recommended.  Strong passwords are composed of eight or more alphanumeric characters in length, and must contain upper and lower case alphabetical characters, as well as numerical or other special characters.  Add a "bang" (exclamation point) or dollar sign ($) here and there if you wish to get fancy.  This has been known to release your inner geek.

Here is a moderately clever protocol or pattern that Scott Secor created for his customers twenty years ago -- and it is every bit as useful today.  Begin with a number of four or more digits, such as a street address or important date or year that will be easy to remember.  But don't stop there.  That would be a snap for a criminal to guess.  Add four or more alphabetical characters, being careful to alternate between upper and lower case to add "strength".

Here are three examples each containing four alpha characters and four numeric characters, plus a bang or three:

!1234!NaMe
5678cOdE
WorD!4321

You may also change the numerical value to include the current month (e.g., 071234 for July ... followed by your easily remembered number.  This will help you remember your "new" password if you need to change them often.  Feel free to increase the length of your passwords by another four or more characters.

You may then tie a new set of alpha characters to each system or website for which you need a unique password (e.g., gOoGlE for Google).  You can also formulate other easy-to-remember patterns from your base password pattern.  This simple formula is intended to frustrate even the most clever of crooks, and it is limited only by your imagination.

Here are three ten-digit examples, using a base of !1234! in the pattern:

Yahoo               !1234!yAhO
Google              !1234!gOoG
XYZ Company   !1234!xYzC

Do you see how easy it might be to remember many different passwords using your password "pattern"?  We have customers who claim to have memorized hundreds of different passwords using this simple concept.  In the above pattern you will notice that each password begins with a "bang" followed by a four-digit number (in this case 1234), followed by another "bang", then completed with a unique sequence of upper and lower case characters that simply mimic the name of the account to be accessed.

Let your mind wander to establish the basic pattern that you intend to use, then stick with it ... forever.

Online Shopping

	When placing orders online, check for the "closed padlock" security icon located in the lower margin of your browser. The padlock icon () indicates that your information will be sent securely. Do not stop there!  Verify the validity of the "secure" website by double-clicking the padlock icon.  A window will open containing information about the website. This information must match the website you are supposed to be visiting.  If not, shop elsewhere.
	Verified by Visa® is a free service that protects your your personal or business bank credit card or debit card from unauthorized use when you shop online.  This further protects you against the possibility of financial loss.  When you register for this free service, you will receive a unique password that you may use at the checkout when shopping from the Internet.  You can learn more about Verified by Visa® by clicking this link.
	ALWAYS shop online with stores that you know and trust.  Use search engines to investigate merchant's histories or prior complaints, if you are the least bit uncertain.

Online Banking

	ALWAYS remain at your computer once you have signed on. Never leave your computer unattended when online with your bank or investment service.
	ALWAYS log out when your transactions are complete.  It is important to sign off once you are finished banking online. This is critical whenever you use a computer to which other people may have access.
	ALWAYS use only secure sites. Whenever you are providing financial information, you make make certain that the site is secure.  One of the methods to determine a secure site is to look for the "padlock" icon located in the lower margin of your browser.  If you double click on the icon, a pop-up will appear with information about the Web site. The information provided must match the website you are visiting, otherwise head for the exits!
	TRUST is very important.  Do business only with financial institutions that you know and in which you have complete trust.
	NEVER let your guard down!  Watch for copycat websites that attempt to mimic those of legitimate financial institutions or trusted merchants with whom you routinely do business. To verify that you are visiting a legitimate site, type the business' address directly into your browser or use a bookmark that you know for certain is correct.
	NEVER use public computers, such as those in a library, with extreme caution, and never use them to access your personal financial information.  Internet kiosks and cyber cafes are nowhere near as secure as your personal computer with suitable anti-virus and anti-spyware software installed and frequently updated.

Browsing the Web

	UPDATE your anti-virus and anti-spyware software often.  Keeping anti-virus and anti-spyware applications current will avoid serious security breaches.
	UPDATE your browser and your operating system often. Newer releases of Internet browsers and operating systems will contain the latest security measures.  This will help protect your computer against intrusion by spyware and viruses.
	ALWAYS review website security and privacy policies. Before entering any manner of personal or financial information, review the security and privacy policies posted on the site. These policies will describe how the website collects and uses your information.  If the site has no posted policies, surf elsewhere!  By knowing more about the policies of a site, you can decide whether you wish to continue visiting the website.
	Exercise extreme caution when downloading.  Some downloads from the Internet may harm your computer or compromise your security -- or both!  Never download files from websites you do not recognize or trust implicitly.
	ALWAYS delete personal or financial information on public computers.  If you must use a public computer, clear the cache and delete the contents of temporary folders .  If you do not, subsequent users may be able to access your personal information or trace your Internet usage.  Better yet, NEVER use any public computer system!

Various delinquent and cyber-criminals may install "key-logging" programs that track your use by logging the keystrokes as you enter them.  Once a key-logging program is installed on your computer, you could unwittingly reveal sensitive information such as your passwords and account information.  These date would then be forwarded electronically to the scammer.  Anti-spyware tools that are kept current will reduce or eliminate this potential threat.

Please check our Internet Security white paper for a variety of useful security software tools.  Alternately, you can purchase various anti-virus and anti-spyware tools at retail stores that routinely sell computer software.

Email & Messaging

	Use caution when opening ANY unsolicited emails and attachments. Viruses, worms, and Trojan horses can be passed along via email, harming your computer and threatening your security.  In fact, you should exercise caution when opening ANY email attachments, even those from people or companies you know.
	Do not "click-and-tell"! NEVER respond to unsolicited emails asking you to update or verify your password, or personal and account information. No bank, merchant, auction service, broker, etc. ever needs to "verify" your personal information -- these emails are phishing scams!  Your bank, etc. would NEVER send unsolicited emails asking for personal information, Social Security Numbers, debit or credit card numbers, passwords, PINs, or other confidential information.
	Use secure messaging whenever it is available. Most online banking applications -- including your personal bank's online banking -- have secure messaging.  You may access secure email whenever you log into most online banking sites. You may securely communicate with your bank through their secure contact forms.  Secure emails and online forms ensure that your personal information is transmitted safely over the Internet.  But ALWAYS validate the address in your browser before divulging confidential information.

Please check our Internet Security and Identity Theft white papers for a variety of useful email configuration tips.  Plain text messages are far more secure than HTML messages.  Alternately, you can purchase various anti-virus and anti-spyware tools at retail stores that routinely sell computer software.

Credit Card Security

Credit card fraud costs cardholders and banks billions of dollars. Credit card fraud often occurs after the card has been stolen.  However, thieves can also fraudulently use your account number while your card sits safely in your possession. These few tips will help you minimize the chances of credit card fraud:

	SIGN YOUR CARDS immediately once they arrive in the mail.  You might also wish to print "picture ID required" below your signature for added security.
	MEMORIZE YOUR PIN. Never write it down!
	Use your credit card number carefully. Do not enter your card number online unless you are on a secure site, and never send your credit card number to anyone via unsecured email.
	Maintain your records. Keep a record of all your account numbers, expiration dates, and contact information for each issuer in a secure place. This will come in handy if your wallet or purse is lost or stolen.
	Report a lost or stolen card immediately. If you act quickly, you will minimize the potential loss and liability to your accounts.
	Save and match receipts. Save your receipts and compare them against your billing statements. When discarding receipts, tear them up or shred them so no one can access them in your trash.
	Monitor your statements monthly. Make sure you recognize all charges on your financial statements. If you see any suspicious transactions, contact your bank or credit card issuer immediately.
	Watch voided transactions. Keep a close watch on store credits and other cancelled transactions. Carefully review your receipts and statements and make sure voided transactions do not post to your account.
	Destroy duplicates. Do not leave carbon copies of their receipts behind. Make sure you tear or shred the receipts when you discard them as they contain important information about your identity and accounts.
	Carry only what is necessary. Only carry credit cards that you need, leaving others in a safe place at home.
	Transact with only those you trust. Do not give out your account number unless you know and trust the company.

ATM Security

Here are a few precautions to exercise whenever using an ATM:

	Prepare yourself ahead of time. Fill out your deposit slip before you reach the ATM.
	Do not use the ATM if you notice any suspicious activity.  Be aware of your surroundings at all times!  If you notice suspicious activity, continue to another ATM or return at a later time.  Report any suspicious activity to the police as soon as you witness it.
	Avoid going to the ATM alone, especially at night.  If you need to access your accounts after dark, make certain that the ATM and surrounding area are well-lit.
	When using a drive-up ATM, keep your doors locked, keep all windows rolled up, and keep your vehicle running.  Never make yourself an easy target.  Do not count your money at the ATM.  Wait until you have returned to the safety of your vehicle or your home.

In closing, I want you to think about this for a moment.  A friend of mine recently mentioned that he received a "refund check" from a company with whom he had never done business (or even heard of), in the amount of nine cents.  He asked me whether he should cash the check.  I asked him not to.

What better way for an enterprising crook to steal someone's entire bank balance than using a signed check and some creative forgery?  The endorsed check prominently features an autograph of the intended victim, along with the requisite bank account number and ABA routing information.  What more can a black-hearted scoundrel ask?

My friend certainly would not have been the first victim to take a big fall ... for a fleeting windfall of mere pennies.