Skip Navigation Documents in Portable Document Format (PDF) require Adobe Acrobat Reader 5.0 or higher to view,download Adobe® Acrobat Reader.
North Shore Bank of Commerce
decorative
 

A New Look And A New Website Address: northshore.bank

Derek Rowan, IT Manager
1/23/2018
 

After several exciting months of development, North Shore Bank is delighted to announce our move to .BANK. The bank’s new .BANK domain is a more secure address reserved exclusively for banks. The new northshore.bank address provides robust security and meets strict verification requirements that will reduce the risk of cyber threats and enable us to build a high-trust, more secure environment for our customers.

 

Why .bank?

We take the security of our customer’s information very seriously. It was a natural step to move to a .BANK domain as it is reserved exclusively for banks and provides additional layers of security that other top level domains such as .com do not.


Why is .bank more secure?

.BANK domains signify that a financial institution has been verified as legitimate and is committed to implementing the additional and mandatory security requirements that go beyond existing standards. Only verified banks are allowed to use a .BANK domain. Therefore, when you see a domain which ends in .BANK, you can be assured that you are dealing with a legitimate, verified financial institution.

 

What are the enhanced security requirements in .BANK?

fTLD requires compliance with a set of requirements that are not currently mandated by the operators of other commercially available gTLDs, including:

  • Mandatory Verification of Charter/Licensure for Regulated Entities ensures that only legitimate members of the global banking community are awarded domain names.
  • Mandatory Re-verification of Registration Data every two years or at domain renewal, whichever comes first, ensures ongoing eligibility for domain names.
  • Domain Name System Security Extensions (DNSSEC) ensures that Internet users are landing on participants’ actual websites and not being misdirected to malicious ones. fTLD will require that all domain levels, from fTLD as the top-level registry operator to your entity as the registrant, utilize DNSSEC for domains that resolve on the Internet.
  • Email Authentication to mitigate spoofing, phishing and other malicious activities propagated through emails to unsuspecting users.
  • Multi-Factor Authentication to ensure that any change to registration data is made only by authorized users of the registered entity.
  • Enhanced Encryption to ensure security of communication over the Internet to prevent eavesdropping, data tampering, etc.
  • Prohibition of Proxy/Privacy Registration Services to ensure full disclosure of domain registration information so bad actors cannot hide.

 
 
 

Data Breaches - How Can I Protect Myself & My Financial Assets?

Rick Haney, Compliance Officer
ARCHIVED 11/30/2017
 

The news continues to report on large data breaches which have occurred at different businesses and government entities. The Equifax loss of personal confidential information affected more than 145 million Americans’ information. So if you have taken out any type of loan or make payments on a credit card or other loan, your personal information was most likely stolen!

Here Are Steps You Can Take to Help Minimize Potential Use of Your Confidential Information:

Freeze Your Credit
  • This is the most conservative and restrictive way to limit the use of your name and confidential information which could be used to take out new loans, credit cards and other credit.
  • Positives:
    • Lenders primarily pull credit reports to assess an applicant’s credit worthiness before granting credit. A Freeze prevents the pulling of your credit report.
    • You would need to authorize the credit reporting agency (CRA) to remove or temporarilylift the freeze before the CRA could provide the credit report.
    • Only the person who places the freeze can remove or lift the freeze.
  • Negatives:
    • Can be costly, although the time and cost to repair your good name will be more expensive. Costs about $15 to place each Freeze. You must place a Freeze with each of the three CRA’s, and you must pay a fee around $5 to each CRA to lift or remove a Freeze.
    • If you plan to take out new credit, the unfreezing process can be a bit tedious and may lengthen the loan process.
Place a Fraud Alert of your Credit
  • If your confidential information has been or may have been compromised, you can place a Fraud Alert with the CRA’s. Fraud Alerts are for either 90-days or 7-years. However, you must have experienced identity theft and have filed a police report to be able to place a 7-year Fraud Alert.
  • Positives:
    • No cost to place a Fraud Alert.
    • You only need to place the alert with one CRA. That CRA will forward it to the other two reporting agencies.
    • Creditors are required to follow up on Fraud Alerts on credit reports to confirm that the person applying is the person whose confidential information is being used to obtain the loan.
    • You should receive notification from the CRA’s anytime someone pulls your credit report. This gives you the opportunity to prevent credit being opened in your name by someone else or to confirm it is you.
  • Negatives:
    • Unless you have experienced a loss and filed a police report, you cannot file a 7-year Fraud Alert, so you must monitor and replace the 90-day Fraud Alerts.
    • The alert may not prevent the opening of credit in your name if you do not respond in time.
    • A creditor does not correctly confirm that the person requesting the credit is you.
Sign Up For Credit Monitoring Service
  • You can sign up for a credit monitoring service through any of the CRA’s or through other companies such as Lifelock. Equifax is offering the service free for one year, and reportedly the other two CRA’s, Experian and Transunion, are doing the same.
  • These services contact you by the communication method you select when establishing the service. You will be notified when someone pulls your credit report or attempts to use your confidential information.
  • Positives:
    • You will be able to confirm whether you conducted the activity which triggered the alert notification to you.
    • Service may cover some activities in addition to pulling credit reports, such as use of your SSN.
    • These services usually have insurance coverage to help pay for the costs to clear your name and other identity theft costs.
  • Negatives:
    • You do not respond in time to stop the activity which has prompted the use of your confidential information.
    • Not all types of identity theft activity will trigger a notification.
    • There is a monthly cost for the service.
Monitoring your Credit Report
  • You have the ability to pull your credit report with each of the three CRA’s annually. This means you can pull one every four months, rotating through the three CRA’s to ensure the information with the CRA’s is accurate.
  • You can pull credit reports in three ways: on the internet, by phone or by mail.
    • Internet: www.annualcreditreport.com
    • Toll Free Phone Number: 1-877-322-8228
    • Mail: Annual Credit Report Request Service, PO Box 105281, Atlanta, GA 30348-5281