Protect Your Small Business from Corporate Account Takeover
Corporate account takeover is a type of identity theft where criminals steal online banking credentials and take control of a business's bank account. Although there are several methods used to retrieve online credentials, the most common is the use of malware to “infect” a company computer. Malware is commonly distributed via email, websites, and social media accounts. For businesses with low malware protection support, malware can go unnoticed for weeks or months.
If you believe your business's account information has been compromised, please report it immediately to Origin Bank's Customer Support Center at 888-292-4037.
How can I protect my business from threats?
There are a number of steps you can take to help safeguard your business bank accounts.
Computer/Online Banking Security
- Use tools such as firewalls, anti-spyware, and encryption of laptops and hard drives to protect your network.
- Block access on network computers to high-risk websites such as adult entertainment, online gaming, social networking, and personal email.
- Dedicate one computer to online banking and cash management activity. Make sure this computer is not connected to the business network.
- Do not conduct online banking activities from “free” Wi-Fi spots like airports or internet cafes.
- Make sure employees know that Origin Bank will never contact them by email or text message requesting them to verify account information or ask for passwords.
- Educate employees on cyber security and email best practices.
- Use dual control for originating and authorizing ACH and wire transactions.
- Monitor and reconcile accounts online daily; at a minimum, review pending or recently sent ACH files and wire transfers.
- Require employees to have strong passwords and require they change passwords frequently both on their computers and online banking accounts.
- Install and configure a quality software security suite, and keep it updated. Be sure that the product contains multiple protection methods, including anti-virus, anti-spyware, and web protection. Keep in mind that most products are subscriptions and need to be kept valid. While important, don’t rely on anti-virus security software as the sole protection for your computer.
- Keep your computer up to date by applying software updates (patches) as soon as possible. Pay special attention to "plugins" like Flash, Java, and Acrobat Reader. You may have to apply updates to these items manually. Malware may use outdated versions of these plugins as a "gateway" to infect your computer.
- Don’t log onto your computer as an "administrator". Many modern operating systems allow you to use your computer as a "limited" user, and selectively increase permissions as needed. This may prevent unwanted software from slipping in without your approval.
- Don’t ignore warnings from security software. Take the recommended actions (if offered).
- Consider using a dedicated computer for financial needs, and keep that computer up to date and secured. Don't use the dedicated computer for other Internet purposes, like email and casual web surfing.
- Only install reputable, legal versions of software on your computer.
- Don’t change computer or Internet browser settings to values that weaken security.