Account fraud or identity theft occurs when a person gains access to your personal information, (your bank account number or Social Security number, for example) and then uses this information for illegal purposes – or to withdraw money from your account.
Here are some tips to protect your personal identity:
If you detect any fraudulent or possibly fraudulent transactions on any of your accounts, contact your bank or credit card company immediately. If you identify fraudulent activity on your American Savings Bank account(s), call our Customer Banking Center immediately at (808) 627-6900 or toll-free (800) 272-2566. You should also:
- File a police report. Even if the police can't catch the identity thief, having a police report can help you in clearing up any problems on your credit report(s).
- File a complaint with the Federal Trade Commission (FTC) at www.identitytheft.gov.
You should routinely obtain and review your free annual credit reports. You can request them from one or all of the national credit reporting agencies at the phone numbers below or at AnnualCreditReport.com.
- Equifax - (800) 685-1111
- Experian - (888) 397-3742
- TransUnion - (800) 916-8800
If there are fraudulent transactions on any of these reports, have the agencies delete any information relating to those transactions, and place a fraud alert on your credit report to alert creditors that you may be the victim of fraud. If you'd like to learn more about protecting your identity, here are some additional resources:
Do not share passwords or login credentials with others. You should also be cautious when sharing personal information, such as your Social Security Number (SSN) and Debit Card PIN. American Savings Bank will never initiate an email, cell phone text message or phone call and ask you to reveal any private information, including your account information. For best practice, memorize ATM card PIN and Online Banking login credentials. Do not write or keep your PIN in an easily found place.
How to keep your personal information private:
- Always use unique user names and passwords for each site you visit.
- Shred financial documents you no longer need.
- Store new and cancelled checks in a secure place.
- Keep records of your financial transactions.
- Do not write your account number on items that may be thrown away later.
- Send mail from a post office or secured mailbox, rather than from your home mailbox.
- Collect incoming mail promptly.
- Shred all unwanted pre-approved offers for financial products and services, like credit cards or loans.
Verify that your Online Banking session is secure:
- A closed, or locked, padlock, usually located in the lower right corner of your browser window, indicates a secure connection.
- Look for "https://" at the beginning of the Web site address or URL in your Web browser. The "s" means secure.
Create strong passwords for online accounts:
- Avoid easily identifiable words.
- Use a combination of numbers, letters, and special characters.
- Pick a longer password, rather than a shorter one.
- Change your password every 90 days.
Use the "Sign Off" feature when you are done using Online Banking or will be away from your computer for an extended period of time. Close your browser to prevent others from using your session. Learn more about Online Banking Security here >
- Be aware of email scams, such as Phishing, and phony websites. Use a critical eye and feel free to contact us if you have a question about something that appears to be from the bank.
- Learn as much as possible about anything you are downloading to your computer, including email attachments. Programs from unknown sources can compromise the security of your computer.
- Follow these guidelines to decide whether or not to open and read an email message:
- Do you know the person who emailed you?
- Has this person emailed you before?
- Does the subject line make sense?
- Did you expect to receive an attachment from this person?
- Does the message harbor a virus? Use an anti-virus program to verify that it does not.
- Do not send personal and financial information over the Internet via email, as it is typically not secure and could be intercepted
American Savings Bank utilizes industry recommended technology and security features to safeguard your Online and Mobile Banking information.
Your Online Banking is protected by:
- We offer biometric verification (ex: Fingerprints or facial recognition) for secure authentication into the ASB Hawaii Mobile App.
- For added security, we have a 2 step authentication process that uses a one-time secure access code when a new device is used to access your account.
- We use secure data encryption techniques in both our app and Online Banking to help secure your account information is protected.
- We offer account, history, transaction and security alerts to keep you informed of your account activity.
