Combined Attacks Can Be A Threat To Business Customers

In recent months the FBI has reported an increase in nationwide malware attacks that are aimed at the accounts of corporate or business banking customers — usually those who engage in frequent wire transfers. These sophisticated attacks often combine both malware and social engineering as a means of getting around advanced security features like multi-factor authentication.

Spread initially through spam or phishing, unsuspecting recipients can inadvertently download the malware file onto their computer by simply opening the received message or by executing an attachment. Once infected the Trojan intercepts sensitive information, such as banking credentials, but is often combined with other strategies like “pretexting” or “baiting” in order to acquire the additional information needed to complete a banking transaction. For instance, hackers might contact a victim, purporting to be their financial institution, relate that their account has been compromised and induce the unwitting subject to provide additional information such as pin numbers or answers to security questions — allowing them to then circumvent the system security.

To protect yourself from threat such as these, it is recommended that you:
  • Protect your computer with strong security software and make sure to keep it up to date. Utilize security products that integrate anti-virus, anti-spyware, firewall, anti-spam, anti-phishing, and backup technologies that work together to combat today’s advanced multi-faceted attacks.
  • Keep your operating system and software up-to-date with the latest patches.
  • Do not follow unsolicited web links in email. Refer to the United States Computer Emergency’s Readiness Team’s (US-CERT) Security Tip Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.

If you suspect identity theft or fraud involving your North Shore Bank account:

  1. Contact North Shore Bank at (978) 538-7000.
  2. Contact the following three credit bureaus to have a fraud alert placed on your credit report.
  3. File a complaint with the Federal Trade Commission at http://www.ftc.gov
  4. File a report with your local law enforcement agency