Customers have reported receiving automated calls, sometimes referred to as “robo” calls. In these calls, the voice states that they are from the Visa Fraud Department, and that the customer needs to call in and provide their debit card number to confirm transactions. The call requests a call back to a specific phone number. There is often no caller ID displayed at the time of the call. This is just one example of what a fraudulent call may sound like.
- Visa (and credible organizations) will not call and solicit your debit card number or personal information such as account numbers or social security numbers.
- Do not respond to messages like this. When in doubt, contact the organization directly to confirm if your account needs attention. DO NOT response to an unsolicited caller via phone, email, a web link or text.
In a world where fraud attacks are increasing each year, we want you to feel safe when banking with New Mexico Bank & Trust. We take fraud prevention very seriously, and we are dedicated to acting as your advisor and partner in your protection against fraud. New Mexico Bank & Trust is perpetually investing in the right technology to make sure your personal, business and financial information is safeguarded from fraudsters.
When banking with New Mexico Bank & Trust, it’s important to remember that:
- We will never ask for personal or financial information by, in response to or via a link in email.
- We will never initiate a phone call asking for financial information, including your account or social security numbers or balances.
- When you call New Mexico Bank & Trust, we may ask you for specific information in attempt to verify your identity before disclosing financial information.
- If we have reason to doubt the authenticity of a caller, we are not required to provide financial information.
INTRODUCING SECURITY BRIEF
While the cyber security industry has been making great strides, cyber criminals are becoming more creative and have diversified their attack strategies. For more than a decade, complex and sophisticated cybercrime organizations focused on large organizations; today cyber criminals are increasingly attacking small businesses and consumers with greater frequency. That means we all must take steps to safeguard our information. We know you’re busy! So, we’ve done the research and found the top three actions you can take for your business and at home, in hopes of offering important first steps to protect your assets.
SECURITY BRIEF FOR BUSINESS
- Make sure you’re paying an actual vendor — Always verify payment requests submitted to your business. Verify with a second individual or the requestor, but through a different channel than the one used to submit the request. Always use a phone number on file, not a phone number contained in the request. Never feel pressured to initiate a payment without verification. It is safer to take a little longer and be sure the payment is legitimate, than to be quick and lose thousands of dollars to fraud. Always verify any change to vendor payment instructions (i.e., bank name or account number) and use dual control – meaning you establish a dual control requirement for all outgoing ACH or wire payments.
- Reduce Payment Fraud Risks by separation of Accounts Payable (AP) duties and account segregation. Once your process has the checks and balances you need to avoid duplicate and/or unauthorized payments, talk to your Treasury Management team to evaluate today’s tools and technology that not only help reduce payment fraud, but can also help you automate some of the AP process to save time and money.
- Require multi-factor authentication when receiving initial payment information or a request to change payment information.
SECURITY BRIEF AT HOME
- Use strong passwords and change them at least once per quarter. DO NOT use the same password for multiple logins. Use multi-factor authentication whenever it’s available.
- Avoid unknown links or attachments in email and when you receive a request for payment via email, review it carefully, and if there is any doubt, contact the vendor via phone number on a previous invoice or look up their number online to verify. Fraudsters can change any company’s email address by adding a letter, a period or something else that people may miss if they are not aware of the risk of fraud.
- Use Anti-Virus Software — Install and maintain current anti-virus software on all devices, including mobile phones and tablets.