Your Online Banking for Business is protected by:For Online Banking for Business users, your financial information is protected with these additional features:
- Transaction Encryption - Secure Sockets Layer (SSL) technology and 128-bit encryption technology scrambles the communications between your computer and the server, generating messages unreadable to anyone outside of the secure environment who should not have access to them
- Firewall Protection - Unauthorized entry to ASB’s internal network of computer systems is shielded by our firewalls, which protects the computer network systems that interact with the Internet
- Surveillance - Our security teams use up-to-the-minute security procedures, security analyses and behavioral tracking applications to ensure information privacy and identification of suspicious transactions
Additional Online Banking for Business additional protection features:
- Multiple user/level entitlements with secure access via Company IDs and passwords
- Additional authentication with security tokens for ACH origination and wire transfers
- Customized access in which you determine the accounts and reports your employees can view
- "IP Lockdown" to restrict processing of stop payments, wire or ACH transfers by location or limit to registered workstations
- Add-on services such as Positive Pay* and Debit Block* available for added monitoring and security
In today's world, providing personal information online is a commonplace activity. However, one of the risks of doing so is being affected by a data breach - the release of personally identifiable, confidential information.
Here are some ways you can protect yourself and your information:
CREDIT FREEZE: Initiating a credit freeze makes it difficult for identity thieves to access your accounts and allows you to restrict access on your credit report. Be sure to consider your personal situtation before placing a credit freeze.
FRAUD ALERTS: If you are applying for credit or think you might need quick credit in an emergency, it might be better to simply place a fraud alert on your files with the three major credit bureaus.
While a credit freeze locks down your credit, a fraud alert will allow creditors to get a copy of your credit report, but only after they take steps to verify your identity.
Another helpful action is to change your bank account PIN and passwords regularly. Be sure to use strong passwords that include uppercase and lowercase letters along with symbols and numbers. Avoid using the same passwords across multiple accounts.
What is Phishing?
Phishing is a technique that criminals use to get you to reveal confidential information about your accounts, your debit or credit cards, and yourself. Most often, criminals will send an official-looking electronic communication like an email, to "fish" for users' financial information and passwords. If you respond to the communication, the information you reveal is used to steal money from your accounts or impersonate you to get fraudulent loans and other financial products without your knowledge, or to commit other illegal acts. The damage done by revealing your information may include loss of funds from your account, damage to your credit rating, hours of frustration and effort to restore your good name.
How Does a Phishing Scheme Work?
- You receive an official-looking email that appears to be sent by a company you already do business with, such as your bank. It uses their logo, similar page appearance, and familiar colors.
- To convince you that the communication is legitimate, the email uses formal business phrasing and tone. You are informed that, as a security measure, you will need to verify or reconfirm confidential information to update your records or reactivate a suspended account.
- The email provides a convenient link that appears to take you directly to your bank’s website or it may contain an embedded form for you to complete.
- If you click on the link, you access a web page that strongly resembles your bank’s website (again, with the logo, similar appearance, and familiar colors) and includes an online form for you to complete. The form in the email or on the webpage may ask for your personal information, such as your Social Security Number, mother’s maiden name, account number, debit or credit card number, and personal identification number (PIN). Expert thieves often use familiar standard security measures such as a padlock graphic in the lower corner to present authenticity — a padlock graphic informs you that the website is secure, but it does not verify that the recipient is whom you believe them to be.
- After completing the form, you click the submit button, believing your bank will receive the sensitive information that you provided. Unfortunately, the recipients of this information are criminals who have successfully impersonated your bank.
How Can You Avoid Being a Victim of Phishing Scams?
- Never respond to emails that request personal information. Delete them immediately.
- Always enter the full URL or domain name of your bank or credit card company into your browser address bar. If you are unsure of their web address, contact them for the information.
- Do not click on any link to log on to bank websites or open attachments in emails purportedly sent to you by your bank, credit card company or service provider.
- Regularly monitor your accounts for suspicious or unauthorized transactions.
- Visit websites that are known to you and verify these sites are using proper encryption protocol to protect your personal data.
The FDIC offers these guides for your protection:
Cybersecurity Guide for Financial Institution Customers:
Offers tips on protecting and maintaining computer systems, mobile devices, and connections to the Internet.
Cybersecurity Guide for Businesses
Focuses on the cybersecurity needs of commercial customers and includes information on safeguarding systems and data, and things to consider in a networked environment.