What security measures does OmniAmerican use to protect me?
OmniAmerican takes the protection of your financial privacy very seriously. The bank restricts access to nonpublic personal information about you to those employees who service or manage your account information. OmniAmerican's employees are trained in the importance of maintaining confidentiality and customer privacy. Additionally, the bank maintains physical, electronic, and procedural safeguards which comply with federal regulations and leading industry practices to guard your nonpublic personal information.
To further protect your privacy, OmniAmerican only works with companies which agree to maintain strong confidentiality protections and limit the use of information provided to those companies. OmniAmerican does not permit these companies to sell the information we provide them to third party companies. To view our Privacy Notice, please Click Here.
What are you doing to protect the bank from cyber attacks?
OmniAmerican constantly implements enhancements to maintain a robust security environment. Specifically, OmniAmerican proactively addresses security through the use of the following:
Individualized password
When you sign up for online access, OmniAmerican asks you to create your own username and password to access your accounts. This information is encrypted during transmission.
OmniKey
In 2007, OmniAmerican implemented multifactor authentication requiring Online Banking customers to select five security questions and provide answers. This additional layer of security helps to confirm your identity. Your correct answers to security questions help us verify it’s you attempting to access your accounts.
Timed log-off
OmniAmerican's system will automatically log you off from OmniAmerican Banking after a pre-determined period of inactivity. This reduces the risk of others accessing your information from your unattended computer.
Firewall
OmniAmerican's system environment is protected 24 hours a day by firewalls that block unauthorized entry. In order to gain access to authorized information, the Web browser you are using must know the proper protocol, or language, and even then only select information is available.
Encryption
From the moment account information leaves your computer to the time it enters OmniAmerican's system, all online access and Bill Pay sessions are encrypted. OmniAmerican employs some of the strongest forms of encryption commercially available for use on the Web today.
During any transaction, the encryption process turns your information into a coded sequence with billions of possible variations, making it nearly impossible for unwanted intruders to decipher. OmniAmerican's computers possess the proper formulas to turn this code back into meaningful information and complete your transaction.
Look for a "closed lock" icon in the lower right-hand corner (Microsoft Internet Explorer) or in the right end of the address bar (Firefox 2) or in the top right corner (Safari) of your browser to determine if encryption is being used on any Web page you are viewing. Any Web address beginning with "https://..." indicates the page you are viewing uses encryption. The "s" stands for "secured."
Constant surveillance
OmniAmerican's security team maintains and monitors our security environment to make sure that your accounts are safe and secure.
Additional Security Measures
OmniAmerican's layered approach to online security extends beyond a unique username and password, information encryption, a firewall to control acess, technology updates, and continuous monitoring. We have additional security measures that may be activated in response to certain activities or events. If we are suspicious of any online behavior, we may restrict online access to accounts or prevent certain types of transactions. These measures safeguard your identity and your accounts. Further proof of identity may be required before online access is restored.
Technology updates
To resist constantly evolving online threats, OmniAmerican has adopted and maintained industry standards for technology to protect your account security.
How can I better protect myself?
OmniAmerican Bank encourages our customers to monitor their account activity regularly and to review their credit reports which are available through the three major Credit Bureaus.
Can I put a fraud alert on my credit report?
Individual credit reporting agencies may handle fraud alerts in different manners so you should discuss this with each particular bureau’s representative. A fraud alert is an additional way you can protect yourself, but as a result, you may be requested to supply additional information when applying for credit to verify your identity.
What other resources are available to me?
The Federal Trade Commission (FTC) offers online guidance regarding steps a consumer can take to protect against identity theft. We also encourage you to report any incidents of identity theft to the FTC. Currently, the FTC Web site for the ID Theft brochure is www.ftc.gov/idtheft. The FTC Hotline phone number is (877) IDTHEFT (438-4338).
What is OmniPerks and does it offer any additional protection?
If you are an OmniAmerican Bank checking customer you are eligible to sign-up for OmniPerks which includes some additional security-related benefits. OmniPerks offers many benefits to customers which can be used with all credit and debit cards, regardless of the institution which issues them, including Identity Theft 911 and Identity Watch®/Protect-Your-CardsSM.
As an OmniPerks member, if you become a victim of identity theft, call Identity Theft 911 toll-free and you will be assigned to a highly qualified personal advocate who becomes your single source of helping to resolve your problem from start to finish. You save time, avoid additional frustrations and receive the help of an expert to get the problem resolved. A member’s Web site full of valuable information about identity theft issues is also available for you to access.
When you enroll in Identity Watch, you have a program which provides you with a copy of your credit report, ongoing credit file monitoring and comprehensive victim assistance if you become a victim of identity theft. You can register all of your credit and debit cards with Protect-Your-Cards and, should your cards become lost or stolen, a toll-free phone call gets you an operator who will make all the necessary arrangements to have your registered cards cancelled and reissued immediately. The service also eliminates your legal liability against card loss up to $5,000 per incident.
Additional benefits of OmniPerks include shopping, travel and entertainment discounts, a Living Family Journal and discounts for prescription drugs and eyewear.
OmniPerks is available for a minimal monthly fee. Please contact a Personal Banker for more information or click on OmniPerks.
Have you heard from who anyone has enrolled in OmniPerks?
Yes. Amanda Smith, an OmniAmerican Bank customer, has agreed to share her experience with the OmniPerks program.
“…I was on my way home from work when I got a call from my husband letting me know that someone had kicked in our front door and burglarized our home. As he started naming off some of the things that were taken…credit cards, my SS card, my birth certificate, my passport, marriage certificate, etc. Immediately I pulled the “Identity Watch” card from my wallet and called the number. The lady that took my call was so sweet and reassuring. She sounded genuinely concerned as she quickly verified my personal information. She told me she would take care of my cards and give me a call back when everything was resolved. She called me back 20 minutes later letting me know that all of my credit cards had been cancelled and I should expect to receive the new cards in 7 to 10 days. She asked me exactly what personal information was taken. As I went down the list of things she walked me through who all I would need to contact and gave me the contact information to ensure I was fully protected. I can tell you that I have lost sleep since last Wednesday over several things but I haven’t lost any sleep over my identity....”
