Information Security

Phishing Attack Alert

March 26, 2020: The First State Bank has been alerted of a phishing campaign that is sending emails that appear as if they are coming from the bank with fraudulent links embedded. The First State Bank will NEVER email, text, or call you requesting sensitive data including account login credentials, PIN, social security number, and/or account number. If you think you have fallen victim to fraudulent activity, please call the bank immediately at (979) 648-2691 or by contacting any branch

Tips to Stay Safe Online:

For up-to-date information on Information Security, The First State Bank recommends using the Federal Trade Commission website, www.consumer.ftc.gov/topics/privacy-identity-online-security. This site contains information on online security, identity theft, and more.

If you think you have been a victim of identity theft, please visit https://www.identitytheft.gov/ for a list of resources.

Phishing:

The use of fraudulent emails continues to be the go to for many hackers. This method utilizes hyperlinks and attachments in legitament looking emails to either compromise the device or steal credentials.  For additional information, please visit the FTC’s page on phishing for more information. https://www.consumer.ftc.gov/articles/0003-phishing

Passwords:

The use of passwords has continued to rise over the past decade and each person continues to need more and more of them. Unfortunately, this is the common way most websites and devices authenticate we, as the end user, should have access. And during this decade, we have continued to see a rise in data breaches leading to our usernames and passwords being compromised. Because of this, we, as the end user, need to take some additional steps to create better, stronger passwords. Here are a few things that you can do to make your passwords better.

  • The longer the password, the harder it is to crack.
  • Instead of passwords, use passphrases.  Password example: "Winter2019".  Passphrase example: "ItisWinter2019!".  The passpharse is both long and complex.
  • Never re-use or recycle passwords.
  • Change your passwords every 90 days.
  • Do NOT save passwords in on your computer in plain text and do not have the computer browser save them for you. If you would want to use a password vault, make sure that the master passphrase is strong by being long and complex.

Two Factor Authentication:

Many sites now offer two-factor authentication. This is typically done by receiving a one-time passcode via text, email, or voice call. This type of solution should be used when accessing sensitive accounts. The use of these of these one-time passcodes is an additional layer of authentication and helps with password guessing or cracking. We recommend that you do NOT use email for the one-time passwords.

Security Alerts:

Most sites that contain sensitive information, including The First State Bank site, have security alerts as an option. These alerts can be turned on to notify you when certain security events happen. These include but are not limited to new device login, failed login attempts, and change of passwords. We recommend that you use these so you are aware when suspicious activity is happening.

Patches and Updates:

Please make sure that you keep your computer and/or device along with any software up-to-date. Software vendors are constantly releasing patches and updates to fix security holes that are in the software. Hackers like to target these vulnerabilities to gain unauthorized access.