First Business


General Fraud Prevention Best Practices

  • Carry only necessary information with you. Leave your social security card and unused credits cards at home in a safe and secure location.
  • Make photocopies of vital information you carry regularly and store them in a secure place.
  • Do not provide your tax identification number or social security number unless absolutely necessary.
  • Replace paper invoices, statements and checks with electronic versions, if offered by your employer, bank, utility provider or other third party vendor.
  • If you have online account access with First Business Bank, you can reduce paper statements (and the potential for ID theft) by signing up for Bill Pay and free electronic statements.
  • Shred documents containing business, personal or financial information before discarding. Most fraud and identity theft incidents happen as a result of mail and garbage theft.
  • Review your credit report at least once a year, looking for suspicious or unknown transactions. You can get a free credit report once a year from each of the three major credit bureaus at www.annualcreditreport.com. For a small fee you can obtain a copy at any time directly from:
  • Subscribe to a daily credit monitoring service, such as First Business Bank's ID Theft Protection (this applies to consumer only and other restrictions apply; refer to terms and conditions.)
  • Place outgoing mail in a U.S. Postal Service mailbox to reduce the chance of mail theft.
  • Promptly retrieve incoming mail to limit the opportunity for theft.
  • Promptly review account transactions and statements for unauthorized activity.
  • Know your billing and statement cycles. Contact your vendor's customer service department if you stop receiving your regular bill or statement.

If you think you are a victim of fraud:

  • Immediately cease all activity from computer systems that may be compromised. Unplug the Ethernet or cable modem connection to isolate the system.
  • Immediately contact First Business Bank so that the following actions may be taken as a priority to contain the incident:
    • Online access to the accounts must be disabled.
    • Online account passwords changed.
    • New account(s) must be opened.
  • Review all recent transactions and electronic authorizations on the account.
  • Ensure that no one has requested an address change, title change, PIN change or ordered new cards, checks or other account documents be sent to another address.
  • File a police report with the local police department and provide the facts and circumstances surrounding the loss. Obtain a police report number with the date, time, department, location and officer's name taking the report or involved in the subsequent investigation. Having a police report on file will often facilitate dealing with insurance companies, banks, and other establishments that may be the recipient of fraudulent activity. The police report may initiate a law enforcement investigation into the loss with the goal of identifying, arresting and prosecuting the offender and possibly recovering losses.
  • Maintain a written chronology of what happened, what was lost and the steps that you took to report the incident to the various agencies, banks and firms impacted.
  • Record the date, time, contact telephone number, person spoken to, and any relevant report or reference number and instructions.
  • Review the recommendations at the Federal Trade Commission's Identity Theft website.
  • Consider hiring a consultant to have your network and systems reviewed by a qualified computer forensic/information security professional.

Online Security Best Practices

  • Use a current web browser.
  • Clear the web browser cache before you begin an online banking session.
  • Avoid using automatic login features.
  • Separate controls for your online treasury management applications across more than one computer. Use one computer to create online payments; have a second user approve those payments from a different computer. This will reduce the risk of internal fraud, while at the same time making it more difficult for intruders to find both of your company's user names and passwords.
  • Limit internet use on computers used for online banking, reducing the risk that malicious programs will infect those computers.
  • Use tokens, which are portable devices that increase login security, that are mandatory for clients that originate Automated Clearinghouse (“ACH”) and wire transfers via Internet Banking. Tokens use two-factor authentication to verify the identity of the user. Two-factor authentication is based on something you know (e.g., a PIN) and something you have (e.g., a token). By requiring two independent elements for user authentication, this approach decreases the chances of unauthorized information access and fraud. Be familiar with what First Business Bank’s website looks like and what questions are asked to verify your identity. Some attacks, known as man-in-the-middle attacks, will change the login page. These changes allow the attacker to see your answers and to add security questions. When you log in, the information is transmitted to the attacker and your online account is compromised.
  • Create strong passwords with at least 10 characters, including lower-case and upper-case letters, numbers and special characters.
  • Prohibit the use of “shared” user names and passwords for online banking systems.
  • Don’t use Personally Identifiable Information (PII) as a username or password, such as your social security number.
  • Change your usernames and passwords regularly.
  • Avoid using the same username and password on your online accounts.
  • Protect your username and password don’t write them down and don’t share them with others.
  • Protect your answers to security questions don’t write them down and don’t share them with others. Select questions and provide answers that are easy for you to remember, but hard for others to guess.
  • Check online banking account balances and activity daily and immediately notify First Business of any suspicious activity while accessing online services by calling Client Support at 608-232-5938 (Madison), 920-734-1800 (Northeast Wisconsin), or 262-792-1400 (Milwaukee).
  • We may offer the following services and security measures, subject to a separate agreement and fee that serve as precautions that you can take to decrease the risk of unauthorized transactions and are designated to detect and/or deter fraud:
    • ACH Debit Block & Filter
    • Positive Pay
    • Payee Positive Pay
    • ACH Positive Pay
  • Don’t access online services from public computers, kiosks, and the like.
  • Never leave a computer unattended while using any online service.
  • Access banking sites and shop with online merchants that you know and trust.  Ensure that online access and purchases are secured with encryption to protect your information. Look for secure transaction symbols such as a lock symbol or https: in the address bar of the browser.  Always log off from a website after making an online purchase.  If you cannot log off, close the web browser completely to prevent unauthorized access to your information.
  • Use First Business Bank tools such as positive pay, ACH debit block and filter, and alerts to mitigate financial loss.
  • Establish transaction dollar limits for employees who initiate and approve online payments such as ACH, wire transactions and account transfers.
  • Contact your insurance agent for information regarding specific coverage for electronic banking.

