Username / Password Help?

Signup Now   |   Learn More
Online Banking Demo

Apply For:

Find An Interest Rate:

What's New:

Forms & Instructions:


Testimonials button

Community Spotlight

Mobile Phone Security – Best Practices

Mobile Banking offers the ease and functionality of Online Banking with the convenience of accessing it anywhere you can access the internet from your mobile phone. The Mobile Banking systems utilize the same multi-factor authentication system as our Online Banking systems to protect your account information from unauthorized access. Mobile Phones have similar security vulnerabilities as your home computer so it is important that you take the steps necessary to protect your device from unauthorized access. Below, provided by the US Computer Emergency Readiness Team (US-CERT), are things to consider in protecting your mobile phone.

Steps to Secure Your Mobile Device


When choosing a mobile phone, consider its security features. Ask the service provider if the device offers file encryption, the ability for the provider to find and wipe the device remotely, the ability to delete known malicious apps remotely, and authentication features such as device access passwords. If you back up your phone data to a PC, look for an option to encrypt the backup. If you plan to use the device for VPN access, as some users do to access work networks, ask the provider if the device supports certificate-based authentication.


Configure the device to be more secure. Many smartphones have a password feature that locks the device until the correct PIN or password is entered. Enable this feature, and choose a reasonably complex password. Enable encryption, remote wipe capabilities, and antivirus software if available.


Configure web accounts to use secure connections. Accounts for certain websites can be configured to use secure, encrypted connections (look for “HTTPS” or “SSL” in account options pages). Enabling this feature deters attackers from eavesdropping on web sessions. Many popular mail and social networking sites include this option.


Do not follow links sent in suspicious email or text messages. Such links may lead to malicious websites.


Keep software up to date - If the vendor releases updates for your device’s operating system, install them as soon as possible. Installing them will prevent attackers from being able to take advantage of known problems or vulnerabilities. The same applies to the applications installed on your device.


Limit exposure of your mobile phone number. Think carefully before posting your mobile phone number to a public website. Attackers can use software to collect mobile phone numbers from the web and then use those numbers to target attacks.


Carefully consider what information you want stored on the device. Remember that with enough time, sophistication, and access to the device, any attacker could obtain your stored information.


Be choosy when selecting and installing apps. Do a little research on apps before installing them. Check what permissions the app requires. If the permissions seem beyond what the app should require, do not install the app; it could be a Trojan horse, carrying malicious code in an attractive package.


Maintain physical control of the device, especially in public or semi-public places. The portability of mobile phones makes them easy to lose or steal.


Disable interfaces that are not currently in use, such as Bluetooth, infrared, or Wi-Fi. Attackers can exploit vulnerabilities in software that use these interfaces.


Set Bluetooth-enabled devices to non-discoverable. When in discoverable mode, your Bluetooth-enabled devices are visible to other nearby devices, which may alert an attacker or infected device to target you. When in non-discoverable mode, your Bluetooth-enabled devices are invisible to other unauthenticated devices.


Avoid joining unknown Wi-Fi networks and using public Wi-Fi hotspots. Attackers can create phony Wi-Fi hotspots designed to attack mobile phones and may patrol public Wi-Fi networks for unsecured devices. Also, enable encryption on your home Wi-Fi network.11


Delete all information stored in a device prior to discarding it. Check the website of the device’s manufacturer for information about securely deleting data. Your mobile phone provider may also have useful information on securely wiping your device.


Be careful when using social networking applications. These apps may reveal more personal information than intended, and to unintended parties. Be especially careful when using services that track your location.


Do not “root” or “jailbreak” the device. Third-party device firmware, which is sometimes used to get access to device features that are locked by default, can contain malicious code or unintentional security vulnerabilities. Altering the firmware could also prevent the device from receiving future operating system updates, which often contain valuable security updates and other feature upgrades.


Visit  http://www.us-cert.gov/cas/tips/ for more mobile device security guidelines

DepositsLoansOther Services

 

  

On Monday May 29th all Huntingdon Valley Bank’s branches and offices will be closed for the Memorial Day Holiday.

Mortgage Mobile Device Security Travelling Soon?? Bank Online Securely