First National Bank in DeRidder Home | Contact Us | Locations
Personal Banking Business Banking Loans About Us Internet Banking

Locations
Contact Us
Switch to FNB!
Forms
Links

Promo VISA
Come see us about our new VISA gift cards today

Promo Xmas Club

Promo Debit

More Secure

emergency
 
Internet Security

First National Bank’s Security Statement
Identity Theft

First National Bank Security Statement

Our bank employs the latest in Internet Security and User Authentication to ensure that data being transmitted through the Internet Banking System is secure from unauthorized access. The methods are outlined below.

Digital IDs from VeriSign
Our IBS system uses digital IDs certified by VeriSign, an industry leader in digital identification certificates, to authenticate user information and provide access to the data through the system.

How do digital IDs work?
Digital IDs work off of a matched key setup where the server has a "private" key issued only to the server and a "public" key widely distributed to the bank's customers. A digital ID requires a matched pair of keys that are unique to each other to encrypt and decrypt data. With this setup, transactions created, encrypted, and transmitted by bank customers using the public key can only be decrypted by the other key in the pair running on the server.

Secured Data Transmission
The Internet Banking System combined with digital ID authentication through VeriSign allow the server to implement Secure Sockets Layer (SSL) protocol, the standard technology for secure web-based communications. With SSL, data traveling between the bank and customer is encrypted and can only be decrypted through the pairing of the public and private key pair. SSL capability is built into server hardware and browsers, but requires a digital ID to be functional.

Server Access
Server access is protected using a firewall computer and the leading firewall software, CheckPoint's Firewall-1. Firewall computers provide secure access to the Web Server and Checkpoint's software by only allowing authorized traffic to hit the Server.

By combining the latest technology with authenticated access to the web server, we make your Internet Banking transactions secure.

Back to top

Identity Theft

Identity Theft Through Phishing

There’s a new type of internet privacy called "phishing". It’s pronounced "fishing" and that’s exactly what these thieves are doing: "Fishing" for your personal financial information. What they want are your account numbers, passwords, Social Security numbers, and other confidential information that they can use to loot your checking account or run up bills on your credit cards.

In the worst case, you could find yourself a victim of identity theft. With the sensitive information obtained from a successful phishing scam, these thieves can take out loans or obtain credit cards and even driver’s licenses in your name. They can damage your financial history and personal reputation that can take years to unravel. But if you understand how phishing works and how to protect yourself, you can help stop this crime.

Here’s how phishing works:

In a typical case, you’ll receive an e-mail that appears to come from a reputable company that you recognize and do business with, such as your financial institution. In some cases, the e-mail may appear to come from a government agency, including one of the federal financial institution regulatory agencies.
The e-mail will probably warn you of a serious problem that requires your immediate attention. It may use phrases, such as "Immediate Attention Required", or "Please contact us immediately about your account". The e-mail will then encourage you to click on a button to go to the institution’s Web site.
In a phishing scam, you could be redirected to a phony Web site that may look exactly like the real thing. Sometimes it may be the company’s actual Web site. In those cases, a pop-up window will quickly appear for the purpose of harvesting your financial information.
In either case, you may be asked to update your account information or to provide information for verification purposes; your Social Security number, your account number, your password, or the information you use to verify your identity when speaking to a real financial institution, such as your mother’s maiden name or your place of birth.

If you provide the requested information, you may find yourself the victim of identity theft.

Identity Theft Through "Pharming"

Pharming is similar to "Phishing" but does not use luring techniques, such as email. Instead, Pharming re-routes your domain name request automatically to a malicious Web site where personal information is collected and which will later be used to commit fraud and identity theft.
Pharming may occur in four ways:
  • The "pharmer" (the person or entity committing the fraud) will take advantage of incorrect domain name requests, such as misspelling a web site name, yurbank.com instead of yourbank.com to redirect the user to a fraudulent web site.
  • Malicious software, such as viruses and "Trojans" on a personal computer may intercept a user’s request to visit a particular website and will redirect the user to a phony web site that the pharmer has set up.
  • Domain hijacking: A hacker may steal or hijack a company’s legitimate Web site, allowing the hacker to redirect legitimate Internet traffic to an illegitimate site.
  • DNS poisoning: Domain Name Servers (DNS) are servers that can be "poisoned" to reconfigure all internet traffic to a web site other than the one requested.
Identity Theft through Spyware
The term "spyware" refers to technologies that collect information about a user without his or her knowledge and reports the information to a third party. Certain forms of sypware can intercept sensitive and confidential information, such as customer IDs, credit card numbers and passwords.

