Mobile Banking Security Tips
Treat your mobile device as you would your wallet. You wouldn’t leave your wallet on a table in a public place and walk away. Your mobile device contains personal, private information that you don’t want falling into the wrong hands – and if you’re banking with it, it IS your wallet.
Secure your mobile device with a password or a PIN. This will make it more difficult for an unauthorized individual to access it and the personal information it contains.
- Set your mobile device to lock when not in use and to require a password or PIN to unlock it
- Avoid using easily identifiable personal information for your password or PIN, such as a pet’s name or a birth date
- Use symbols and numbers to make passwords more complex
- Change your password or PIN frequently
Take advantage of the other security features on your mobile device.
- Enable features like Find My Phone, remote disable and wipe, and encryption if they are available
- Set the security options on your phone to NOT auto-fill your User IDs or passwords
- Ask your mobile provider what anti-virus or other security apps are offered and download and use them
Be careful how you use your mobile device.
- Do not “root” or “jailbreak” your mobile device; this alters the firmware on the device and could make it vulnerable to malicious code
- Do not email or text message any personal information or login credentials; we will never ask you for this information via email or text
- Do not share your mobile banking login credentials with any unauthorized person
- Do not click on links or scan QR codes about which you are unsure
- Be cautious when downloading apps:
- Download only from reputable sources such as your provider’s app store to avoid infecting your mobile device with malicious code; and
- Always check the permissions the app requests to ensure those permissions match the features the application claims to provide
- Download operating system and app updates promptly; they often contain fixes to security flaws
- Be aware of your surroundings when banking; be sure no one is “shoulder surfing” (looking over your shoulder) while you are entering your username and password
- Do not bank over public networks; they are NOT secure (you can disable your Wi-Fi and switch to a cellular network for a more secure connection)
- Set your Bluetooth device to “undiscoverable” (which will render it invisible to other nearby devices, which could include an attacker’s device)
- Disable Bluetooth, Wi-Fi or infrared interfaces when not in use (these interfaces can be used by nefarious individuals to compromise your mobile device)
- Always log out of your mobile banking app after completing your banking business
Minimize stored information on your mobile device.
- Regularly delete text messages and unneeded files and clear your browser history
- Before discarding or selling your device, remove all of your information from it
If your mobile device is lost or stolen:
- If you’ve enabled features like Find My Phone and remote disable and wipe, use them. If not, notify your mobile provider immediately; the provider can disable the device to protect the information on it
- Notify us at 650-488-2512; we can immediately remove the permissions that allow your mobile device to access your accounts
- If you use your mobile device for online banking as well as mobile banking, change your online banking password as soon as you can
- Notify the police if you know the device was stolen
- Additional information from the FCC is available here: http://www.fcc.gov/guides/stolen-and-lost-wireless-devices