Spencer takes your security seriously. We want your experience with us to be both safe and secure, when you bank with us online or through your mobile device. Although we have many safeguards in place, we find that the best defense against electronic fraud is an educated customer.
- Firewall – Our network blocks unauthorized access to unwelcome intrusion
- SSL Encryption – Your online banking session is protected by Secure Socket Layer encryption. When you see the “s” in https in your address bar, this indicates that a secure connection is in place and any information you enter into your browser is being encrypted as it is sent to us.
- Multifactor Authentication – Whether you are being presented with security challenge questions, or asked to enter a one time pass code, these security measures are in place to make sure that even if your login credentials have been stolen, criminals will not be able to access your financial information.
- Security Cookie – When you log in you are given the option to add a security cookie to that machine (enroll this computer), which will register that device as a safe access point.
- Activity Monitoring – Electronic banking activity is monitored by our advanced fraud detection software. If any abnormal activity is detected, one of our fraud detection specialists will reach out to you to confirm the activity and provide you with the peace of mind that your financial access is protected.
- Internet Monitoring – Our fraud prevention specialists are constantly evaluating the current fraud environment on the internet. They search the web for the newest phishing, spoofing, or malware scams directed at our customers, and shut them down immediately.
Any unaffiliated third party sites are responsible for the accuracy and performance of their products and services. Spencer Savings Bank does not endorse or approve any third party sites products or services. Once you leave this site and visit a third party site, you are no longer protected by the privacy and security of Spencer Savings Bank.
Spencer Savings Bank may provide access to information, products or services offered on Web sites that are owned or operated by other companies (“Third Party Web sites”). We provide this access through the use of hyperlinks that automatically move you from Spencer’s Web site to Third Party Web sites.
While we do our best to provide you with helpful, trustworthy resources, Spencer Savings Bank cannot endorse, approve or guarantee information, products, services or recommendations provided at any Third Party Web site. Because we may not always know when information on a linked site changes, Spencer Savings Bank is not responsible for the content or accuracy of any Third Party Web site. Spencer Savings Bank shall not be responsible for any loss or damage resulting from the use of a link on its Web site nor will it be liable for any failure of products or services advertised or provided on any Third Party Web site.
- Protect Personal Information – Always be suspicious when someone asks you for personal, financial, or account information. Ask yourself, “Who is asking me for this information, and why do they need it?”. Don’t let yourself be socially engineered into releasing sensitive information.
- Phishing and Spoofing – Some forms of social engineering which are used to steal sensitive information from unsuspecting victims are phishing and spoofing.
- Phishing involves the use of emails made to look official which solicit their victims for information such as account numbers, passwords, balance information, and address verification. Remember: A Spencer representative will NEVER email you asking for personally sensitive information.
- Spoofing involves the use of false websites made to look like your normal online banking website, in order to confuse and lure you into entering your login credentials so that they may be stolen and utilized for nefarious purposes. Always be cautious of clicking on links sent in emails, and always confirm that the web address is correct within your browser window. When possible, type web addresses directly into your browser address bar, and use your bookmarks.
- Call Spoofing is when a caller deliberately falsifies the information transmitted to your caller ID display to disguise their identity. Spoofing is often used as part of an attempt to trick someone into giving away valuable personal information so it can be used in fraudulent activity or sold illegally. Tips to avoid spoofing scams:
- Use caution if you are being pressured for information immediately.
- Do not respond to any questions, especially those that can be answered with “Yes” or “No.”
- Never give out personal information such as account numbers, Social Security numbers, mother’s maiden names, passwords or other identifying information in response to unexpected calls or if you are at all suspicious.
- Contact Spencer Savings to report the fraudulent call.
- Use Anti-Virus and Anti-Malware software – This will keep your system safe against malicious software (malware), and computer viruses. There are many free and low cost options on the Internet which you can search for, download, and install quick and easily. Make sure to always read reviews and confirm you are downloading your software from respected sources. Never download anti-virus software from a security pop-up, this could be a trap!
- Stay Updated – Always keep your operating system and anti-virus software up to date. Many companies release regular updates to stay current with the threats which are constantly evolving on the web.
- Protect Your Passwords – Always create strong passwords, using a mixture of upper and lower case letters, numbers, and special characters. Try not to use the same passwords across multiple websites. Never write down or store your passwords in a file on your device, and don’t share your login information with others.
Mobile banking is very similar to Online Banking from your desktop computer, and many of the basic online banking safety tips apply to this delivery channel. However, there are some additional safety measures which should be taken with your mobile device…
- Password Protect Your Mobile Device – Just like your car has a key, and your luggage has a lock, your phone should always have a password. Due to their smaller size and portability, mobile devices are highly vulnerable to loss and theft. Without a password on your phone, anyone who picks it up can have access to highly personal information. Some phones even have software designed to track lost or stolen phones, and in some cases remotely delete sensitive data.
- Download Mobile Software from Trusted Sources – Phishing and spoofing can take place in the mobile arena just as easily as through more traditional channels. Always make sure that software you download to your phone comes from a trusted source, like your phone’s app store.
- Mobile Devices are Portable Computers – Always keep in mind that your phone is not just a phone, but a miniature computer. And like all computers it is prone to the same risks as a standard desktop. Take the following steps to treat your phone more like a computer:
- Install Mobile Anti-Virus and Anti-Malware – Software is available through your app store that will help you safeguard your phone against malicious code. Some phones come with this software already installed. Keep it enabled, and keep it up to date.
- Update your Phone’s Operating System – By “docking” your phone with a desktop you can upgrade your phone’s operating software. Manufacturers keep operating systems updated to patch security vulnerabilities and provide enhanced functionality.
- Don’t Modify your Device – Some individuals have been known to “mod”, or “jailbreak” their mobile devices. Generally this is performed to circumvent built in security or software limitations. These modifications not only void your warranty with your phone manufacturer, but also make it easier for your device to become compromised.
Enhanced Login Security
Avoid Phishing and other Online Scams
Federal Trade Commission: Fighting Back Against Identity Theft
Phishing: Don’t take the bait.
Identity Theft: Protect Yourself!
Internet Fraud: If it sounds too good to be true, it probably is.
Social Media: Be careful who you trust.