Online Security Center

Phishing Attacks

Important Security Alert

Recent reports indicate a number of fraudulent emails making there way to user inboxes. Please be aware that we have received a number of calls from our customers, in regards to email they have received, which prompt them to go to a fake or spoofed website. Although not specifically targeted toward First National Bank, these spoofed sites do appear to be, and have many attributes of the financial institutions they purport to be.

It is important to be very vigilant in regards to any email that you receive that request your personal information. "Always remember, that First National Bank N.A. will never ask you to provide user name or password or other personally identifiable information, by means of email notification."

"Spoofing" is a practice where would be thieves and criminals set up an imitation or an exact copy of a legitimate web site, in order to mislead or confuse consumers.

These so called cyber-criminals will send "phishing" emails to users, often using scare or exciting tactics, in order to trick the customer into replying to the email or clicking on a link that points to the false web site.

To date First National Bank has not had any reports of such activity in regards to our service.

Such attempts at "phishing" will request that you reply or submit personal information online, generally without a secure connection. It is good practice to take caution when submitting personal information such as PIN's, Social Security Numbers, or account numbers online. If necessary to do so, insure it is with a legitimate company you normally do business with. If there is any question, contact that institution first. Remember, First National Bank N.A. will never request personal or other sensitive information via email.

The following tips will help keep you safe :

  • Never directly respond to e-mail asking for personal information.

  • If you doubt a message’s authenticity, verify it by contacting the institution itself.

  • Avoid spoofed sites by entering the Web addresses directly into the browser yourself or by using bookmarks you create.

  • When prompted for a password, give an incorrect one first. A "phishing" site will accept it; a legitimate one won’t.

  • A secure Web site gives you more assurance. To see whether a site is secure, look at the bottom of your browser’s window for an icon of an unbroken key or a lock that’s closed, golden, or glowing. Double-click on the lock to display the site’s certificate, and make sure it matches the company you think you are connected to.

  • Forward the fraudulent spam to the Federal Trade Commission at spam@uce.gov and the Anti-Phishing Working Group at reportphishing@antiphishing.org.

^back to the top