Fraud Alert: Heartbleed Bug

We are aware of the concerns surrounding the “Heartbleed Bug” (OpenSSL vulnerability).

Please be aware that our web site uses web servers, which are not affected by the Heartbleed Bug. Our technology personnel have been assessing all systems to determine if there are any other known vulnerabilities, and will continue to review those until we are confident we have covered all areas of concern.

If any vulnerabilities are identified, and action needs to be taken, we will notify customers immediately.

Help Us Celebrate National Ag Day!

Today is National Agriculture Day, a day organized by the Agriculture Council of America, a nonprofit organization dedicated to increasing the public’s awareness of agriculture’s key role in modern society.

Ag Day is the perfect time to recognize and celebrate the abundance provided by modern agriculture. We salute and thank all of you involved in the agriculture industry. We know that food, clothing and other daily necessities don’t just arrive in stores, but rather, go through many steps on the way to our tables and homes.

Central National Bank is proud to have served local farmers and ranchers and agri-businesses for the past 130 years. Money for Life isn’t just a tagline for us… we intend to continue to do all we can to assist our agriculture clients in any way we can.

Coming Soon – New Mobile Apps!

We’re in the process of finalizing and releasing new and improved mobile apps! Over the next week, you will see a new version of our apps available in the Google Play Store and iTunes. Once the new app is available, you can download and install it and then uninstall the previous version. You’ll also be prompted within the current version of the app to download the new version of our app once it’s available.

The new apps will feature a much-improved user interface as well as additional features such as CNB branch location listings and debit card integration! Stay tuned for more information, and thanks for your patience as we go through this process.

A screenshot of the “Home” screen on the new iOS app is shown below, first, and the Android version, second.

Fraud Alert: Government Grant Scam

Customers have reported receiving telephone calls regarding Government Grant Scams. As usual, we like to let you know when a specific type of scam is popular, so you can be better prepared to avoid these situations yourself.

The scammer will say something like,  “Because you pay your income taxes on time, you have been awarded a free $12,500 government grant! To get your grant, simply give us your checking account information, and we will direct-deposit the grant into your bank account!”

This is fraud, plain and simple. For more information on Goverment Grant Scams visit the FTC’s website at http://www.consumer.ftc.gov/articles/0113-government-grant-scams#.UwT_r-ulg0k.email

Fraud Alert: Automated Telephone Calls

We’ve had several reports that customers are receiving automated telephone calls from a restricted number.  The call informs the customer that there has been fraud on their account, to continue press 4 (or another number). These are phishing calls designed to get customers to provide account information. Please do not provide account information if this happens. Contact your local branch with questions or concerns.

Celebrate 130 Years with Us!

October 2014 marks the 130th year of service for Central National Bank, but we’re really excited, so we’re celebrating all year. Watch for specials and other fun stuff throughout the year, there’s bound to be something that interests you!

For January…

 

To sign up contact your local branch.

Fraudsters May Take Advantage of Target Data Breach

There have been daily news stories about the Target data breach and how it may affect shoppers. This is a great time for scammers to send out phony emails from Target pretending to help. What they are really trying to do is to trick you into giving them your personal information.

If you get an email that says it is from Target, look for the following to make sure you don’t get scammed.

  • If any email asks for your personal or financial information, it is most likely a scam.
  • If you receive an email that asks for your debit or credit card number, do not reply. No legitimate business will ask for your personal information through unsecure methods like email.
  • If there are links in the email, do not click on them.
  • Scammers create links and sites that look like the real deal. These phony sites can install viruses to your computer or direct you to spoof sites that exist to steal your information. Hovering over a link can reveal a deliberately misspelled web address, or a completely different destination. To be safe, you should typed the URL directly into your browser.
  • Be aware that scammers may send emails promising a free gift card, a new tablet or computer, or even a job in exchange for your personal information. Remember, if it sounds too good to be true, it probably is too good to be true.

Target Data Compromise

Target released a statement today confirming a breach which affects nearly 40 million credit and debit card holders.

Anyone who shopped at a Target Store between November 27, 2013 and December 15, 2013 could be at risk. As a result of this situation, Central National Bank has decided to reissue new cards and PIN’s to all customers impacted by this breach. We also encourage you to monitor your accounts closely.

Central National Bank takes the protection and security of our customer information very seriously and we are actively monitoring accounts for suspicious activity.  If you notice something suspicious on your account please contact us immediately. We can immediately inactivate your card and work with you to dispute the fraudulent charges.

To learn more about this situation read Target’s official statement at https://corporate.target.com/discover/article/Important-Notice-Unauthorized-access-to-payment-ca

 

Phone Scam Targets Customers

We want to make everyone aware that we have had a report of a gentleman named “Greg Stockholm” calling Central National Bank customers. He starts out the conversation asking if the customer has received a letter from Central National Bank regarding corporate security. He then tells the customer that he wants to have a conversation about his company’s security issues.

Be advised that this is a scam.

If you receive a call concerning this, please DO NOT give the criminal any information.

 

Beta Bot Malware Blocks Anti-Virus Programs

The FBI is aware of a new type of malware known as Beta Bot. Cyber criminals use Beta Bot to target financial institutions, e-commerce sites, online payment platforms, and social networking sites to steal sensitive data such as log-in credentials and financial information. Beta Bot blocks computer users’ access to security websites and disables anti-virus programs, leaving computers vulnerable to compromise.

Beta Bot infection vectors include an illegitimate but official looking Microsoft Windows message box named “User Account Control” that requests a user’s permission to allow the “Windows Command Processor” to modify the user’s computer settings. If the user complies with the request, the hackers are able to exfiltrate data from the computer. Beta Bot is also spread via USB thumb drives or online via Skype, where it redirects the user to compromised websites.

*Windows Command Process message box
Figure 1, Beta Bot “Windows Command Process” message box

Although Beta Box masquerades as the “User Account Control” message box, it is also able to perform modifications to a user’s computer. If the above pop-up message or a similar prompt appears on your computer and you did not request it or are not making modifications to your system’s configuration, do not authorize “Windows Command Processor” to make any changes.

Remediation strategies for Beta Bot infection include running a full system scan with up-to-date anti-virus software on the infected computer. If Beta Bot blocks access to security sites, download the latest anti-virus updates or a whole new anti-virus program onto an uninfected computer, save it to a USB drive and load and run it on the infected computer. It is advisable to subsequently re-format the USB drive to remove any traces of the malware.