How is spyware installed on my computer?

  • Spyware is usually installed by downloading programs from the internet.
  • When browsing web sites, the site will claim that a download must occur in order to view the web page or it may download without a person’s permission.
  • Spyware can be installed by opening unwanted email (SPAM).
  • Some spyware programs may lure people into believing their software will be a useful tool for their personal computer and then people will unknowingly download the program.

How to Protect Yourself From Phishing, Pharming and Spyware
  • Never provide your personal information in response to an unsolicited request, whether it is over the phone or over the Internet. E-mails and Internet pages created by phishers and pharmers may look exactly like the real thing. They may even have a fake padlock icon that ordinarily is used to denote a secure site. If you did not initiate the communication, you should not provide any information.
  • If you believe the contact may be legitimate, contact your financial institution yourself. You can find phone numbers and Web sites on the monthly statements you receive from your financial institution, or you can look the company up in a phone book or on the Internet. The key is that you should be the one to initiate the contact, using contact information that you have verified yourself.
  • Never provide your password over the phone or in response to any unsolicited Internet request. A financial institution would never ask you to verify your account information online. Thieves armed with this information and your account number can help themselves to your savings.
  • Review account statements regularly to ensure all charges are correct. If your account statement is late in arriving, call your financial institution to find out why. If your financial institution offers electronic account access, periodically review activity online to catch suspicious activity.
  • Make sure you have installed current versions of virus detection software, firewalls, spyware scanning software. Make sure you have the current software patches/updates for the program(s) you operate. By regularly keeping your personal computer updated, you will minimize your risk of identity theft.
What to do if you fall victim
  • Contact your financial institution immediately and alert them to the situation.
  • If you have disclosed sensitive information in a phishing attack, you should also contact the three major credit bureaus and discuss whether you need to place a fraud alert on your file. A fraud alert will help prevent thieves from opening a new account in your name. Here is the contact information for each bureau’s fraud division:

    Equifax
    P.O. Box 740250
    Atlanta, GA 30374-0250
    Report Fraud: 1-800-525-6285
    Order a Credit Report: 1-800-685-1111
    Website: www.equifax.com

    Experian
    P.O. Box 1017
    Allen TX 75013
    Report Fraud: 1-888-397-3742
    Order a Credit Report: 1-888-397-3742
    Website: www.experian.com

    TransUnion
    P.O. Box 6790
    Fullerton, CA 92634
    Report Fraud: 1-800-680-7289
    Order a Credit Report: 1-800-916-8800
    Website: www.tuc.com
  • Report all suspicious contacts to the Federal Trade Commission through the Internet at http://www.consumer.gov/idtheft/ and call or write:

    Federal Trade Commission:
    1-877-IDTHEFT (1-877-438-4338)
    Consumer Response Center, F.T.C
    600 Pennsylvania Avenue NW
    Washington, DC 20580
You Can Fight Identity Theft

Here’s How:
  • Never provide personal financial information, including your Social Security number, account numbers or passwords, over the phone or the Internet if you did not initiate the contact.
  • Never click on the link provided in an e-mail you believe is fraudulent. It may contain a virus that can contaminate your computer.
  • Do not be intimidated by an e-mail or caller who suggests dire consequences if you do not immediately provide or verify financial information.
  • If you believe the contact is legitimate, go to the company’s Web site by typing in the site address directly or using a page you have previously bookmarked, instead of a link provided in an e-mail.
  • If you fall victim to an attack, act immediately to protect yourself, alert your financial institution. Place fraud alerts on your credit files. Monitor your credit files and account statements closely.
  • Report suspicious e-mails or calls to the Federal Trade Commission through the Internet at www.consumer.gov/idtheft/ or by calling 1-877-438-4338.
  • Whether you are a victim or not, tell the company or agency that the phisher has impersonated you.
  • Use your strict discretion when browsing the internet. If you feel unsure of the web site you are visiting, close your browser immediately.
  • Carefully read all End User Licensing Agreements (EULA) to ensure spyware acceptance is not part of the license.
  • Education on the subject is the first line of defense; know what to look out for and be wary of software downloads.

Back to top

 
EHL/Member FDIC Switch to FNB! | Privacy Policy | Internet Security | Forms | Links | Site Map