Security Statement

Core Bank is proud to offer Online Banking and Business Online Banking to our customers. With Online Banking you can access your accounts, make transfers between accounts, make transfers to an account at another institution, and pay bills online.

Secure Log-On

Multi-Factor Authentication: Multi-Factor Authentication is another layer of security added by Core Bank to help protect you online. This solution is implemented to help stop criminal information attacks such as phishing and identity theft. Multi-Factor Authentication adds an extra step of safety by texting or calling your phone number on file to provide a security code.  Once the code from your phone is input into Online Banking you will then have access.  You will only need to complete the Multi-Factor Authentication step under these circumstances:

  • The first time logging in to Online Banking
  • When you log in from a new device or network

 

PROTECTING YOUR USER ID AND PASSWORD

When setting up or changing your password never use dates, names, social security numbers, or other easily identifiable words.  We recommend going with a phrase or sentence with special characters and numbers – e.g., Lovecoreb@nk2013!, Ba$eballRock$32, etc. Don’t write your username and password down, especially where it can be found by someone else. There are many online and mobile applications that can help you store this information safely through a password manager. Your password will never expire, but we recommend you change your password every 60-90 days. Core Bank will NEVER send you an e-mail or call asking for your User ID and Password.

 

“PHISHING,” SPOOFS, HOAXES AND OTHER DECEPTIVE E-MAILS

Don’t use email to send anyone personal or confidential information as it could be intercepted.  Be careful when responding to e-mails that look like they are from us or another financial institution. Many bad actors or hackers will send you an e-mail that will ask you to click on a link that takes you to a web site (or pop-up window) where you will be asked to “confirm,” “verify,” “update” or otherwise provide sensitive information (such as your account number, password, PIN, or social security number). These links, web sites and pop-up windows may look like ours, but will really just take you to the thief (sometimes you can tell because there will be misspellings in the link or web site address). Clicking on one of these links can expose your computer to viruses and spy-ware, even if you don’t supply the sensitive information they want. Core Bank will never send you an email that asks you to verify an account number, password, PIN or social security number. If you receive such a request, it is probably fraudulent. If you have any doubts about whether an email from us is authentic, don’t reply to it, don’t open any attachments, and don’t click on any links. If at any time you are not sure about the security or safety of an email or if you notice something out of the ordinary with our website please let Core Bank know immediately by calling our Virtual Center at 1-877-968-7672.

 

ENCRYPTION

All information within Core Bank’s website uses the SSL (Secure Socket Layer) protocol for transferring data. SSL is encryption that creates a secure environment for the information being transferred between your browser and Core Bank.

SSL protects data in three key ways:

  • Authentication ensures that you are communicating with the correct server. This prevents another computer from impersonating Core Bank.
  • Encryption scrambles transfers data.
  • Data integrity verifies that the information sent by you to Core Bank wasn’t altered during the transfer. The system detects if data was added or deleted after you sent the message. If any tampering has occurred, the connection is dropped.