How do I contact the credit reporting bureaus?
Equifax - www.equifax.com
P.O. Box 740241
Atlanta, GA 30374-0241
1-(800) 525-6285 To report fraud, call: (800) 525-6285
TDD (800) 255-0056 and write:
P.O. Box 740241
Atlanta, GA 30374-0241 To order your report, call: (800) 685-1111
Experian - www.experian.com
P.O. Box 9532
Allen, TX 75013
1-888- 397-3742 To report fraud, call: (888) EXPERIAN (397-3742)
TDD 800-972-0322 and write:
P.O. Box 9532,
Allen TX 75013 To order your report, call: (888) EXPERIAN (397-3742)
TransUnion - www.transunion.com
Fraud Victim Assistance Division
P.O. Box 6790
Fullerton, CA 92834-6790
1-800-680-7289 To report fraud, call: (800) 680-7289
TDD (877) 553-7803; fax: (714) 447-6034;
e-mail:fvad@transunion.com and write:
Fraud Victim Assistance Department
P.O. Box 6790
Fullerton, CA 92834-6790 To order your report, call: (800 )888-4213
Annual Credit Report.com
You may be able to get a credit report free of charge at www.annualcreditreport.com or by calling one of the credit report agencies listed above.
What is identity theft?
Identity theft occurs when someone uses your personal information, like your name, date of birth, driver’s license number, Social Security number, or credit card number, without your permission, to commit fraud or other crimes. You may not find out about the theft until you review your credit report or a credit card statement and notice charges you didn’t make—or until you’re contacted by a debt collector.
Identity theft can take many forms including:
Credit card fraud – They may open new credit cards in your name or change the billing address on your credit card so you won’t receive a bill, charge items to the card and then, fail to pay the bill which shows up as a delinquency on your credit report.
Utilities fraud – They may open new phone service, wireless service, or get utility services in your name.
Bank fraud – They may open a bank account in your name and write bad checks, create counterfeit checks using your name and account number, take out a loan in your name, or clone your ATM or debit card to make electronic withdrawals out of your accounts.
Official documents fraud – They may use your name and Social Security number to get government benefits or to get a job, get a driver’s license card issued with their picture and your personal information, or they could file a fraudulent tax return in your name.
Miscellaneous – They may give your personal information to the police when receiving a ticket or when they are placed under arrest. If they don’t pay the ticket or show up for their court date, an arrest warrant can be issued in your name.
Identity theft is serious. Although some identity theft victims can resolve their problems quickly, others may spend hundreds of dollars and a great deal of time trying to repair damage to their credit record and reputation. Some consumers victimized by identity theft may lose out on job opportunities, or be denied loans for education, housing or cars because of negative information on their credit reports.
How does someone steal my identity?
Skilled identity thieves may use a variety of methods to get your information, including:
Dumpster Diving - They rummage through trash looking for bills or other paper with your personal information on it.
Phishing - They pretend to be financial institutions or companies and send spam or pop-up messages to get you to reveal your personal information.
Changing Your Address - They divert your billing statements to another location by completing a change of address form.
Stealing - They steal wallets and purses, mail (including bank and credit card statements), pre-approved credit offers, and new checks or tax information. They steal personnel records, or bribe employees who have access. A new trend involves a burglar breaking into your house, but taking personal information rather than or in addition to jewelry, electronics, and other valuables.
Skimming – A high-tech electronic device is used to capture this information when your card is swiped. Your personal or account information contained in the magnetic strip on the card is read into and stored on the skimming device or an attached computer.
Pretexting - They use false pretenses to obtain your personal information from financial institutions, telephone companies, and other sources.
What can I do to prevent ID theft?
The most important thing that you can do is to be aware of your surroundings. Here are some additional precautions you can take:
Check Your Purse or Wallet
Never leave your purse or wallet unattended – even for a minute.
Protect your PINs (don’t carry them in your wallet) and passwords.
Carry only personal identification and credit cards you actually need in your purse or wallet.
Keep a list of all your credit cards and bank accounts along with their account numbers, expiration dates and credit limits, as
well as the telephone numbers of customer service and fraud departments. Store this list in a safe place.
If your state uses your Social Security number as your driver’s license number, ask to substitute another number.
Keep Your Personal Numbers Safe and Secure
When creating passwords and Personal Identification Numbers (PINs) do not use any part of your Social Security number, birth date, middle name, wife’s name, child’s name, pet’s name, mother’s maiden name, address, consecutive numbers, or anything that a thief
could easily deduce or discover.
Ask businesses to substitute a secret alpha-numeric code as a password instead of your mother’s maiden name.
Shield the keypad when using ATMs or when placing calling card calls.
Memorize your passwords and PINs; never keep them in your wallet, purse, Rolodex or electronic organizer.
Get your Social Security number out of circulation and release it only when necessary - for example, on tax forms and employment
records, or for banking, stock and property transactions.
Do not have your Social Security number printed on your checks, and do not allow merchants to write your Social Security number on your checks. If a business requests your Social Security number, ask to use an alternate number.
Order copies of your credit report once a year to ensure accuracy.
Protect your PINs and passwords and change them frequently.
Be suspicious of unsolicited phone calls, visit or e-mail messages from individuals asking about family or friends. If an unknown
individual claims to be from a legitimate organization, try to verify his or her identity directly with the company.
Do not give Social Security number or other personal credit information to anyone unless you are sure that they are indeed who
they claim to be and that they should have access to the information.
Shred or tear up receipts, bank statements and unused credit card offers before throwing them away.
Lock up documents containing personally identifiable information.
Avoid discussing sensitive information in public places such as restaurants, elevators, airports,
break rooms, restrooms, etc.
Stay Safe Online
Do not use e-mail (unless encrypted) to convey sensitive information.
Do not reveal personal or financial information in e-mail, and do not respond to e-mail solicitations for this information. This
includes following links sent in e-mail.
