AllPoint AllPoint

Security Alerts

This page is dedicated to important security related articles. Please click on the "Title" of the article for more information about each security alert.



Equifax Breach

Recently, Equifax, one of the three national consumer credit reporting agencies, announced a major data breach. This breach affects approximately 143 million Americans. This is what we know according to Equifax: the data breach occurred May – July 2017, and the information stolen includes consumers’ personally identifiable information, including names, Social Security numbers, dates of birth, addresses and, in some cases, driver’s license numbers.
Approximately 209,000 credit card numbers and dispute documents with personally identifiable information for approximately 182,000 consumers were also stolen. There is no evidence of unauthorized access to consumers’ credit reporting databases.


The U.S. Department of Health and Human Services (HHS) Office of Inspector General (OIG) recently confirmed the HHS OIG Hotline telephone number is being used as part of a telephone spoofing scam targeting individuals nationwide.
Be vigilant with all phone calls to never disclose personal information to anyone unknown to you. Click the link above for additional detail and for steps to take if you have experienced a suspicious call from the HHS OIG.
Text Message Scam
We have received multiple reports of a text message scam throughout our area.  People have reported receiving a text message stating their payment failed and their money transfer was canceled.  They are then asked to follow a link to a website. The message comes from an email address ending in “” and mentions “Western Union”.  This text message should be considered fraudulent and the link should not be followed



Once again the IRS is warning the public about phone scams that continue to claim victims across the country. In these scams, thieves make unsolicited phone calls to their intended victims. Callers fraudulently claim to be from the IRS and demand immediate payment of taxes by a prepaid debit card or wire transfer.

Phone Scam Uptick

We have had multiple reports of a recent phone scam in our area.  People have been called by a person claiming to be from a financial institution or credit card company (M&T, NBT, Visa, MasterCard, etc.).   The person indicates that there has been a card compromise or fraud detected and requests the card number and/or security code on the back of the Credit/Debit card.    

Anthem Breach Response

People should be very concerned with the recently reported Anthem breach.  The statement from Anthem says that no banking or card information was compromised. The statement also says that Anthem member’s Non-Public Personal Information (NPPI) was breached.
NPPI can be used to commit Identity Theft. There are many things thieves can do with this information. Some common uses are the thieves may try to apply for credit  in your name, attempt to reset passwords to your accounts and file fraudulent tax returns.
Elmira Savings Bank would like to remind our customers to remain vigilant when browsing online during the holiday season. E-cards from unknown senders may contain malicious links. Fake advertisement or shipping notifications may deliver infected attachments. Spoofed e-mail messages and fraudulent posts on social networking sites may request support for phony causes. Please do not follow unsolicited links or download attachments from unknown sources.  

Kmart Data Breach

Please be advised that the media is reporting a security breach impacting debit and credit cards used in the Kmart retail stores between early September and early October. Elmira Savings Bank reissued the cards that were put at risk by Kmart's data breach. 

Jimmy John's Data Security Incident

On July 30, 2014, Jimmy John’s learned of a possible security incident involving credit and debit card data at some of Jimmy John’s stores and franchised locations. While the investigation is ongoing, it appears that customers’ credit and debit card data was compromised after an intruder stole log-in credentials from Jimmy John’s point-of-sale vendor and used these stolen credentials to remotely access the point-of-sale systems at some corporate and franchised locations between June 16, 2014 and September 5, 2014.

Please be advised that The Home Depot has confirmed that a security breach occured that impacts millions of credit/debit cards used in The Home Depot retail stores since April 2014. 

eBay Data Compromise

eBay Inc. has confirmed that they have suffered a compromise and that users will need to take action to protect themselves. The compromise, which took place sometime between late February and early March, allowed the hackers access to the names, e-mail addresses, encrypted passwords, postal addresses, phone numbers, and date of birth of customers.

Microsoft Tech Support Scam

Cybercriminals don't just send fraudulent email messages and set up fake websites. They may also call you on the telephone and claim to be from a legitimate company such as Microsoft.

Heartbleed Security Bug

We have reviewed the use of SSL security certificates by Elmira Savings Bank and our vendors. We are happy to report that our customer information, user-ids, and passwords are not at risk of being compromised by the “Heartbleed Bug”. Our website ( and Online Banking service are not using the type of SSL security certificates that are creating security concerns as reported in the media.

Mortgage Relief Mailings

Customers are reporting receiving variations of mortgage relief mailings. This is a solicitation and possibly a scam. Should you receive one of these letters, proceed with caution.

Fraudelent Pop-Ups

Fraudulent pop up messages look like they are coming from Customers are reporting different variations of the messages while accessing our online banking website.

Telephone Scams

Customers and non-customers have been receiving phone calls in regards to their Elmira Savings Bank debit card. It is an automated service stating the debit card is locked or needs to be activated.

Target Card Breach

As you may be aware, Target has been the victim of a breach of payment card information that occurred sometime between November 27, 2013 and December 15, 2013. Elmira Savings Bank customers that made a card transaction at Target during those dates may be affected.



Elmira Savings Bank • 333 E. Water St., Elmira, NY 14901 • Phone: (607) 734-3374 • (888) 372-9299 •       

© Copyright 2013 Elmira Savings Bank. All Rights Reserved. Member FDIC.