At Jonah Bank we take great pride and effort in securing your personal information, and we beleive that Online Security is Everybody's Responsibility. As such, we would like to be your partner in security. Armed with the right information and a little bit of effort you will be more secure, and your online banking and shopping experiences more rewarding and safe.
We are providing you with information to help you get started in securing your computer, practicing safe computer habits and using the security built into our online and mobile banking systems. Should you have any questions please contact one of our customer support staff .
Quick Reference Cyber Security Tips:
- Online Banking Security
- Defend against Coporate Account Takeover (CATO)
- FDIC Consumer Cyber Tips
- FDIC Business Cyber Tips
- Cyber Security and Your Small Business
- New: Current Scams as reported by Wyoming residents: Cyber Wyoming's Hacker's Brief
- New: Are you looking for a fun and engaging way to talk about security with your family, friends or colleagues? Then check out Google's "Be Internet Awesome" resources at: Be Internet Awesome - Families
Securing your devices
Do The Basics
- Keep your computers and mobile devices up to date - Having the latest security software, web browser, and operating system are the best defenses against viruses, malware, and other online threats. Turn on automatic updates so you receive the newest fixes as they become available.
- Run Antivirus and Antimalware software (yes even on Mac's). Become familiar with what your Antivirus software looks like to avoid falling for fake antivirus pop-up messages.
- Install a firewall - Firewalls come as part of most modern routers and computers and are there to block badness at the edge of your network. Make sure you have one and that it is configured appropriately.
- Set strong passwords - A strong password is at least eight characters in length and includes a mix of upper and lowercase letters, numbers, and special characters. Consider a Password Manager to make remembering all your passwords a snap.
- Multi-Factor Authentication - Better than relying on just a password setup MFA everywhere you can to protect your accounts.
- Don't Just Plug it in - for all devices on your network (Routers, Wireless Access Points, and IoT devices) change the default passwords so that no one else can use your network , and to keep it secure.
- Secure your internet connection - Always protect your home or business wireless network with a password. When connecting to public Wi-Fi networks, be cautious about what information you are sending over it or use a VPN.
- Administrators are not users - A lot of the bad stuff out there cannot run if you are not an administrator. Consider creating standard user accounts on your computer, and only using the administrator account when necessary.
- Document and approve - It's hard to secure devices that you don't know you have or that someone else plugged in. Implement a process for approving and documenting your network connected devices.
- Back it up - whether it is personal pictures, or company financials, make sure you have a good back process to protect you when things go wrong.
Mobile Devices
Your mobile device provides convenient access to your email, bank and social media accounts. Unfortunately, it can provide the same convenient access for criminals. Jonah Bank recommends following these tips to keep your information, and your finances, safe.
- Keep it up to date - Download updates for your phone and mobile apps when they become available.
- Use the passcode lock - This will make it more difficult for thieves to access your information if your device is lost or stolen.
- Log out completely when you finish a mobile banking session.
- Protect your phone from viruses and malicious software, or malware, just like you do for your computer by installing mobile security software.
- Practice App safety - Use caution when downloading apps. Apps can contain malicious software, worms, and viruses. Beware of apps that ask for unnecessary “permissions” and always download from the legitimate app stores.
- Store sensibly - Avoid storing sensitive information like passwords or a social security number on your mobile device – passwords in contacts are not secret
- Be aware of shoulder surfers - The most basic form of information theft is observation. Be aware of your surroundings especially when you’re punching in sensitive information.
- Wipe your device - before you donate, sell or trade it using specialized software or using the manufacturer’s recommended technique. Some software allows you to wipe your device remotely if it is lost or stolen.
- Beware of mobile phishing - Avoid opening links and attachments in emails and texts, especially from senders you don’t know. And be wary of ads (not from your security provider) claiming that your device is infected.
- 2 Wi-Fi or not 2 Wi-Fi - Public connections aren't very secure, and can pretend to be something they are not, so don’t perform banking transactions on a public network. If you need to access your account, try disabling the Wi-Fi and switching to your mobile network.
Safe Browsing Habits
Safe Browsing Habits
- Stop-Think-Connect – when reading emails, instant messages, surfing the web or using social networking platforms, take the stop-think-connect approach before clicking on any links or providing any information.
- Watch out for phishing scams - Phishing scams use fraudulent emails and websites to trick users into disclosing private account or login information. Do not click on links or open any attachments or pop-up screens from sources you are not familiar with. How to Spot a Phish poster .
- Don’t be an oversharer - Keep personal information personal. Hackers can use social media profiles to figure out your passwords and answer those security questions in the password reset tools. Lock down your privacy settings and avoid posting things like birthdays, addresses, mother’s maiden name, etc. Be wary of requests to connect from people you do not know.
- Shop safely - Before shopping online, make sure the website uses secure technology. When you are at the checkout screen, verify that the web address begins with https. Also, check to see if a tiny locked padlock symbol appears on the page.
