Fraud Prevention and Awareness

The following information about security and safe computing can help you and your colleagues protect yourselves, your computers, and your organization from fraudulent activities. Much of it is a compilation of information contained in our service User Guides for Comerica Business Connect, in the Consumer Protection Center on the Comerica.com, and articles and messages we've posted on the Comerica Business Connect portal.

Safe use of online banking services is a goal we all share. The methods and practices for keeping your information safe are not stagnant, because criminals continually develop new viruses and ways to exploit computer users who are not vigilant in protecting themselves against fraud.

Helpful information

• There are phishing scams targeting businesses across the country. Be aware when opening emails from unknown sources that could install malicious programs which may allow unauthorized access to your computer.
• Also be aware of recent fraudulent emails purporting to be from legitimate organizations like the FBI, FDIC, NACHA, the Better Business Bureau, financial institutions, etc.
• Phishing emails are sent directly to company employees and generally include a request to click on a link or open an attachment. Clicking the link or opening the attachment may download malicious software (malware) or redirect the recipient to a fraudulent site or a pop-up window asking them to confirm personal or account information, login information, and/or token codes. Once a fraudster finds a way into your computer they can quickly find their way into your online banking and cash management accounts if they discover your IDs, passwords, PINs or token codes.
• IDs and passwords could be compromised when anyone using your computer inadvertently opens a spam or phishing email and clicks a link that downloads a virus or malicious program onto your computer.
• To help you and all of our customers protect their computer systems and online financial information, Comerica uses multiple layers of security to access our online systems within Comerica Business Connect to help block outside access to your computers, and requiring dual approval of online payments.
• Comerica stands strong with the entire banking industry against criminal activity. We take strategic and very serious measures that help our customers protect their financial information.

Be sure you have best security practices in place.

• Never share your login ID, password, user PINs, tokens, or any other login information with anyone else. It is a very risky practice and a violation of security protocols that could negate agreements between your company and your service providers, including Comerica.
• Consider using a stand-alone computer, not connected to a network and not used for surfing the web or receiving emails, to be used only for accessing your online financial services. If a stand-alone is not possible, then ensure that each user of online services uses his/her own device (desktop computer, laptop, or mobile) and his/her own password. Do not share computers for accessing financial services. Sharing a computer that has become infected places the login and transaction credentials of all users of that computer at risk of theft and unauthorized use.
• Use dual approval for all payments and all payment templates. Dual approval means that one person initiates a payment or creates/edits a payment template, but a second person approves the payment or template. The second person should always use a different device (desktop computer, laptop, mobile) from the one the payments or templates were created on, and use their own login credentials. Never use the same device nor the same person to both create and approve a payment. No online service, including Comerica Business Connect, will ask that two users enter their credentials on the same computer for login or approvals.
• Always use trusted anti-virus protection and intrusion detection programs to keep your computer and network safe. Be sure your virus detection software, personal firewalls, adware and spyware-blocking software are up-to-date and all updates and security patches have been installed. 
• Do not ignore warnings from trusted security software. If a warning message or your regularly scheduled virus detection displays that a virus has been detected, take immediate action to remove it. Most require that the device be rebooted to remove the virus.
• Be knowledgeable about the online services you use and how they look and work. Call your service provider if you are suspicious about any request you receive for login or personal information that is generally confidential, and if something looks or performs unusually.
• Seek the advice of your computer security technician or consultant to address your own particular computer-security related issues.
• Run a virus check to determine if your computer system has been compromised.
• Do not use public wi-fi to access online financial services, as they generally do not have adequate security to block out others from your online session.
• Fraudsters can also call by phone, pretending to be from your financial institution and asking for your online login credentials to solve a problem or other ruse. Don't fall for it. Never give out this information on a phone call or email that you did not initiate.
• Comerica will never initiate an unsolicited email asking you for your confidential information such as IDs and passwords.

It is important to note...

The above best practices will help you protect yourself, your computer, and your organization -- but only if all precautions are followed to prevent unauthorized access to your computer and/or login credentials. Once an unauthorized person has gained access, it may be too late to stop their actions.

• Notify us immediately if you discover any unauthorized or unusual activity involving your Comerica accounts.