Security Awareness

We thought you might like to stay informed...

April 2012

Murphy-Wall State Bank has received notification of a security breach involving a third-party payment processor, Global Payments, Inc. If your debit card is affected, we will communicate that information to you as soon as it is available to us. In the meantime, we encourage you to closely monitor the activity on your account and notify us immediately if you suspect any fraudulent activity. Please visit our Debit Card Fraud Prevention page for contact information.

March 2012

March 16: Murphy-Wall has been notified by a third party source that our customers may receive a Phishing Email that is indicated below. You should disregard and/or delete this Email.

Dear Account Holder,

This message is mailed to you regarding your online banking user password has been expired.

Create a new user password by following these steps:

1. Log into your online banking by our secure link for Expired Password and entering the temporary below. Your temporary password is: vn#E$mv3jVFkv

2. You will then be prompted to change your password.

This temporary password will expire in 24 hours.

March 15: Murphy-Wall has been notified that an email may have been received by our customers that indicates a security breach may have occurred at a local college. We do not have any way to verify the validity of the email. However, our customers should feel free to call us with any concerns. In addition, telephone banking and online banking are available to review account information on a daily basis 24X7 - even when our staff is not personally available to assist you.

February 2012

Customers report receiving text messages to activate debit cards. Please be advised that these messages are not from Murphy-Wall State Bank and Trust Company.

January 10, 2012

FBI Warns of New Spear Phishing Campaign Using NACHA's Name

The FBI is warning the public of coordinated malware and denial of service (DDoS) attacks designed to drain bank accounts, while also launching a DDoS attack. The responsible crime ring steals banking credentials using Zeus variant "Gameover" malware, while also launching a distributed DDoS attack on the victim's financial institution as a diversion.

"The campaign involves a variant of the "Zeus" malware called 'Gameover,'" explains the agency. "The spam campaign is pretending to be legitimate e-mails from the National Automated Clearing House Association (NACHA), advising the user there was a problem with the ACH transaction at their bank and it was not processed. Once they click on the link, they are infected with the Zeus or Gameover malware, which is able to key log as well as steal their online banking credentials, defeating several forms of two factor authentication."

The FBI in Denver is asking all consumers to be cautious of opening emails from unfamiliar senders.

Source: EPCOR/SECURITYWEEK

November 10, 2011

Fraudulent Emails

Some customers have reported receiving emails with a Subject line of: ACH payroll payment was not accepted by Murphy Wall State Bank. The emails request that you review transaction details by clicking on a link. The emails are NOT from Murphy-Wall State Bank and Trust Company. You should never click on any links on emails from any unknown sources!

September 30, 2011

Fraudulent Pop Ups

Some customers have reported receiving a message when exiting or while using our website that suggests your personal information at Murphy-Wall State Bank and Trust Company may be at risk. These Pop Ups are NOT authorized by Murphy-Wall.

Here is an example:

Attention Murphywall.com Visitor,

Data Security Breach Information

We want to make you aware of a situation that has occured that could be related to your personal information. Recently, there was a massive system breach at Epsilon, a third party vendor that supplies marketing services to a number of companies, including Chase, Verizon, Visa, Target, Best Buy, American Express, US Bank and many others. Files containing personal customer information were compromised.

Customer names, email addresses and some account details were exposed. Because of the increased risk of identity theft, we are urging you to check your credit report for any activity that you did not authorize.

To help protect you against this data breach, we have made your credit score available at no charge until 11:59 pm, September 30, 2011. Please be aware that although your credit score is free, a credit card will be required to validate your identity.

If you see such a message, do not click any links and do not give anyone your personal credit card or account information. What you should do:

• run an anti-virus program

• run a spyware program

• clear your cache (on your toolbar, go to Tools then Delete Browsing History)

Remember that Murphy-Wall will never ask you for information that we already have on file! If you have any concerns or suspicions about a message from Murphy-Wall State Bank and Trust Company, please call us at 618-357-5373.

In addition, we have also been made aware that if you do call a credit service, you may be subject to a marketing pitch for "free" credit management tools. In some cases, if you fail to cancel the service within 30 days, your credit card or account will automatically be charged for the service.

April 26, 2011

Fraud Alert Involving Unauthorized Wire Transfers to China

The FBI has observed a trend in which cyber criminals, using banking credentials of US Businesses, sent unauthorized wire transfers to Chinese economic and trade companies located near the Russian border.

For more information, please go to http://www.ic3.gov/media/2011/ChinaWireTransferFraudAlert.pdf

March 2, 2011

Fraudulent Emails claiming to be from Federal Reserve

EPCOR has received reports that individuals and/or companies are receiving fraudulent emails that have the appearance of being sent from the Federal Reserve. Specifically, the email claims to be from the Federal Reserve Wire Network and appears to be sent from "fedwire@federalreserve.gov. <mailto:fedwire@federalreserve.gov.> " See a sample below.

= = = = = Sample Email = = = = = =

From: fedwire@federalreserve.gov <mailto:fedwire@federalreserve.gov> [mailto:fedwire@federalreserve.gov <mailto:fedwire@federalreserve.gov> ]

Sent: Wednesday, March 02, 2011 10:09 AM

To: Doe, John

Subject: Your Wire fund transfer The Wire transaction , recently sent from your checking account (by you or any other person), was cancelled by the Federal Reserve Wire Network.

Please click here <http://mpx.informz.net/z/cjUucD9taT0xMDgzNzEzJnA9MSZ1PTc1MjM2Mjg2NyZsaT00NjA4OTAy/index.html> to view details ------------------------------------------------------------------

Adam Diaz ,

Fraud Department

This is a fraudulent email. It was not sent by the Federal Reserve. Do NOT click on any of the links. Be aware that phishing emails frequently have attachments and/or links to Web pages that host malicious code and software. Do not open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.

************************************************************************************************************************

The staff at Murphy-Wall State Bank and Trust Company encourages you to visit this page often as an additional resource regarding the protection of your individual identity and account information. As we receive information from service providers and banking organizations that we feel will benefit our customers, we will post their messages here in an effort to keep you updated regarding Fraud Alerts and other Security Issues. In addition, we will also post information regarding any training or educational efforts that we may know of or sponsor from time to time. This page is for your benefit. If you have an suggestions for this page, please let us know!

Our Mission

Company History

Contact Us

Locations & Hours

Board of Directors

Team Contact Information

Events

News & Links

Education Center