Defending Against COVID-19 Cybersecurity Scams
The Cybersecurity and Infrastructure Security Agency (CISA) has published a warning encouraging individuals to be on high alert for phishing, social engineering and disinformation campaigns relating to COVID-19. Taking the following precautions will help protect you from scams and cyber-attacks.
- Email phishing is at an all-time high. Please verify with the intended recipient before you send out any financial information via email. Cashmere Valley Bank is not using any third party services to send emails to clients regarding Payment Protection Program funding. Visit the FTC website for more guidance on Coronavirus scams.
- Use trusted sources such as the World Health Organization (WHO) and Centers for Disease Control (CDC)—for up-to-date, fact-based information on COVID-19.
- Be wary of unsolicited emails with links and attachments, even if they claim to be from a government agency or COVID-19 experts.
- Ignore online offers and scam calls on reserving vaccinations. Trusted sources will release information regarding medical breakthroughs.
- Do not reveal personal or financial information over email, and do not respond to email solicitations for this information.
- Verify a charity’s authenticity before making donations. Do your own research. If you are unsure about a request through social media or a crowdfunding site, you can always go directly to a charity’s website and donate that way. Credit cards are the safest way to pay online - Never make donations via gift cards or wire transfers.
Safe Banking over the Internet
The Internet offers the potential for safe, convenient new ways to conduct banking business at any day or time. However, safe banking online involves making good choices and decisions that will help you avoid costly surprises or even scams.
How can I be sure that I’m dealing with Cashmere Valley Bank?
- Cashmere Valley Bank will never send you an e-mail asking for your PIN or password, credit card numbers, or other sensitive information.
- If we request information from you, it is because you have initiated the contact and we are replying to you with a request for information that is necessary to assist you.
- E-mail messages sent by you to us from within Cashmere Valley Bank’s Online Banking are secured using 128-bit encryption. If a response is required, we will respond back to you within the secured e-mail. Your e-mail address will be used to notify you when you receive a reply.
- Emails from Cashmere Valley Bank only come from @cvb.bank or @cashmerevalleybank.com.
- Marketing campaign materials may come from email@example.com.
What is e-mail fraud?
Fraudulent e-mails sent to you for the purpose of stealing personal and financial information are among the most common type of e-mail fraud.
"Phishing" is the practice of sending a fraudulent e-mail that requests confidential information. The message is disguised to look like a request from a legitimate organization that the recipient may already have a relationship with. Often the message includes a warning about a problem related to the recipient’s account and encourages them to provide personal information, which is then used to steal their identity.
Some things you should know about phony e-mails and some tips for spotting them:
- The e-mail may state that your account may be closed if you fail to confirm, or authenticate your personal information immediately.
- Phony e-mails may provide a general greeting and not identify you by your name.
- Do not click on links you receive in an e-mail message asking for personal or financial information.
- Call the company directly to confirm requests for updating or verifying personal or account information.
- Do not share your IDs or passwords with anyone.
- Look for a secure connection on websites asking for personal or account information.
- If you think you may have provided personal or account information in response to a fraudulent e-mail or website, report the fraud immediately, change your passwords and monitor your account activity.
Have you received a phishing email claiming to be from Cashmere Valley Bank?
- If you've received an email from us you believe may be fraudulent, please forward the email to Fraud@cvb.bank so we can investigate.
Tips for Keeping Your Financial Information Secure
- 7 Tips for Protecting Yourself Online
- 10 Ways to Protect Your Mobile Devices
- 5 Ways to Protect Your Small Business from Account Fraud
- 8 Tips to Protect Your Identity
Is Online Banking secure at Cashmere Valley Bank?
Online Banking has multiple security features embedded in its architecture to keep your information confidential.
- In order to access your account information, your Internet Browser must support 128-bit encryption.
- We utilize an intricate system of firewalls and filtering routers to secure your information.
- If the Online Banking is idle for more than 10 minutes, it will automatically terminate your session.
- You are required to choose your own 8-20 digit alphanumeric Online Banking Password.
- If you unsuccessfully enter your Online Banking ID or Password three times, you will be locked out of the Online Banking until you contact us.
- We do not transmit account numbers over the Internet. We use Pseudo account names to define your accounts.
- The Login Count feature lets you keep track of how many times you have accessed your Online Banking account. You can reset the login count regularly to keep track of how many times your information is being accessed.
What Can I Do to Guard against Identity Theft?
- Shred all personal and financial information.
- Don’t give your Social Security number or other personal credit information over the phone unless you initiate the call.
- Keep your personal (e.g. Social Security card, birth certificate, etc.) and bank/credit card records in a secure place.
- Call the post office immediately if you are not receiving your mail.
- Be aware of others nearby when entering your Personal Identification Number (PIN) at an ATM.
- Limit the number of credit cards and other personal information that you carry in your wallet or purse.
- Report lost or stolen ATM, Debit or Credit Cards immediately.
- If you have applied for an ATM, Debit or Credit Card and have not received them in a timely manner, immediately notify the financial institution involved.
- Sign all new cards upon receipt.
- Review your monthly accounts regularly for any unauthorized charges.
- Review your credit reports annually to safeguard your identity.
- When conducting business online, make sure your browser’s padlock or key icon is active.
- Avoid using the standard mother’s maiden name, birthdays, etc. for passwords or PINs.
- Don’t open e-mail from unknown sources, and use virus detection software.
Where to report suspected fraud
Report any suspected fraud to your bank and the fraud units of the three credit reporting agencies immediately.
- Trans Union (800) 916-8800
- Experian (800) 301-7195
- Equifax (800) 525-6285
Contact the FDIC if you have been a victim of banking fraud, or if you have visited a bank Web site that appears to be fraudulent.
- Report any telemarketing fraud scheme - FTC @ 1-877-FTC-Help or www.ftc.gov
- Report if victim of identity theft - FTC @ 1-877-IDTHEFT or www.consumer.gov/idtheft
- United States Postal Inspection Service - Contact when the mail service is part of fraudulent scheme - www.postalinspectors.uspis.gov
For More Information