Protect Yourself from Phishing and Spoofing Fraud - Eastern Savings Bank Skip Navigation

Protect Yourself from Phishing and Spoofing Fraud

Consumer fraud is rampant and supporting your security is our top priority. We remind you to be attentive and alert to potential for receiving phishing and spoofing emails from Eastern Savings Bank or any other institution or government agency. While there is no specific threat or concern related to Eastern Savings Bank, we want to protect our customers and keep this risk top of mind due to the increasing prevalence of the issue in today’s digital world.

The criminal enterprises running these efforts have become very sophisticated at what they do. But with some patience and attentiveness, there are ways to identify them and protect yourself from falling victim to their prowess. The actions these criminals take have been coined as “Phishing” and “Spoofing” among many other fraud tactics.

What Are Phishing and Spoofing Emails?

  • Phishing emails attempt to trick you into revealing personal information by pretending to be from a legitimate source, such as a bank or government institution.
  • Spoofing emails involve a sender’s address being falsified to appear as though the email is from a trusted entity.

Their activities and fraudulent messages aim to deceive you into providing personal information, such as your account details, passwords, and other sensitive data. Here are some ways to spot a scam and important steps you can take to protect yourself against these threats.

How to Spot an Email Containing Phishing or Spoofing Fraud

  1. Unusual Sender Address: Check if the sender’s email address is from a legitimate domain (e.g., emails from us will always end in
  2. Generic Greetings: Be cautious of emails that use generic greetings like “Dear Customer” instead of your name.
  3. Urgent or Threatening Language: Emails that pressure you to act immediately, claiming your account will be closed or suspended, are often fraudulent.
  4. Suspicious Links or Attachments: Hover over links without clicking to see the actual URL, and be wary of unexpected attachments.
  5. Spelling and Grammar Mistakes: Professional companies strive to send error-free emails. Be skeptical of emails with obvious mistakes.

Remember, a Bank will never ask you to supply secure account or personal information. Nor will they send notices via email stating an urgent matter that you must address immediately.

No password setting or login requests will be sent unless you initiate it through online and mobile banking as part of the self-service Forgot password or ID process.

Steps to Protect Yourself from Fraud

  • Verify the Sender: If you receive an email that seems suspicious, contact the sender directly using known contact information, not the information provided in the email.
  • Don’t Click on Links or Download Attachments: Avoid clicking on links or downloading attachments from unknown or suspicious emails. Hover your mouse over links in email to display the URL they are directing you to. If it looks suspicious or does not match the know domain URL of the sending company (i.e.…) then do not click on it.
  • Use Strong Passwords: Ensure your online banking password is unique and complex. Regularly update your passwords.
  • Enable Two-Factor Authentication: Add an extra layer of security by enabling two-factor authentication on your digital accounts. This way if somehow your account credentials fall into the wrong hands, their attempts to take over your accounts will be thwarted by their need to get the verification codes. This will also alert you to suspicious activity related to your account access.
  • Keep Software Updated: Ensure your antivirus software, browser, and operating system are up to date to protect against malware. Updated software and antivirus programs will ensure your systems are protecting you from the latest cyber threats.
  • Report Suspicious Emails: If you receive a suspicious email claiming to be from Eastern Savings Bank, do not click on any links or open attachments. You can contact us first to confirm its validity if you are unsure

What to Do if You Think You’ve Been Targeted

If you suspect that you have received a phishing email or have inadvertently provided personal information to a fraudulent source, contact us immediately at 800-787-7372 or visit your nearest branch. Our team is ready to assist you and help secure your accounts.

Together we will remain vigilant in keeping your personal information safe.