When conducting business online, make sure your browser’s padlock or key icon is active. Don't send sensitive information over the Internet before checking a Web site's security. See Protecting Your Privacy http://www.us-cert.gov/cas/tips/ST04-013.html for more information.
Pay attention to the URL of a Web site. Malicious Web sites may look identical to a legitimate site, but the URL may use a
variation in spelling or a different domain (for example, .com versus .net).
If you are unsure whether an e-mail request is legitimate, try to verify it by contacting the company directly. Do not use contact information provided on a Web site connected to the request. Instead, check previous statements for contact information.
Information about known phishing attacks is also available online from groups such as the Federal Trade Commission
(http://www.ftc.gov/) and the Anti-Phishing Working Group (http://www.antiphishing.org/phishing_archive.html).
Manage Your Mailbox
Do not leave bill payment envelopes clipped to your mailbox or inside with the flag up; criminals may steal your mail and change
your address.
Know your billing cycles, and watch for any missing mail. Follow up with creditors if bills or new cards
do not arrive on time.
Carefully review your monthly accounts, credit card statements and utility bills (including cellular telephone bills) for
unauthorized charges as soon as you receive them. If you suspect unauthorized use, contact the provider’s customer service and
fraud departments immediately.
When you order new checks, ask when you can expect delivery. If your mailbox is not secure, then ask to pick up the checks instead
of having them delivered to your home.
Although many consumers appreciate the convenience and customer service of general direct mail, some prefer not to receive offers
of pre-approved financing or credit. To “opt out” of receiving such offers, call (888) 5 OPT OUT sponsored by the three credit
bureaus.
The Direct Marketing Association offers services to help reduce the number of mail and telephone solicitations. To join their mail preference service, mail your name, home address and signature to: Mail Preference Service, Direct Marketing Association, P. O.
Box 9008, Farmingdale, NY 11735-9008.
Bank, Shop and Spend Wisely
Store personal information in a safe place and shred or tear up documents you don’t need. Destroy charge receipts, copies of
credit applications, insurance forms, bank checks and statements, expired charge cards and credit offers you get in the mail
before you put them out in the trash.
Cancel your unused credit cards so that their account numbers will not appear on your credit report.
When you fill out a loan or credit application, be sure that the business either shreds these applications or stores them in
locked files.
Tear up receipts, bank statements and unused pre-approved credit card offers and convenience checks before
throwing them away.
When possible, watch your credit card as the merchant completes the transaction.
Use credit cards that have your photo and signature on the front.
Sign your credit cards immediately upon receipt.
Carefully consider what information you want placed in the residence telephone book and ask yourself what it
reveals about you.
Keep track of credit card, debit card and ATM receipts. Never throw them in a public trash container. Tear them up or shred them
at home when you no longer need them.
Ask businesses what their privacy policies are and how they will use your information: Can you choose to keep it confidential? Do they restrict access to data?
Choose to do business with companies you know are reputable, particularly online.
When conducting business online, use a secure browser that encrypts or scrambles purchase information and make sure your browser’s padlock or key icon is active.
Don’t open e-mail from unknown sources. Use virus detection software.
Review Your Information
Order a copy of your credit report from the three credit reporting agencies every year and make sure all the information is
correct, especially your name, address, and Social Security number. Look for indications of fraud, such as unauthorized
applications, unfamiliar credit accounts, credit inquiries and defaults and delinquencies that you did not cause.
Check your Social Security Earnings and Benefits statement once each year to make sure that no one else is using your Social
Security number for employment.
By law you are only liable for the first $50 of unauthorized charges against a credit card
account. Still, restoring your identity can be a tremendous inconvenience. It’s worth your while to exercise a little preventive maintenance. Protect yourself against this terrible crime.
File a report with your local police or the police where the identity theft took place.
File a police report, complete the Sworn Statement of Identity Theft, and request for your information to be reported to Check Verification
Entities.
To replace your SSN, contact the Social Security Administration at (800) 772-1213.
To replace your Driver’s License or other identification documents, contact the issuing agency.
To report ID theft to the Federal Trade Commission, contact them at (877) FTC-HELP (382-4357) or www.ftc.gov/idtheft. The FTC Hotline phone number is (877) IDTHEFT (438-4338).
What is being done to combat identity theft?
The Identity Theft and Assumption Deterrence Act of 1998 amended federal criminal code to make ID Theft a crime.
On May 10, 2006, The President’s Task Force on Identity Theft was established to fight against identity theft. The President called for a coordinated approach among government agencies to combat this crime. The Task Force’s plan aimed at making the federal government’s efforts more effective and efficient in the areas of identity theft awareness, prevention, detection, and prosecution.
The Gramm-Leach-Bliley Act requires banks to respect the privacy of its customers and to protect the security and confidentiality of their personal information. Among its requirements are:
Privacy Notices – to tell you how we will protect your information, with whom it might be shared, and to give you the option to “opt out” of having your information shared.
A Safeguarding Customer Information Program – to implement policies, procedures, and controls to protect your personally identifiable information.
The Fair Credit Reporting Act & Fair and Accurate Credit Transaction Act were enacted to:
help prevent identity theft,
improve accuracy of consumer records,
improve resolution of consumer disputes, and
make improvements in the use of, and consumer access to credit information.
The USA Patriot Act, under its “know your customer rules,” requires banks to authenticate the identities of new customers and ensure that personal information is secure.
The Subcommittee on Social Security of the Committee on Ways and Means held a hearing on identity theft entitled "Protecting the Privacy of the Social Security Number from Identity Theft,” Thursday, June 21, 2007. The hearing examined the role of Social Security numbers in identity theft and hoped to find solutions to protect consumers better from ID theft.
What is a Social Engineering attack?
Social engineering is the attempt to manipulate or trick people, rather than attacking machines, into providing your personal or financial information.
A social engineer uses human interaction (social skills) as a weapon to obtain your information. A social engineer uses the natural human willingness to accept someone at his or her word, which leaves you vulnerable to attack. People have a natural tendency to want to help, to be kind, and to trust. The social engineer turns this into your weak link.
