Online Security Tips

Print

Online Security

12/20/2013 TARGET BREACH ALERT:  First State Bank and Trust Company is committed to protecting your information, and is monitoring the Target breach closely.  The breach occurred between November 27 and December 15, 2013.  We have also been made aware of possible ACH fraud affecting Target customers who participated in the Target Red Card program. Target Red Cards are linked to member’s accounts and work like a check by drawing funds from a customer’s checking account via ACH.  While there is no guarantee that this fraud is directly associated with the Target compromise, it is highly suspicious.   If you have a Target Red Card, please contact Target directly at  1.888.755.5856 (for U.S. customers) or from outside the U.S.. call Collect 1.612.307.8622.  We also recommend that you monitor your accounts closely if you shopped at Target during the dates affected by the breach.  Please notify us immediately if you discover any suspicious activity.  For more information on the breach, please visit Target's corporate website by clicking here.  Thank you.

First State Bank and Trust Company, Inc. is dedicated to keeping your personal information safe and secure. Here are some information on how we keep your sensitive information and online banking transactions secure. We have also included some tips to help you have a safer online transaction experience, whether it is using NetTeller, or using any other website that uses your sensitive personal information:

CLICK for specific tips in each area:

NetTeller Security

Encrypted Information – when you send an email to us while logged into NetTeller, this request is encrypted and requires a “key” to decode the information to be reviewed. When we respond we encrypt this information that is then decoded by NetTeller when you receive it.

Password Security – you are allowed a certain number of attempts to log into your account. If you fail to enter your password after these attempts, you will be locked out. This feature is designed to keep unwanted persons out of your NetTeller account. If you have forgotten your password you can reset it online if you have already set this feature up in NetTeller under “Options.” If you have not set up your account to reset your password online, please call us at (573) 333-1700 for assistance

Because NetTeller security relies upon password-protection, it is VITAL that you keep your ID and PIN confidential. We recommend that you:

  • Keep your NetTeller ID and password in a safe & secure place.
  • Don’t reveal your ID or PIN to anyone else, including family members.
  • Change your NetTeller Alias name and password periodically for extra security.
  • Don’t walk away from your computer or visit other sites without exiting completely out of your browser.
  • Turn off the AutoComplete option that allows your browser to save user names and passwords.

Multi-factor Authentication – When you access NetTeller for the first time, you will be asked to select a watermark image. This image will tell you that you are logging onto our secure site. Every time you log into NetTeller after that, regardless of your location or device, you will see this image. If you see another image instead of the one you selected, check to make sure you are entering your correct information (e.g is your caps lock on). If you are entering your correct information, and the image still does not match, STOP what you are doing & log out. Call us at (573) 333-1700 immediately.

New NetTeller users – After a brief monitoring period, NetTeller will ask you to set up a series of authentication questions. You may be asked to answer these questions from time to time if you are banking from a new location or if the activity you complete seems out of the ordinary for you. Please note – our iPhone app will not work until the challenge questions are set up. To use the app right away please contact us at (573) 333-1700.

Automatic Log Off – If you remain inactive during your NetTeller session for a period of time, you will be asked to sign back into NetTeller before you can proceed.

Website Security

Secured website – When you access NetTeller, or any page on our bank website, the pages are located on a secured server. You will notice all our pages start with https:// - the “s” stands for “secure”.

In addition we use Pharming Shield to monitor our website 24 hours a day, 7 days a week. Pharming Shield detects the widest variety of pharming and identity theft activity, providing protection against website hijacking, website defacement, SSL theft and man-in-the-middle attacks.

Online Applications and Forms – Our online applications and forms are located on secured servers. All the forms and applications are sent in via a secure connection. If you are having trouble submitting your online application or form please call us at (573) 333-1700. Please DO NOT submit your form or application through regular (unsecured) email.

Email – We strongly recommend that you do not include sensitive or personal information through regular email channels. This includes social security numbers, account numbers, or credit card numbers. This also includes forms or applications with sensitive information. Unsecured email can be intercepted by malicious parties. If you need to give us this information, please call us at (573) 333-1700.

Recommend Browsers

In order to maintain data security in an Internet environment, NetTeller requires the use of a browser with 128-bit encryption technology. Our website and mobile website (https://www.fsbtrust.mobi) work best with Internet Explorer 9 or higher, Safari 5.1.7 or higher, and Firefox 20.0 or higher. 128-bit encryption must be enabled on these browsers.

  • For additional data security, if a user takes no action in NetTeller for 10 minutes, the user will automatically be logged off of NetTeller.
Password Tips
  1. Try to use a password that you can remember without writing it down. Instead of writing down your password, write down a word or phrase that will remind you of the actual password.
  2. Choose a password that is not too closely associated with yourself. Personal information such as addresses, telephone numbers, family or pet names, and local sports teams are easily guessed, and, therefore, make poor passwords.
  3. Longer passwords are tougher to crack therefore we require passwords 8-12 characters in length. Use a combination of both upper and lower case letters and numbers.
  4. Avoid single dictionary words.
  5. Never enter passwords with someone else looking at your keyboard or screen.
  6. If you even suspect a leak, change your password.

Ideas for creating passwords:

  1. Use combinations of two or more short and unrelated dictionary words, preferably with numbers or other characters mixed in (for example, "CAT$PIE", "BAG3WET"). Or, try replacing letters with similar numbers that you can remember using (replace the letter I with the number 1, or the letter O with the number zero, or the letter b with the number 8, or the letter S with the number 5, for example).
  2. Instead of single dictionary words, use the first or last letters of the words in a familiar phrase, song, or poem
  3. Use every other letter in a phrase, until you have enough letters: "So LiTtLe TiMe, So MuCh To Do" yields "SLTLTMSC".
  4. Use a word with its mirror-image, repeating or dropping letters to achieve the required length. (Examples include: "PIG#GIP#PI", "TRAD-DART", "LOG%GOL".)

First State Bank and Trust Company Inc., will never spontaneously call, email or text you requesting your user name, password, account numbers or other secure information. If you receive any unsolicited message claiming to be sent from First State Bank and Trust Company, Inc. or if you are not sure if a message you received was sent from First State Bank and Trust Company, Inc., please do not click on any links or attachments and call us to verify whether the call, email or text was legitimately from us.

For more information about protecting your personal financial information, please visit:

For assistance developing an information security plan for your business including a recommended annual risk assessment and review of security controls, please visit: