Your security is our top priority and there are number of things behind the scenes you may not know we do for your protection. From encrypted data to account lockout features, learn more about the ways we help protect you and your accounts.

We highly discourage it. Hundreds of millions of electronic records are lost or stolen in data breaches every year, including usernames, passwords and personal information. Hackers use a tactic called credential stuffing in which they input stolen credentials from one online service into as many other services as possible with the hope that the same username and password have been used elsewhere on the web. This puts anyone who has used the same username and password for multiple services at risk.

Information security experts recommend 9–12 characters (longer is always better), including some upper case letters, numbers and symbols. Try to use words or phrases that are hard to guess (not your first child’s name or your street). “Password1234” and other simple password combinations might be easy to remember, but they’re also easy to guess.

Phishing scams trick online users into giving away sensitive information such as online banking username and login. Fraudsters might send emails or text messages claiming to be a legitimate institution asking for personal information, and they’ll often use urgent language.

One of the most common examples is the fake password reset. A fraudster pretends to be your bank and claims that you must reset your password. They might include a link that navigates to a fake password reset page intended to steal your login information.

Bank Midwest never asks customers for private information such as a Social Security number, ID, address, username or password. Do not open or respond to any such emails, from us or from anyone else, and never send that information through email to anyone.

Other tips to help you avoid online phishing:

• Don’t respond to emails, open links or download attachments from unknown senders.
• Don’t open file attachments from known senders that are sent without any context. This could be a sign that the contact’s email has been hacked and the perpetrator’s using it to spread malware.
• Never send sensitive information over email.

If you’re worried about the validity of an email or text message sent on behalf of Bank Midwest, contact us directly at 888.902.5662.

Avoid writing down your username and passwords.

You’re much better off using a password manager.

Always log out of your latest online banking sessions.

This is especially true on public or shared computers.

Avoid using online banking on public computers. 

They could have keyloggers (which actually track user keystrokes) and other forms of malware installed on them.

Do not use online banking on public Wi-Fi.

And if you must, use a VPN, as this is only to make sure your information cannot be intercepted.

Bookmark our banking site.

This is a precautionary step that can help you ensure you’re always at the right spot, and not on a look-alike site designed to steal your information.  Use this direct Online Banking direct login link..

It’s about as secure as any other form of banking presuming you’re careful:

• Download your Bank Midwest app from a trustworthy source such as the Apple App Store or Google Play.
• Password protect your smartphone or tablet either with a PIN code or a biometric token such as a fingerprint or face scan.
• Use a long and complex password or set up a biometric login (e.g., Apple Face ID, or Touch ID).
• Don’t use your mobile banking app on public Wi-Fi.
• Be mindful of prying eyes when you’re banking on your device in a public space.

Yes, and you should. One of the ways Bank Midwest keeps your mobile app safe is by letting you opt-in to receive emails for a variety of different alerts. For example, you can choose to get an alert when your personal settings are updated, or if you change a mobile username or password. These alerts can help you quickly flag suspicious activity that could indicate someone other than you is accessing your account through mobile banking.

Learn more about online and mobile security alerts.

It’s up to you. Biometrics can represent a highly secure and more convenient alternative to traditional usernames and passwords on compatible devices. However, biometric login today is more of a convenience factor since most mobile banking apps, including the Bank Midwest app, can still be accessed with online banking credentials.

Customers using Apple devices can set up a Face ID or Touch ID, depending upon your device, to quickly log in using biometrics.

Password protect your device or setup a biometric login.

This will make it difficult if not impossible for anyone who isn’t you to log in. Remember, it’s not just your mobile banking app you should be worried about. Anyone who has your phone can access your money in other ways, such as hijacking your online shopping accounts.

Set up “Find My iPhone” or the Android equivalent, “Find My Device.”

This will help you locate your lost smartphone as long as the device is powered on and connected to the internet. It will also give you the option to wipe your device remotely. As drastic as that may sound, it may be necessary to keep your personal information secure. For this reason, we also recommend creating a backup for your device (either on a remote drive or in the cloud).

Disable mobile banking.

You can do this through the Bank Midwest online banking portal or by calling us at 888.902.5662.

See if you can find it with your device-finding feature. 

Who knows? A good Samaritan at the coffee shop may have turned your device in for you. See if you can locate it using a ‘find my phone’ option on your computer.

Wipe your device.

You have to know when to cut your losses. If you can’t find the device, it might be time to wipe it. It’s unfortunate, but it’s better than having your personal data exposed.

Update all of your passwords.

This probably isn’t necessary if you have used a passcode and also wiped your device, but it certainly can’t hurt. If you haven’t password protected your phone and/or you cannot wipe it, this is priority No. One.

Learn how to reset your Bank Midwest password (consumers).

Keep an eye on your account activity.

Bank Midwest works hard to flag questionable transactions, but no one knows your purchases better than you. Let us know the second you spot something suspicious. Do the same for your other accounts as well.

Look for the “s” in “https://” that comes before every website’s URL. 

It stands for “secure.” If you don’t see it, then don’t share any information with the site.

Be careful where you shop on the web.

Reference the Better Business Bureau, the Federal Trade Commission or online reviews to make sure a merchant you’re buying from for the first time is legitimate.

Only download apps from reputable app stores.

This will help eliminate the risk of downloading applications that are laced with malware or that are none secure.

Use an antivirus tool. 

It can help you detect keyloggers, trojans and other threats that are silently lurking in the background.

Backup data that’s important to you.

Use an external hard drive or the cloud, but just make sure that the files and information you hold dear aren’t lost forever.

Don’t carry your Social Security card on you.

And don’t give the number out unless it’s absolutely necessary.

Avoid getting checks sent directly to your house.

The idea of having a book of unwritten checks sitting in your mailbox makes us a little nervous. Consider having them sent to a safe PO box or to your local Bank Midwest branch.

Shred all sensitive documents before throwing them away.

This includes statements, bills and pre-approved credit offers.

Collect your mail daily. 

If you’ll be out of town, arrange for mail holding with your post office.

Sign up for online banking.

Not just with Bank Midwest, but also with any other financial services you may use. This will save you the trouble, and the risk, of manually receiving and sending payments that can be lost in the mail or stolen.

Keep sensitive documents in a safe place.

This includes Social Security cards, credit cards, loan information.

Don’t give out payment or personal information over the phone.

Especially if you don’t know the caller or if you’re in public.

File your taxes ASAP.

The longer you wait, the greater the chances that a fraudster will attempt to file on your behalf.

Avoid sketchy or unmarked ATMs.

Use our network MoneyPass ATMs for secure, fee-free banking. If there are none immediately nearby, use a trustworthy, non-network ATM. Bank Midwest rebates up to $20 in fees each statement cycle.

Contact us immediately at 888.902.5662 to freeze your account.

Someone you don’t know calls you and asks for personal or banking information.

They’re most likely a scammer trying to collect personal information. If a caller claims to be from an established organization such as a hospital, a charity, or a law enforcement agency, look up the number of the organization yourself.

They claim an emergency and/or insist on secrecy.

Scammers try to get you to take action quickly without assessing the situation long enough to realize it’s a scam. It’s a red flag if they discourage you from seeking information, verification, support and counsel from family, friends or trusted advisers before making a financial transaction.

They ask for your account password.

Legitimate businesses will never ask for your account passwords, so don’t give them out.

‘This is the IRS, you owe us money.’

The IRS will almost never call you, and they certainly won’t ask for your debit card number over the phone so you can pay off your taxes. The same applies for most government agencies. If you receive a call from someone claiming to be from the government, and that person is requesting personal information, hang up.

‘We can fix your Google business listing.’

Maybe, but they most likely just want to get some information from you. Don’t give it to them.

‘We need to confirm your loan details.’

There’s no reason that a legitimate lender would need to randomly confirm your loan details. The scammer may even tell you that this is for your own security, or that there has been suspicious activity. Hang up. And if you’re in doubt, call your lender.

Make sure you check your credit report at least once a year.

This will help you spot any accounts that you didn’t open or suspicious inquiries.

Be on the lookout for suspicious activity. 

If you start getting billed for services you don’t use or called about debts that don’t pertain to you, access your credit report immediately. Also keep an eye out for suspicious withdrawals from your bank account, or any attempts to file taxes in your name.

The Fair and Accurate Credit Transactions Act (FACT Act) guarantees free access to your credit report every year. Take advantage of this offer. Carefully review your report to pinpoint any inaccuracies and find incomplete information or fraudulent use.

Order Your Free Annual Credit Report Online or call 877.322.8228. Contact the appropriate credit bureau with any questions about your report:

• Equifax: 800.525.6285
• Experian: 888.EXPERIAN (397-3742)
• TransUnion: 800.680.7289

There are a number steps you should take from freezing your compromised accounts to reporting the crime to the Federal Trade Commission and local authorities.

If you’re a victim of identity theft, use these the resources to help you get started on the road to recovery.

Bank Midwest is a member of the FDIC, an independent agency of the U.S. Government — the Federal Deposit Insurance Corporation (FDIC) — which insures your deposits up to $250,000 per depositor.  Learn more about FDIC protection.