Business Internet Security Tips
We value your online safety and security. That's why we want to make sure that you are aware of best practices when conducting business online.
Before you begin, evaluate the risks associated with banking online based on your business and the types of transactions you intend to perform. For example, if you enroll for external ACH or Wire transactions you may assume more risk than if you simply view balances and transfer funds between your internal accounts. For your convenience, we have included information compiled by the Federal Bureau of Investigation (FBI) that explains methods to protect your business accounts, tactics used by cyber criminals to obtain access to your accounts, and how to detect if your business has been targeted by hackers.
Here are a few things to keep in mind when you are performing business transactions on the web:
Computer System Best Practices-
- To ensure account control, reconcile and review all banking transactions on a daily basis.
- Perform all ACH and Wire Transfers under dual control- have one transaction originator and a separate transaction authorizer to ensure maximum control.
- If possible, conduct all online banking activities from a stand-alone, hardened and completely locked down computer system. This is particularly important if you transact high value or large numbers of online transactions. This computer should not be used for email or web browsing.
- Opening emails, opening attachments or clicking on links embedded in suspicious emails could expose your system to viruses and malware. Be cautious when opening emails, especially when they appear to be from a financial institution, government department or other agency. Consider adjusting your email settings so that you do not automatically download images.
- Never share usernames, passwords, PIN codes or similar information.
- Install commercial anti-virus/anti-malware and desktop firewall software on all computer systems, and be sure to update the software regularly. An actively managed firewall helps to limit the potential for unauthorized access to a network and computers.
- Limit administrative rights on users' workstations. This will help prevent the inadvertent downloading of malware or other viruses.
- Computers should be patched regularly. It is particularly important to patch operating systems and key applications, both of which should have automatic updates to prompt you to patch the system.
- Clear the browser cache before and after an Online Banking session. This helps eliminate copies of web pages that have been stored on the hard drive.
- Consider installing a spyware detection program, which will help to intercept and remove malicious spyware.
Online Best Practices-
- Be sure to educate your staff about the importance of online safety. In particular, make sure that your employees with account access know the best practices for Online Banking.
- Make sure that everyone needing online access has their own User ID and Passwords. Sharing login information should be prohibited.
- Your company administrator should consider having two sets of login credentials. One should be used strictly for administrative purposes (adding new users, resetting passwords, etc.), and the other should be used for everyday transactions (viewing account activity, paying bills, etc.).
- Use dual-control when setting up new users. This will help ensure that the appropriate users are being added to the system.
- Create strong passwords. Use the maximum characters allowed, and be sure to include a combination of mixed case letters, numbers and special characters (when permitted). It is also a good idea to regularly change your password.
- Do not use the same password for multiple sites.
- Remind your staff to NEVER share login information with third-party providers. TowneBank will never ask you to provide your login information.
- Verify the use of a secure session. Make sure your browser says 'https' and not 'http' for all Online Banking sessions.
- To provide an additional layer of security, use tokens for online transactions (when available).
- Encourage your staff NOT to take advantage of automatic login features. It is best to type in your User ID and Password each time you login, instead of using systems that pre-populate the login fields.
- Never leave a computer unattended while using Online Banking. For most systems, you can adjust the timeout feature to something that is appropriate for the type of work that you are conducting online.
- Never access Online Banking, or any other financial services at Internet cafes, public libraries, etc. Unauthorized software may have been installed on these public machines, and could be trapping account information without your knowledge.
If you ever feel that your Online Banking information has been compromised, please contact your Hometown Banker.