An attacker may seem unassuming and respectable, possibly claiming to be a bank employee or researcher and even offer credentials to support that identity. However, by asking questions, he or she may be able to piece together enough information to steal your identity.
What is a Phishing attack?
Phishing attacks use both social engineering and technical trickery to steal consumers' personal identity data and financial account information. Social-engineering schemes use 'spoofed' e-mails, text messges, pop ups, or instant messaging to lead consumers to counterfeit Web sites designed to trick recipients into divulging financial data such as credit card numbers, account usernames, passwords and Social Security numbers. Phishers often convince recipients to respond by using the bank’s or retailer’s logos. The fraudulent site often mirrors, or imitates, the legitimate Web site.
Below are some examples of “spoofed” e-mails:
From: XYZ_Service@YourBank.com To:undisclosed-recipients: Sent: Thursday, November 01, 2007 8:40 AM Subject: New Security Message
Dear Customer,
You have one new message at Your Bank Name. INBOX ( 1 )
Your account has been restricted. In order to read this message please CLICK HERE
From: E-Service [mailto:infonum-17949982i@e-service.com] Sent: Wednesday, October 31, 2007 6:45 AM To: Subject: Equifax: security maintenance
Dear E-Service customer,
E-Service Technical Department requests you to complete the XYZ Customer Online Form.
This procedure is obligatory for all E-Service XYZ customers.
Please select the hyperlink and visit the address listed to access XYZ Customer Online Form. http://www.XYZ.eservices.com/eport/member_id.jsp?session=85600311008384951777070
2112673566241668120922727182004798563330306
These instructions are to be sent to all Eservices XYZ customers.
--------------------------------------
From: Internal Revenue Service [mailto:service@irs.gov] To: Subject: Notice from IRS
After the last annual calculations of your fiscal activity we have determined that you are eligible to receive a tax refund of $93.60. Please submit the tax refund request and allow us 6-9 days in order to process it.
A refund can be delayed for a variety of reasons. For example submitting invalid records or
applying after the deadline. To access your tax refund online, please click here.
Dear MasterCard Member,
For the User Agreement, Section 9, MasterCard may immediately issue a warning, temporarily suspend, indefinitely suspend or terminate your Credit Card and refuse to provide our services to you if we believe that your actions may cause financial loss or legal liability for you, our users or us.
Our terms and conditions you agreed to state that your service must always be under your control or those you designate all times.
We have noticed some unusual activity related to your service that indicates that other parties may have access and or control of your VISA Credit Card.
To be able to use your credit card online you must create a SecureCode. MasterCard SecureCode enhances your current MasterCard account with a secret code to protect against unauthorized use of your card when you shop at participating merchants.
To restore your Credit Card status click the link below and insert your personal SecureCode: X35F43
http://www.mastercard.com/us/personal/en/cardholderservices/securecode/update.html
MasterCard Security Team
From: Equifax [mailto:infonum-17949982i@equifax.com] Sent: Wednesday, October 31, 2007 6:45 AM To: Subject: Equifax: security maintenance
Dear Equifax customer,
Equifax Technical Department requests you to complete ePORT Customer Online Form.
This procedure is obligatory for all Equifax ePORT customers.
Please select the hyperlink and visit the address listed to access ePORT Customer Online Form.
What is Pretext Calling?
When you think of your own personal assets, chances are your home, car, and savings and investments come to mind. But what about your Social Security number (SSN), telephone records and your bank and credit card account numbers? To people known as “pretexters,” that information is a personal asset, too.
Pretexting is the practice of getting your personal information under false pretenses. Pretexters sell your information to people who may use it to get credit in your name, steal your assets or even to sue you. Pretexters use a variety of tactics. Pretext calling can be difficult to detect.
Pretexters use a variety of tactics to get your personal information. For example, they may call and claim to be taking a survey or may claim to be a representative from some business or service that you use and need to ask a few questions. When the pretexter has the information he wants, he uses it to call your financial institution. He pretends to be you or someone with authorized access to your account. He might claim that he’s forgotten his checkbook and needs information about his account. In this way, the pretexter may be able to obtain personal information about you such as your Social Security number, bank and credit card account numbers, information in your credit report, and the existence and size of your checking, savings, and investments.
Keep in mind that some information about you may be a matter of public record, such as whether you own a home, pay your real estate taxes, or have ever filed for bankruptcy. It is not pretexting for another person to collect this kind of information.
The following list identifies some potential pretext caller situations. While calls that resemble these examples are not necessarily pretext calls, extra care should be taken to ensure the authenticity of the call:
A caller who tries to distract you by being overly friendly or engaging you in unrelated “chit-chat” in an effort to change your focus or let your guard down.
A caller who is abusive and attempts to get information through intimidation; or
A caller who cannot provide all relevant information.
Pretexting is against the law. Under the Gramm-Leach-Bliley Act, it’s illegal for anyone to use false, fictitious or fraudulent statements or documents to get customer information from a financial institution or directly from a customer of a financial institution. It is also illegal to use forged, counterfeit, lost, or stolen documents to get customer information from a financial institution or directly from a customer of a financial institution.
An example of pretext calling is the “Jury Duty Scam.” The call goes something like this:
Pretexter: This is John Doe with the Blah Blah County Court House. I’m calling to ask why you didn’t report for jury duty last Monday.
You: What do you mean? I never received a jury duty notice!
Pretexter: Oh, really? Well is this your correct address, “1234 Main Street”.
You: No.
Pretexter: I apologize for our error. We’ll correct your address. In the meantime, we have already issued a warrant for your address. If you’ll give us your Social Security number (birth date, etc.), we’ll do a quick cancellation of the warrant…
What are shoulder surfers?
Shoulder surfers are criminals that acquire personal information through eavesdropping. Shoulder surfers may obtain information while standing in line at a branch or ATM. Others may look over your shoulder while you’re working on your laptop at the airport or on the plane or listen to your cell phone conversations if you’re in a public place. In all instances, the objective is to obtain confidential information.
To avoid shoulder surfers:
do not talk about your personal or financial information in break rooms, hallways, restaurants, or in front of other customers
ensure that computer monitors are positioned in a manner that prevents individuals from observing confidential information
if someone is behind you at the ATM, block the screen by placing your body in a position that will not allow your information or number to be seen.
What is Dumpster Diving?
Dumpster diving involves rummaging through trash to collect customer information. Identity thieves can rummage through office trash cans, your garbage container set out for pickup, or through large dumpsters. The objective is to gather information that has been carelessly thrown away.
How do I protect myself from SCAMS?
The best rule to remember in dealing with scams is: ”If it seems too good to be true, it probably is”! There are a myriad of different tactics to defraud you by appealing to the greed in all of us. If some long lost relative died and left you a huge inheritance, someone asks your help in getting money out of a foreign country in return for a fee, you are the winner of a lottery you never entered, or if someone wants to buy an item you have for sale and sends you a check greater than the sale price, asking you to return the difference in the amounts – WATCH OUT!!
Following are some examples of scam letters:
The National Lottery
P O Box 1010
Liverpool, L70 1NL
UNITED KINGDOM
(Customer Services)
Ref: UK/9420X2/68
Batch: 074/05/ZY369
We are pleased to notify you the draw (999) of the UK NATIONAL LOTTERY, Online Sweepstakes International Lottery Program held on 2nd October 2006.
Participants were selected through a computer ballot system drawn from a pool of over 25,000 names of distinguished professionals drawn from Europe, America, Asia, Australia, New Zealand, Middle-East, parts of Africa, and North & South America as part of our international promotions programme conducted annually to encourage prospective overseas entries. We hope with part of your prize awards, you will take part in our subsequent lottery jackpots.
The result of our computer draw (#978) selected your name and e-mail address attached to e-ticket number: 56475600545 188 with Serial number 5368/02 drew the lucky numbers: 06. 29, 31, 34,40, 48, (04 Bonus Ball), which subsequently won you the lottery in the 2nd category i.e. match 5 plus bonus. You have therefore been approved to claim a total sum of £1,200,000 (ONE MILLION AND TWO HUNDRED THOUSAND POUNDS STERLING) in cash credited to file KTU/9023118308/03.This is from a total cash prize of £7,200,000 GBP shared amongst the first Six (6) lucky winners in this category i.e. Match 5 plus bonus.
Your prize award has been insured in your name and is ready for claims. To begin your claims therefore, you are advised to expeditiously contact our licensed and accredited claim agent for Overseas Lottery Winners within a period of 21 days (date of this e-mail inclusive) for the processing of your winning and remittance to your designated bank account after all statutory
FROM THE OFFICE OF ANTIFRAUD COMMISSION OF NIGERIA
DATE:05/08/007
CALL US: +234-80-62-74-70-67
ATTENTION: SIR/MADAM.
THIS IS ANTIFRAUD COMMISSION OF NIGERIA AND WEST AFRICA HEADED BY MR AMINU BELLO OF ANTIFRAUD COMMISSION. THIS COMMISSION WAS CREATED BY THE PRESIDENT OF NIGERIA, UMAR YA ADUA TO FIGHT AGAINST CORRUPTION AND THE ACTIVITIES OF NIGERIAN FRAUDSTERS WHO HAVE PAINTED THE IMAGE OF NIGERIA BAD TO OTHER FOREIGN COUNTRIES.
SIR, YOUR NAME APPEARED IN THE LATEST FEDERAL GOVERNMENT RELEASED BULLETIN AND ALSO FROM OUR SECURITY MONITORING,WE HAVE DISCOVERED THAT YOU WERE DEFRAUDED BY NIGERIAN FRAUDSTERS WHO MADE YOU TO BELEIVE IN A TRANSACTION THAT WAS NOT IN EXISTENCE.
SIR, YOU ARE GOING TO HELP THIS COMMISSION TO GET THESE PEOPLE THAT DEFRAUDED YOU ARRESTED. SIR, YOU ARE TO DO THIS BY SENDING TO US THE NAME AND TELEPHONE NUMBERS OF THOSE THAT DEFRAUDED YOU SO THAT WE CAN EASILY GET THEM ARRESTED FOR PROSECUTION. WE HAVE SO MANY OF THEM LANGUISHING IN JAIL NOW BECAUSE OF THE CRIME THEY COMMITTED.
SIR,BECAUSE OF THIS,THE NIGERIAN GOVERNMENT HAS DECIDED TO COMPENSATE ALL FOREIGNERS THAT WERE DEFRAUDED BY NIGERIAN CON MEN WITH A TOTAL SUM OF $300,000,00.SIR,YOU STAND A GOOD CHANCE OF RECEIVING THREE HUNDRED THOUSAND US DOLLARS COMPENSATION FUND. SIR,WE WANT TO EQUALLY INFORM YOU THAT THERE ARE SO MANY NIGERIAN FRAUDSTERS HERE IN NIGERIA AND OUTSIDE NIGERIA INCLUDING YOUR COUNTRY SIR YOU MUST BE VERY CAREFUL SO THAT THEY WILL NOT DECEIVE YOU AGAIN.
SIR,YOU ARE TO HELP THIS HONOURABLE COMMISSION SO THAT WE CAN GET THESE CRIMINALS ARRESTED. SIR,I WILL ADVICE YOU TO SEND THE FOLLOWING INFORMATIONS TO US IMMEDIATELY SO THAT WE CAN COMMENCE OUR INVESTIGATIONS IMMEDIATELY.
1:YOUR FULL NAME AND ADDRESS
2:YOUR BANKING INFORMATION.
3:YOUR PRIVATE TELEPHONE NUMBER FOR MORE DISCUSSION.
4:THE TOTAL AMOUNT YOU WERE DEFRAUDED.
5:THE NAMES AND PHONE NUMBERS OF THE FRAUDSTERS THAT DEFRUDED YOU.
SIR,UPON RECEIPT OF ALL THIS INFORMATIONS,WE SHALL COMMENCE OUR INVESTIGATIONS IMMEDIATELY AND WITH ADEQUATE SERIOUSNESS ON YOUR SIDE,WITHIN 7 WORKING DAYS,YOU WILL RECEIVE YOUR COMPENSATION FEE AND.
SIR,WE ARE LOOKING FORWARD TO RECEIVING YOUR IMMEDIATE RESPONSE SO THAT OUR INVESTIGATIONS CAN START OFF.
SINCERELY YOURS,
AMINU BELLO
OFFICE OF ANTIFRAUD COMMISSION OF NIGERIA AND WEST AFRICA.
How do I avoid being a victim and keep my information secure?
Be suspicious of unsolicited phone calls, visits, or e-mail messages from individuals asking personal information. If an unknown individual claims to be from a legitimate organization, try to verify his or her identity directly with the company.
Do not reveal personal or financial information in e-mail, and do not respond to e-mail solicitations for this information. This includes following links sent in e-mail.
Don't send sensitive information over the Internet before checking a Web site's security (see Protecting Your Privacy http://www.us-cert.gov/cas/tips/ST04-013.html for more information).
Pay attention to the URL of a Web site. Malicious Web sites may look identical to a legitimate site, but the URL may use a
variation in spelling or a different domain (e.g., .com versus .net or .gov).
If you are unsure whether an e-mail request is legitimate, try to verify it by contacting the company directly. Do not use contact information provided on a Web site connected to the request; instead, check previous statements for contact information.
Information about known phishing attacks is also available online from groups such as the Federal Trade Commission
(http://www.ftc.gov/) and the and Anti-Phishing Working Group (http://www.antiphishing.org/phishing_archive.html).
If you believe you might have revealed sensitive personal information report it to the appropriate people/organization. They can be alert for any suspicious or unusual activity.
If you believe your financial accounts may be compromised, contact your financial institution immediately and close any accounts t that may have been compromised. Watch for any unexplainable charges to your account.
Consider reporting the attack to the police, and file a report with the Federal Trade Commission (http://www.ftc.gov/).
What can I do to protect my child online?
Children present unique security risks when they use a computer. You have to protect both the child and the data on your computer. By taking some simple steps, you can dramatically reduce the threats.
Look for a privacy policy on any Web site directed to children. The policy must be available through a link on the Web site's
homepage and at each area where personal information is collected from kids. Web sites for general audiences that have a
children's section must post the notice on the homepages of the section for kids.
Keep your computer in a visible and easily monitored place in your home. Be aware of other computers your child may be using.
Discuss and set guidelines and rules for how and when they can use the computer. Post these rules by the computer as a reminder.
Use the Internet with your children. Be familiar with your children's online activities. Know your children’s online friends and
supervise their chat areas.
Consider partitioning your computer into separate accounts - Most operating systems (including Windows XP, Mac OS X, and Linux)
give you the option of creating a different user account for each user. If you're worried that your child may accidentally access, modify, and/or delete your files, you can give him/her a separate account and decrease the amount of access and number of
privileges he/she has.
Install parental control or blocking software. Some Internet service providers offer parental controls that parents can set to
prevent children from accessing chat rooms or to limit them to "kid-approved" sites. You can also purchase and install parental
control software on your computer, setting it to block certain sites.
Implement parental control tools but remember, no program can substitute for parental supervision. Internet Explorer allows you to restrict or allow certain Web sites to be viewed on your computer, and you can protect these settings with a password. To find
those options, click Tools on your menu bar, select Internet Options, choose the Content tab, and click the Enable button under
Content Advisor.
Make sure you children have good security practices and are aware of the dangers that exist. Examples include:
Downloaded files from certain sites can contain malicious code that can capture personal information or introduce a
virus into your PC.
Opening e-mail attachments, especially e-mail attachments from someone you don’t know. Attachments can also cause
damage to the computer.
Never give your personal information to anyone you meet online or in an e-mail. People can pretend to be anyone else
on the Internet and you might not know the difference.
Know who to contact if you believe your child is in danger. Visit
www.getnetwise.org for detailed information.
Even though children may have better technical skills, don't be intimidated by their knowledge. Children still need advice, guidance, and protection. Keep the lines of communication open and let your child know that you can be approached with any questions they may have about behaviors or problems encountered on the computer.
What is the Children’s Online Privacy Protection Act (COPPA)?
COPPA, effective April 21, 2000, was implemented to aid parents in controlling the information that is collected from their children and in determining how the information collected may be used. The law applies to operators of commercial and other web sites and online services that collect information from children under 13 years of age.
The rules require these operators to:
Post their privacy policy on the homepage and every page where personal information is collected.
Provide notice about the site’s information collection practices and get the parent’s consent prior to collecting information from
the child.
Give the parents the option of whether or not the child’s information can be shared with others.
Allow the parents access to the information collected from the child and permit the parent to delete the information or prohibit
future collection of the child’s information
Collect only the information that is reasonably necessary to participate in activities such as games, contests, etc., and
Maintain the confidentiality and security of personal information collected from the children.
How do attackers target online shoppers?
There are three common ways that attackers can take advantage of online shoppers:
Targeting vulnerable computers – Use anti-virus software, a firewall, and anti-spyware software. This will help protect you
against viruses and malicious code that could allow attackers to steal or modify the data on your computer.
Make sure to keep your virus definitions up to date. Spyware or adware hidden in software programs may also give attackers
access to your data, so use a legitimate anti-spyware program to scan your computer and remove any of these files.
Keep software, particularly your Web browser, up to date – Install software patches so that attackers cannot take advantage of
known problems or vulnerabilities. Many operating systems offer automatic updates.
Evaluate your software's settings – It is especially important that you check the software that connects to the Internet
(browsers, e-mail clients, etc.). Apply the highest level of security available that still gives you the functionality you need.
Creating fraudulent sites and e-mail messages - Unlike traditional shopping, where you know that a store is actually the store it
claims to be, attackers can create malicious Web sites that mimic legitimate ones or create e-mail messages that appear to have
been sent from a legitimate source. Charities may also be misrepresented in this way, especially after natural disasters or d
during holiday seasons. Attackers create these malicious sites and e-mail messages to try to convince you to supply personal and
financial information.
Be wary of e-mails requesting information - Attackers may attempt to gather information by sending e-mails requesting that
you confirm purchase or account information. Legitimate businesses will not solicit this type of information through e-mail.
Intercepting insecure transactions - If a vendor does not use encryption, an attacker may be able to intercept your information as
it is being transmitted. Make sure your information is being encrypted before you use your credit or debit card or provide other
such information. Many sites use SSL, or secure sockets layer, to encrypt information. Indications that your information will be encrypted include a URL that begins with "https:" instead of "http:" and a lock icon in the bottom right corner of the window.
The lock should look similar to this
Keep private information private. Smart surfers don't disclose personal information unless they know who's collecting it, why,
and how it's going to be used. And they never disclose their password.
Look for a privacy policy. If you don't see one - or if you can't understand it, consider taking your business elsewhere.
Be skeptical of any company that doesn't clearly state its name, street address and telephone number. Check it out with the local
Better Business Bureau, consumer protection office, or state Attorney General.
Make sure the company is on a secure server by noting whether the Web address starts with "https." Check for a padlock icon at the bottom of the browser. Click on the icon and you should see the site address. This address should match the Web site address at
the top of the page. If they don't match, you may be at a fraudulent Web site.
Read the fine print and all relevant links. Fraudulent promoters sometimes bury the disclosures they're not anxious to share by
putting them in very small type or in a place where you're unlikely see them.
Do business with reputable vendors. Because it's easy to fake e-mail addresses, be mindful of who you're listening to or talking
with before you provide personal and financial information. Get to know online merchants. Be cautious of a company that claims
to have a secret connection overseas or doesn't allow e-mail replies. Make sure that you are interacting with a reputable, e
stablished vendor. Some attackers may try to trick you by creating malicious Web sites that appear to be legitimate, so you
should verify the legitimacy before supplying any information Locate and note phone numbers and physical addresses of
vendors in case there is a problem with your transaction or your bill.
When bidding in an Internet auction, especially for a valuable item, check out the seller and insist on paying with a credit card
or using an escrow service.
If you’ve bought or sold an item or service on line, look at the check, contract, application, brochure, etc. to find the
conditions you're agreeing to if you cash the check or accept the service. Read your phone bill carefully for unexpected or
unauthorized charges.
Use a credit card - Unlike debit cards, credit cards may have a limit on the monetary amount you will be responsible for paying if your information is stolen and used by someone else. You can further minimize damage by using a single credit card with a low
credit line for all of your online purchases. Dispute unauthorized charges on your credit card bill by complaining to the issuer of the card. Federal law limits your liability to $50 in charges if your card is misused.
Don't download any program to access a so-called "free" service without reading all the disclosures carefully for cost
information. Just as important, read your phone bill carefully and challenge any charges you didn't authorize or don't understand.
If you use an online travel and vacation service, get references on the company and get trip details in writing, including the
cancellation policy, before signing anything.
Take advantage of security features - Passwords and other security features add layers of protection if used appropriately.
Check your statements - Keep a record of your purchases and copies of confirmation pages, and compare them to your bank
statements. If there is a discrepancy, report it.
Never share your Internet passwords with anyone. Use different passwords for different Web sites.
Question out-of-this-world claims. Claims like "you can earn over $50,000 a month" or "lose weight without dieting" suggest a
scam. Be wary of any company that makes a product or performance claim that's unlikely or just plain hard to believe.
Watch the .exe files. Secret programs may exist in files you download, especially .exe files. These files could harbor malicious
code that could ruin your hard drive, hijack your modem, or collect information about you without your knowledge.
Inexpensive "filtering" software programs help make sure your family members are protected from sites that may not be age or
interest appropriate.
Do not provide your Social Security number, birth date or mother’s maiden name in an e-mail or within a Web site. When an e-mail asks for this kind of information, this is a sure sign that the sender is up to no good.
Practice safe behavior when it comes to your e-mail. If it looks weird, or comes from an unknown person, don’t open it. Even
opening what you think is an e-mail from a friend or relative could unleash a virus or a Trojan onto your PC.
During the holiday season (and year round) check your credit card and bank account transactions online. Don’t wait for the bill to come in the mail. A little bit of monitoring can stop unapproved use of your credit cards or criminals dipping into your bank a
accounts. It’s also a wise thing to check your credit reports on a regular basis for incorrect information that may be a sign of
identity thieves at work.
Keep printouts of the Web page describing the item you ordered and the price you're paying, any e-mail messages, and the page that shows the seller's name, address and telephone number.
Never buy anything, no matter how good the advertised price is, from an unsolicited e-mail (spam). When tempted to buy that
replica watch because that’s exactly what your friend wants, just imagine that same item being sold from a cardboard box out of
the car trunk by an unsavory looking individual. Also remember, buying from a spammer could cost much more than the price of that
cool replica watch -- giving your credit card information to unknown entities over the Web may place your identity in jeopardy.
Turn off the PC when you’re done shopping. With the proliferation of broadband Internet access, many users now leave their
computers on ‘round the clock. This opens up the door for criminals who, once they’ve infected your PC, will turn it into their
“robot” and commit cyber crime.
Password Tips
Your password is a unique string of characters that you use along with a User ID to gain access to an information resource such as your electronic banking. Passwords are an important aspect of information security because they are the first line of defense in protecting your personal and financial information. Passwords are intended to be difficult to guess but still easy to remember. A poorly chosen password may result in the compromise of confidential information.
To protect yourself it is a good idea to protect your password by:
creating a strong password.
not sharing your password with anyone.
not writing it down and
if there is suspicion that it may have been compromised, change your password immediately.
Why should I worry if someone has my password?
Your user ID and password identify you and your access rights (what you have permission to see and do) to data on a server. If someone obtains your User ID and password, that individual can imitate you without the system knowing. If someone stole your password, that person could pretend to be you while doing unauthorized or illegal activities online. Also, someone with your password may be able to make your account unusable to you.
Be sure to place the numbers, punctuation, and/or symbols throughout the password, not just at the beginning and end.
Avoid using a word contained in any dictionary, spelling list, or other word list in any language. Hackers have “dictionaries”
that can crack these passwords in a matter of seconds.
Make sure your password is not a word in any slang, dialect, jargon, etc.
Avoid using personal information. For example, your name, your user ID, the name of a spouse, child, friend, or pet.
Avoid using information easily obtained about you, such as license plate numbers, telephone numbers, Social Security numbers, the
brand of your automobile, the name of the street you live on, etc.
Avoid word, number or keyboard patterns like “aaabbb”, “qwerty,” “123321”
Avoid repeating patterns like SwC@QE1, SwC@QE2, SwC@QE3, etc.
All the same characters or digits, or other commonly used or easily guessed formats.
Avoid using simple transformations of a word such as reversing the spelling, changing uppercase to lower-case or vice versa, or using all capitalization.
Try to create passwords that can be easily remembered. Resist the temptation to stick your password to your monitor or desk, tape
it to the flat board that pulls out from your desk, etc. Passwords should never be written down or stored on-line.
Avoid using the same password for multiple purposes such as your electronic banking and your e-mail account or an online store.
Watch out for anyone trying to shoulder surf (When someone watches you type in your password so that they can use it later).
Avoid telling anyone your password.
If there is suspicion that it may have been compromised, change your password immediately.
Do you have any tips to help me remember my password?
We all have numerous passwords that we have to remember. You should create passwords that can be easily remembered. One way to accomplish this is to create a password based on your favorite song (title or lyrics), poem, literary title, a slogan, or other phrase. For example, the phrase might be, “Am I late again?” and the password could be “Mil8@g@in?” or some other variation.
Have you every driven down the highway and looked at the vanity plates on the car in front of you? For example, “2thAke”. This car probably belonged to a dentist.
Create by using the first letter of each word. For example, "To Be Or Not to Be" with numbers and punctuation becomes “2bRn@t2b”. Instead of writing down this password, use a code to jog your memory. For example in this case, “Shakespeare”. Have some fun and create a password as unique as you are. C,EZ@skanB!
WARNING! Do not use these examples as passwords! They are used frequently as examples and are too well known to be safe for you to use!
Be Aware of Your Environment
Look at your surroundings for anything or anyone suspicious including, but not limited to, obvious hiding places, people standing too close, and loiterers. Use ATMs that are in well-lighted and open areas. If lights around the ATM are not working, go to a different machine. Lock your car before you leave it.
Lock Your Doors and Windows at Drive-Through ATMs
Roll up all but the driver’s window and pull up close to the machine to prevent anyone from walking on that side of your car.
Examine the ATM Before Inserting Your Card
Do not use the ATM if you notice anything unfamiliar or usual indicating it may have been altered. Hidden cameras or machines that read the magnetic strip on your card can be used to access your bank account.
Be Aware of Your Personal Security
Be exceedingly careful when a stranger offers to help you, even if you’re having problems with the transaction. If you feel the ATM is not working properly, cancel your transaction, remove your card and go to another machine. Do not allow anyone to distract you while you are at the ATM. Walk, run, or drive away immediately if your instincts tell you to do so. Be considerate of others privacy and security. When you’re waiting in line to use an ATM, stand at least six feet away from the person using the machine.
Treat Your ATM/Check Card Like Cash
Always keep your card(s) in a safe place. Your ATM/Check Card is convenient for gaining access to your account. Protect your card to reduce the risk of fraudulent use. Have your card ready before you approach the ATM. Do not count your cash in public but do carefully secure your card and cash in your wallet before leaving the ATM. Carry your card separate from your wallet to avoid a loss if your wallet is stolen. Reduce the number of Check Cards and ATM cards you carry. Keep an emergency phone list of Check Card companies to contact in case your Check Cards are lost or stolen.
Keep Your PIN Secret
Your ATM/Check Card will only work at an ATM or POS Terminal (for debit transactions) with your Personal Identification Number (PIN). Memorize your PIN and never write it on your card or store it with your card. Do not reveal your PIN to anyone or let someone enter your PIN for you and never give you PIN over the telephone, Internet or e-mail. Avoid letting anyone see you enter your PIN by shielding the keypad with your hand.
Take Your ATM Receipt With You
Failure to take ATM receipts may result in account tampering. You do not want anyone to have access to your account without your permission. Save your receipts and compare them to your monthly statement to assure there are no fraudulent transactions. The sooner you find a problem, the sooner you can take action and stop losses.
Be Smart When Your Sharing Your ATM/Credit Card Information
Take extreme caution when giving your ATM/Check Card number to anyone soliciting business over the telephone, e-mail or Internet unless you initiate the transaction. Do not key in your card number on line unless you see a closed lock at the bottom of your browser, indicating the site is secure. It should look something like this:
Properly Dispose of Old Cards
After you have activated your new card, cut up your old card before throwing it away. Cut through the numbers and magnetic strip making them unreadable.
Promptly Report Lost Or Stolen Cards
If your ATM/Check Card gets jammed, retained, lost or stolen, you should contact OmniAmerican promptly. By reporting this information, you may reduce the chances of your card being used improperly. Once you notify OmniAmerican of the missing card and fill out a new card application, you will be issued a replacement.
Keep Your Contact Information Accurate With OmniAmerican Bank
It is very important to make sure your address and phone number on your statement are correct. Please contact a Personal Banker if you need to make adjustments.
For Information about opening
any OmniAmerican account, please contact us.
Local (817) 335-OMNI |
Metro (817) 498-OMNI |
Nationwide (866) 670-OMNI
ABA/Routing # 311981533
in the lower right-hand corner (Microsoft Internet Explorer) or in the right end of the address bar (Firefox 2) or in the top right corner (Safari) of your browser to determine if encryption is being used on any Web page you are viewing. Any Web address beginning with "https://..." indicates the page you are viewing uses encryption. The "s" stands for "secured."
