Best Practices for Internet Security

Internet security is a growing concern for all consumers and businesses trying to protect themselves from unlawful access to their online banking accounts. The Internet has become a primary source for criminals to obtain identifying data, passwords, or banking information and use them to gain unauthorized access to financial accounts for identity theft or other illegal acts.

It is important to educate and protect yourself when using Internet connected systems. Please be advised that there are numerous security measures to keep your information safe in addition to those mentioned below. These measures will help limit the risk of a security breach but does not guarantee your security, as there are numerous new malicious tactics being created daily. In order to offer the best protection possible for our customers’ online account activity, Bank of the Cascades has a comprehensive, layered security system in place that has been evaluated using a risk based assessment model. Our business customers also are encouraged to risk assess their security and business controls periodically to ensure that you are protecting yourselves from internal and external fraud threats. For more information, please see our links at left to read and/or download our “Best Practices for Online Security” series of flyers as well as additional important information on Electronic Funds Transfers.

Bank of the Cascades occasionally may contact our customers by telephone in order to deliver important communications. We will offer you the option to call us back at the number printed on your statement or Bank of the Cascades debit card. In order to validate our customers’ identity for your protection, we may ask privacy questions that you set up at your account opening before proceeding or discussing your accounts. On the phone, we will NOT ask for passwords, PINs, full Social Security numbers, credit or debit card numbers, or account numbers. This information can be used by criminals to conduct identity theft, fraud, and unauthorized use of electronic services. At this time, unless you opt for communications from us such as eStatements, e-alerts, etc., we will not initiate contact with our customers via e-mail, text message, or other website methods. If you suspect fraudulent activity related to your Bank of the Cascades account(s), please contact us immediately at (877) 617-3400.

Internet Security Tips

  • Use one computer exclusively for online banking activities and a different computer to surf the web and email.
  • Use an Intrusion Prevention System (IPS), Web site filtering, hardware firewall, and email filtering to prevent threats from reaching your PC’s. Ensure these systems are set to automatically update for security software patches.
  • Verify that a site is protected with a Secure Sockets Layer (SSL) certificate prior to typing in sensitive information, look for https:// in the address bar or check for the “padlock” symbol on your browser. ssl-lock
  • Use a current browser with phishing protection, web filtering, auto security update, and other safe site security.
  • Save frequently visited web sites in your favorites to avoid mistyping or being misdirected to illegitimate websites.
  • Use a known search engine when unsure of a particular web site’s address.
  • Do not respond to emails or phone calls asking for personal information such as account numbers, account info, social security number, etc. Financial institutions know this information and will never contact you to ask for your personal information.
  • Do not open a program or file attachment unless you know it is legitimate. Even when you are confident an attachment is OK, it is still a good idea to run it through an updated virus scan program.
  • Delete email from an unknown source immediately. Many email scams count on recipients to be curious and will use dramatic subject titles.

Do not reply or click on a link in an unsolicited email. If you receive an email that warns you that an account of yours will be shut down unless you reconfirm your personal information, contact the company cited in the email using a known telephone number or type the web site address into your browser by hand.