Computer Security Best Practices

  • Keep your computer operating system and computer applications, such as Microsoft Office, Adobe Flash, Apple Quick Time, Adobe Acrobat, etc., up-to-date to ensure the highest level of protection. Apply the latest patches particularly when and if they apply to a known exploitable vulnerability. Only apply updates from trusted sites, and not from pop-ups or advertisements
  • Install firewalls, commercial virus protection, adware detection, and spyware protection and keep them up to date to ensure the highest level of protection.
  • Avoid downloading programs from unknown sources.
  • Limit administrative rights on computers to help prevent inadvertent downloading of malware.
  • Turn your computer off completely when you are finished using it.

Email Security Best Practices

  • Be wary of suspicious emails. Never open attachments, click on links, or respond to emails from suspicious or unknown senders. First Business will never ask you for your password or your answers to your security questions via email.
  • Immediately notify your First Business representative of any suspicious emails purporting to be from First Business.
  • Always encrypt emails that contain sensitive information. First Business has partnered with Voltage Security to offer a no-charge encrypted email communication service for our clients. This allows you to send secure business communications to your First Business representatives. Click here for more information. 

Mobile Security Best Practices

  • Never disclose sensitive information via text message.
  • Download mobile apps from reputable sources only and update and maintain them with the latest patches, particularly when and if they apply to a known exploitable vulnerability.
  • Frequently delete messages from your device, and especially before loaning out, discarding, or selling your mobile device.
  • Use the keypad lock or phone lock function on your mobile device when it is not in use.
  • Always store your mobile device in a secure location.
  • Immediately notify your mobile device provider if it is lost or stolen.

Scam Prevention Best Practices

  • First and foremost, use common sense. If it sounds too good to be true, it probably is.
  • Never give personal information to a stranger who contacts you, whether by telephone, email, or other means.
  • You are responsible and liable for items you cash or deposit into your account; whether they are a check, money order, transfer, etc.
    • Don't accept payments for more than the amount of the service with the expectation that you send the buyer the difference.
    • Don't accept checks from individuals you've only met online.
    • Don't accept jobs in which you are paid or receive commission for facilitating money transfers through your account.
  • Be wary of offers of mortgage modification, foreclosure rescue, or short sale scams involving money-back guarantees, title transfers, up-front fees, or high pressure sales tactics.
  • No matter how urgent someone claims a deal or job offer is, you should research and confirm its legitimacy.

Scam examples:
Job Scams:  You accept a job in which you are paid to receive a commission to facilitate money transfers through your account or apply for a job that asks you to set up a new bank account.  Job scammers use reputable online job boards to offer work-at-home jobs or accounting positions. These job scams may require employees to receive money into their existing bank account (or open new accounts) and then transfer the money to another account, often overseas. As payment, the job seeker is instructed to keep a small percentage of the transfer.

Lottery or sweepstakes scams: You receive notice that you are the winner of a lottery that you did not enter, but must pay a small percentage for fake taxes or other fees before you can receive the rest of your prize.

Dating scams: Someone you met through an online dating site or chat room asks you to send money for a variety of reasons, including a need for urgent surgery or to make travel arrangements to meet in person.

Internet scams: You receive a check for something you sold over the internet, but the amount of the check is more than the selling price. You are instructed to deposit the check, but send back the difference in cash.

OR
You receive a check from a business or individual different from the person buying your item or product.

OR
You are instructed to transfer money, or receive a transfer of money, as soon as possible.

Telephone scams: Unless you initiated the contact, do not give out personal information over the telephone. If the call is not initiated by you, always ask for a call-back number.

  • www.firstbusiness.com
  • Phone numbers:
    • 608-238-8008 First Business Bank - Madison
    • 262-792-1400 First Business Bank - Milwaukee
    • 920-734-1800 First Business Bank - Northeast
    • 608-218-8000 First Business Trust & Investments
  • Official contact information on your statements
  • Phone numbers listed on your ATM, debit or credit card
  • The security of your accounts and personal information is one of First Business's top priorities. We promptly investigate any reported suspicious activity.

Report Suspicious Activity


Call First Business immediately if you notice suspicious activity related to your investment, retirement, credit card, deposit or loan accounts.
    • Lost or stolen checks and Debit/ATM Cards: 1-608-238-8008
    • Lost or stolen credit cards: 1-800-423-7503
    • Suspicious online transactions: 1-608-232-5938
    • Retirement account Participant Service Center:  1-800-716-3742
Monitor your accounts regularly.

Regularly reviewing your account activity is one of the best ways to notice and stop fraudulent activity quickly.

Frequently review your monthly statements or review activity online, 24 hours a day, with First Business Bank online access to your deposit, loan, retirement, credit card and investment accounts.

You can take action to protect your identity and your personal information. Click here to sign up for ID Theft Block to keep your online and offline transactions secure.

 

Have a Question?

Let us put you in touch with the appropriate representative to help you with your business needs.

Contact Us
See also...

Trust & Investments


Our approach allows us to act as an advocate for our clients helping them exceed their goals.

Learn more