Access ID:
Personal     Business
CUSTOMER AWARENESS

 

IDTheftBusinessFDICcoverageIDTheftConsumerEnhancedSecurity


CORPORATE ACCOUNT TAKEOVER

At United Community Bank we are committed to your security and want to make you aware of an evolving electronic crime.

What is Corporate Account Takeover?

Corporate account takeover is a type of fraud where thieves gain access to a business’ finances to make unauthorized transactions, including transferring funds from the company, creating and adding new fake employees to payroll, and stealing sensitive customer information that may not be recoverable. Corporate account takeover is a growing threat for small businesses. It is important that businesses understand and prepare for this risk.

Cyber thieves target employees through phishing, phone calls, and even social networks. It is common for thieves to send emails posing as a bank, delivery company, court or the Better Business Bureau. Once the email is opened, malware is loaded on the computer which then records login credentials and passcodes and reports them back to the criminals. 


How does Corporate Account Takeover Work?
•  Criminals target victims by scams
•  Victim unknowlingly installs software by clicking on a link or visiting an infected Internet site
•  Fraudsters begin monitoring the account
•  Victim logs onto their Online Banking
•  Fraudsters Collect Login Credentials
•  Fraudsters wait for the right time and then they hijack the session and send the victim a message that Online Banking is temporarily unavailable.

Where does it come from?
•  Malicious websites, including Social Networking sites
•  Email
•  P2P Downloads (e.g. LimeWire)
•  Ads from popular websites

What can a Business do to PROTECT?
•  Provide Security Awareness Training to Employees
•  Secure your Computer and Networks
•  Limit Administrative Rights (Do not allow employees to install any software without receiving prior approval.)
•  Install and Maintain Spam Filters
•  Surf the Internet Carefully
•  Install and maintain up-to-date commercial Anti-virus and desktop firewall software on all computer systems
•  Utilize routine and "red-flag" reporting for transaction activity
•  Install Routers and Firewalls to prevent unauthorized access to your computer or network. Change the default passwords on all network devices.
•  Install Security updates to Operating Systems and all applications as they become available
•  Use the latest versions of Internet browsers, such as Internet Explorer, Firefox or Google Chrome with "pop-up" blockers enabled
•  Do not open attachments from e-mail. Be on the alert for suspicious emails.
•  Never access Bank Accounts at Internet Cafes or from public wi-fi hotspots (airports, etc)
•  Use a dedicated computer for financial transaction activity
•  Initiate ACH and Wire Transfer payment under dual control (Example: One person authorizes the creation of the payment file and the second person authorizes the release of the file)
•  Reconcile Accounts Daily
•  Note any changes in the performance of your Computer. Dramatic loss of speed, computer lock up, unexpected rebooting, unusualy popups, etc.
•  Make sure that employees know how to and to whom to report suspicious activity to at your Company and the Bank.
 
Contact the Bank immediately at 866.505.3736 if you:
•  Suspect a Fraudulent Transaction
•  If you are trying to process an Online Wire or ACH Batch and you receive a maintenance page
•  If you receive an email claiming to be from United Community Bank and it is requesting personal/company information.
 
 
 


PHISHING AND SPOOFING

As part of our commitment to keeping your account and personal information safe and secure, we've assembeled some useful tips for spotting fraudulent email.

Ways to identify phising and spoofing emails include:

 

 • Links that appear to be United Community Bank links but aren't. If you place your cursor over a link in a
    suspicious e-mail, your e-mail program most likely shows you the destination URL.  Do not click the link, but
    look closely at the URL.  A URL that is formatted ucbanking.fakewebsite.com is taking you to a location on a
    fakewebsite.  Just because UCBanking is part of the URL does not guarantee that the site is an official United
    Community Bank site.
•  Request for personal information. UCB emails will never ask you to reply in an e-mail with any personal
    informaiton such as your Social Security Number, ATM or PIN.
•  Urgent Appeals. We will neer claim your account may be closed if you fail to confirm, verify or authenticate
    your personal information via e-mail.
•  Messages about system and security updates.  We will never claim the need to confirm important
    information via e-mail due to system upgrades.
•  Offers that sound too good to be true. We will never ask you to fill out a customer service survey
     in exchange for money, then ask you to provide your account numbers.
•  Obvious typos and other errors.  These are often the mark of fraudulent e-mails and websites. 
    Be on the lookout for typos or grammatical erros, awkward writing and poor visual design.
 
If you receive a suspicious email that uses United Community Bank's name, forward it to us immediatly at onlinesupport@ucbanking.com
 
 
 
 
 

Banking Services

Online Banking

Other Services

Fraud     Money Smart    Facebook