Online & Mobile Banking Security Best Practices

Shore United Bank implements layered security controls to help ensure the security of its online and mobile banking services. However, it is also imperative that each customer utilize (when available) the following list of security best practices to provide further account protection.

General Security Best Practices

Note: Shore United Bank will NEVER ask for sensitive information, such as account numbers, access IDs or passwords, via e-mail. Shore United Bank will not contact you via text message or email about your online/mobile banking accounts, unless you have previously agreed to this method of communication. If you receive a suspicious text or email message claiming to come from Shore United Bank, contact 1-877-758-1600 to verify the legitimacy of the message.

Security Do’s & Don’ts

• Don’t give your Social Security number or other personal information to anyone who calls you.
• Don’t use public or other unsecured computers for logging into your account.
• Don't overshare your personal information on social media, especially information used by your bank or other companies that is used to verify your identity.
• Do verify the validity of online banking sites prior to accessing them for the first time.
• Do verify your last login date/time every time you log in (when available).
• Do review account balances and transactions regularly (preferably daily) to confirm transfer, payment, and other transaction data is correct.
• Don’t open attachments or click links in emails or texts that you were not expecting.

Mobile Device Security

• Our mobile apps have many built-in security features, but the best defense starts right on your phone. Use passwords that are tough to guess — don’t use “password” or “123456." A random password that is at least six digits works the best, as well as including both upper and lower case letters, numbers, and special characters.
• If your phone is stolen or lost, saved passwords and PINs in your browser can give someone access into your account. If you want to save usernames and passwords on your phone, it is better to do it in an encrypted app that requires a password or fingerprint for authentication. Using a password app allows you to create different passwords for every site you use.

Account Access Security

• When creating a password to access your account, don’t include personal information, such as your name, address or date of birth.
• Passwords should not include common words or simple number combinations.
• don’t share username and password information with third-party providers.
• Utilize text or email alerts when available, such as:
  - Profile Update Alert
  - Failed Login/Wrong PIN Attempt

Note: One Time Password (OTP) codes are required for certain actions on your account.

Banking Application/Session Security

• Utilize multi-factor authentication (MFA) whenever possible when accessing online/mobile banking applications.
• Avoid using public Wi-Fi for financial transactions unless you use a secure, private connection, via a virtual private network (VPN). If you want to connect to your account while out and about, it’s a good idea to use your cellular network instead of a Wi-Fi hotspot because this is a more secure option and your data will be better protected.
• Enable device locking when inactive.
• Disable automatic saving of your username and password, commonly referred to as AutoSave or AutoFill.
• When you have completed a transaction, ensure you log off to close the connection.
• Keep your operating systems and software application (e.g., internet browser, mobile banking applications) up to date with the latest patches/software releases.

Security Incident Response Steps

Notify Shore United Bank as soon as possible, if you suspect that your account credentials have been compromised.

Use the Block/Reissue Card feature (when available), if you detect unauthorized transactions on your account.

Utilize the Dispute Form provided to report unauthorized transactions to Shore United Bank.