Know The Bad Stuff

Phishing is a technique that criminals use to get you to reveal confidential information about your accounts, your debit or credit cards, and yourself. Most often, criminals will send an official-looking electronic communication like an email, to "fish" for users' financial information and passwords.

If you respond to the communication, the information you reveal is used to steal money from your accounts or impersonate you to get fraudulent loans and other financial products without your knowledge, or to commit other illegal acts. The damage done by revealing your information may include loss of funds from your account, damage to your credit rating, hours of frustration and effort to restore your good name.

Don’t Fall Prey to "Phishers!"

Here's how a typical phishing scheme works

  • You receive an official-looking email that appears to be sent by a company you already do business with, such as your bank. It uses their logo, similar page appearance, and familiar colors.
  • To convince you that the communication is legitimate, the email uses formal business phrasing and tone. You are informed that, as a security measure, you will need to verify or reconfirm confidential information to update your records or reactivate a suspended account.
  • The email provides a convenient link that appears to take you directly to your bank’s website or it may contain an embedded form for you to complete.
  • If you click on the link, you access a web page that strongly resembles your bank’s website (again, with the logo, similar appearance, and familiar colors) and includes an online form for you to complete. The form in the email or on the webpage may ask for your personal information, such as your Social Security Number, mother’s maiden name, account number, debit or credit card number, and personal identification number (PIN). Expert thieves often use familiar standard security measures such as a padlock graphic in the lower corner to present authenticity — a padlock graphic informs you that the website is secure, but it does not verify that the recipient is whom you believe them to be.
  • After completing the form, you click the submit button, believing your bank will receive the sensitive information that you provided. Unfortunately, the recipients of this information are criminals who have successfully impersonated your bank.


Below are some things you can do to avoid being a victim of Phishing scams:

  • Never respond to emails that request personal information. Delete them immediately.
  • Always enter the full URL or domain name of your bank or credit card company into your browser address bar. If you are unsure of their web address, contact them for the information.
  • Do not click on any link to log on to bank websites or open attachments in emails purportedly sent to you by your bank, credit card company or service provider.
  • Regularly monitor your accounts for suspicious or unauthorized transactions.
  • Visit websites that are known to you and verify these sites are using proper encryption protocol to protect your personal data.


American Savings Bank will never email, text or call you to ask for your private information, including your account information. If you initiate contact with us, we will verify your identity by using information we already have on file. Therefore, we remind you to guard all of your private information (Social Security Numbers, bank account information, credit card numbers, PINs, passwords and other personal information). Never include private information in any email messages.

If you receive an email from American Saving Bank asking for confidential information, please delete the email and call our Customer Banking Center at (808) 627-6900 or toll-free at (800) 272-2566.

How can I tell if my identity was stolen?

What should I do if I think my identity was stolen?


Back to Security & Privacy >