- The fine print matters - Read the site’s privacy policies. Though long and complex, privacy policies tell you how the site protects the personal information it collects. If you don’t see or understand a site’s privacy policy, consider doing business elsewhere.
Security Tips
We get it, online security can be complex, especially since we have a lot of devices connected to the internet, from computers to tablets, cell phones, and Internet of Things (IoT) devices. Below you will find some resources to help you get started with securing your online presence from stopthinkconnect.org.
- Tips for Passwords
- Creating strong passphrases - from SANS
- Use a Password Manager (no link)
- Basic Tips
- Tips for Travelling
- Tips for Public Computers
- Tips for Mobile Devices
- Tips for Safe Shopping
- What is Social Engineering? from KnowBe4
- Ransomware
- BotNets
Tips for Business
In today's constantly connected world it is important to remember that security is one facet of every business. As a community bank, Jonah Bank encourages all businesses to become champions of security and privacy. To help you get started here are some resources
Resources for Kids and Teens
If you have ever watched a child try to select an item on a non-touch enabled elecctronic device you quickly become aware of how adept children are with technology today. We beleive that educating kids and teens about safe online practices is vital to protecting them from the threats they are exposed to while using technology.
- Kids Cyber Activity Coloring book from the Security Awareness Company
- Kids Cyber Activity Coloring book 2 from the Security Awareness Company
- Privacy Savvy Kids from Stop-Think-Connect
- Gaming Tips for parents from Stop-Think-Connect
- Gaming Tips for kids from Stop-Think-Connect
- Being a good digital citizen from Stop-Think-Connect
- Privacy Tips for teens from Stop-Think-Connect
- Talking tech with kids from Stop-Think-Connect
- SANS Cyber start US
- FBI Kids
- Cyber Hero Comics
- NS Teens
- Net Smart Kids
- Garfield - I am Cyber Safe
Tips for Seniors
Scams and identity theft targeted at seniors is one of the fastest growing categories of cybercrime. Seniors present an ideal target for fraudsters as they are more trusting, have less experience with technology (and all that can be done online today), may live alone or be isolated, have a fixed income, and are not frequently checking accounts or credit scores because they are not actively opening accounts or taking out lines of credit. As with kids and teens, we need to discuss online dangers and scams with seniors, and help them understand the threat landscape with all the capabilities that are present in today's online world.
- AARP Scams and Identity Theft
- How to protect seniors from identity theft - Experian
- Tips for older adults - Stop-Think-Connect
- Safety guide for seniors
- Older American Resources - Dept. of Homeland Security
- 7 Security Awareness Tips for Seniors - Infosec Institute
Identity Theft Resources
Preventing Identity Theft
- Don’t share your secrets - Don’t provide your Social Security number or account information to anyone who contacts you online or over the phone. Protect your PINs and passwords and do not share them with anyone. Do not reveal sensitive or personal information on social networking sites.
- Shred it – shred sensitive papers including receipts, banks statements, and unused credit card offers before throwing them away. In this regard consider ditching paper statements and elect to receive them electronically.
- Keep an eye out for missing mail - Fraudsters look for monthly bank or credit card statements or other mail containing your financial information. Consider enrolling in online banking to reduce the likelihood of paper statements being stolen.
- Become the oracle – Use online banking to monitor your financial accounts, and set up alerts to tip you off to account activity.
- Monitor your credit report - by ordering a free copy of your credit report every four months from one of the three credit reporting agencies at www.annualcreditreport.com .
- Create a free Credit Freeze – This is one of the best things you can do to protect your identity, make sure to also freeze minor’s and senior’s credit (the two most stolen according to the FBI). Link to FTC Credit Freeze FAQs
- FTC Child Identity Theft
If your identity has been stolen
Contact Jonah Bank immediately to report any fraudulent activity you’ve seen on your account or to close any impacted accounts.
Contact the three major credit bureaus listed below and place a fraud alert on your credit file. You should only need to contact one bureau to request the alert and they will contact the other two for you.
Equifax: To report fraud, call 1-800-525-6285 and write: P.O. Box 740241, Atlanta, GA 30374-0241. For the hearing impaired, call 1-800-255-0056 and ask the operator to dial. For the Auto Disclosure Line, call 1-800-685-1111 to request a copy of your report.
Experian: To report fraud, call 1-888-EXPERIAN (397-3742) and write: P.O. Box 9530, Allen TX 75013. TDD: 1-800-972-0322
TransUnion: To report fraud, call 1-800-680-7289 and write: Fraud Victim Assistance Division, P.O. Box 6790, Fullerton, CA 92634 TDD: 1-877-553-7803
Obtain your free annual credit report and review it closely.
Visit the Federal Trade Commission’s website at https://www.identitytheft.gov/ . This site will walk you through the step-by-step repair process and also includes checklists and forms which will assist you through the recovery of your good name.
For assistance with our Mobile and Text Banking systems you can contact us anytime.
Tools and Games
While there are many free resources and tools online to help you prevent, detect and respond to cyber security incidents, we have put together a list of some of our favorites: