Password Security
When was the last time your changed yours? The security of our customers’ information is our number one priority. With continued news of password breaches around the country, password re-use attacks will happen again
If you are using the same password for accessing multiple accounts that require you to enter a User ID and Password, like your online banking account, we strongly recommend that you change those passwords as soon as possible. We recommend using strong and unique passwords for every online account you have. Passwords that can't be found in a dictionary or are part of public information about you, or the most common password of all, "password".
Here are some helpful tips on how to stay secure:
- Review your accounts for suspicious activity and report any fraudulent charges to us immediately.
- Avoid clicking on links or downloading attachments from emails when you aren't sure of the sender
- Always be cautious of unsolicited communications that ask for your personal information
- Never log in to a sensitive account from a public computer, such as computers in a cyber cafe, hotel lobby or conference hall.
- If you have no choice but to use a public computer, change your password at the next available opportunity you have access to a trusted computer.
Monitoring Your Account for Suspicious Transactions
Rockland Trust’s 24-hour Fraud Monitoring Service has systems and controls in place to detect fraudulent activity. If we detect a suspicious debit card transaction on your account, we will contact you to verify its legitimacy. We will try to contact you to validate the transaction(s) through a text message, phone call, or email.
If a fraudulent transaction is attempted on your account, you can expect to be contacted using the following security alert sequence:
- SMS Text Message
- Phone Call
- Email
All customers who currently have an active debit card will automatically be enrolled in this free service. The message will state it is from Rockland Trust and will ask you to validate the merchant, amount, date/time, and the location of the purchase. Please note that Rockland Trust will never ask you to send account information via text or email. You should never reply to text messages or emails that ask you to send account information.
To confirm that Rockland Trust has your most up to date phone number and email, please contact our Customer Information Center at 508.732.7072.
Protect your finances: Update your browser.
Secure your online experience by updating your browser. Browsers are a key part of keeping your online experience and financial information safe. Browsers become more secure with each release. No matter what browser you use, make sure you have the latest version installed.
Not sure if your browser is the most current, click on the GO button to find out.
Recommended Security Tips for Computer Safety, Your Business, and Your Mobile Devices
Computer Safety:
- Install an efficient virus scanning tool - An important tool is an efficient virus scanning software that is continuously updated online and thus able to detect new viruses.
- Turn on your personal firewall - A personal firewall is a program that monitors all incoming and outgoing traffic from your PC and can help protect you against malicious software that may be hiding in suspicious emails or suspicious attachments.
- Protect sensitive data when sending it over the internet - As a general rule, never send sensitive information over open networks unless it is encrypted.
- Be sure you know WHO you are dealing with - You should divulge information only if you are certain who is receiving it and what will happen to it. Be suspicious of any departure from the usual routine, such as a request to enter your PIN or password at a time you don't expect.
- Be careful when accessing sensitive information - Never access your bank or other financial services information at internet cafés or other public Wi- Fi zones.
- Be careful with sensitive data - Protect your passwords and PINs from unauthorized use and never disclose them to anyone. Keep your Social Security card in a safe place instead of carrying it in your wallet.
- Choose a secure password - One way to help safeguard your identity and personal information is through advanced password protection. Here are some suggestions for safer passwords: A good password is at least eight (8) to ten (10) characters long and contains a combination of upper and lower case letters, numbers, and special symbols.
- Change your passwords regularly - DON'T - use your birth date or your Social Security number, account number, or names of family members. Avoid - Proper names, familiar terms (i.e. terms which can be found in a dictionary) and the repetition of single characters (e.g. AAAAAA, 111111 or 123456).
- Only use programs from a trustworthy source - Don't download programs from the internet onto your hard drive unless you can be sure the source is reliable.
- Use up-to-date program and operating system versions - Use only an up-to-date version of your preferred internet browser and PC operating system. Only in the most recent versions will all known security holes have been filled. Also, you should install these bug fixes or patches as soon as possible to protect your PC from known vulnerabilities.
- If it sounds too good to be true, it probably is - Be cautious of unsolicited emails from overseas - it is much harder to prove legitimacy of the organizations behind the emails.
- Always log off online banking or other online services you use when finished. Do not just close or shut-down your browser.
Our top rules to protect your business assets
- Train employees on security best practices and how to report suspicious activity. Consider conducting periodic mock-phishing exercises where employees receive emails or attachments that simulate malicious behavior.
- Metrics can be captured on how many potential incidents would have happened had the exercise been a real attack. Use these findings as a way to discuss the growing security threats with employees.
- Offer security training to employees to help understand threats, and measures they can take to protect the organization.
- Provide regular reminders to employees on phishing and spam campaigns and that they shouldn't open suspicious attachments or links from both work and personal emails.
- Train employees in charge of corporate banking to never provide banking credentials to anyone. Banks will never ask for this information.
- Conduct an annual internal risk assessment to assess the adequacy of your internal controls as they apply to security risks.
Mobile Device Safety:
- Keep security software current . Having the latest mobile security software, web browser, and operating system are the best defenses against viruses, malware, and other online threats.
- Mobile devices can contain tremendous amounts of personal information. Lost or stolen devices can be used to gather information about you and, potentially, others.
- Secure your mobile device. Use an auto-lock and a strong passcode to lock your phone.
- Think before you app. Review the privacy policy and understand what data on your device an app can access before you download it (such as location, social networks etc.).
- Be selective . Only give your mobile number out to people you know and trust and never give anyone else's number out without their permission.
- Be cautious while online. If you're online through an unsecured or unprotected network, be cautious about the sites you visit and the information you release. Limit the type of business you conduct at Wi-Fi hotspots and adjust the security settings on your device to limit who can access your phone.
- Look for web addresses with https://, which means the site takes extra measures to help secure your information. http://" is NOT secure.
- When in doubt, don't respond. Fraudulent texting, calling, and voicemails are on the rise. Just like email, requests for personal information or immediate action are almost always a scam.
- Always log off online banking or other online services you use when finished. Do not just close or shut-down your browser.
You may have additional protection provided to you under federal Regulation E. In many cases, you may be able to dispute unauthorized debits to your account. However, it is important to note that not all transactions initiated through online banking are subject to Regulation E. For more information on these protections, or to determine if these protections apply to a specific transaction, please review the Electronic Fund Transfer Initial Disclosure received at account opening or feel free to contact our Customer Information Center at 508.732.7072.
PLEASE NOTE: Business accounts are not afforded protections under Regulation E.
