Email Security Tips

Criminals frequently try to get information from individuals by sending emails requesting personal information or asking for verification of account information. These deceptive emails may say that your bank account has been closed due to fraudulent activity or that it needs to be verified. If you ever receive an email of this nature, do not open the attached files, do not open links and do not provide any personal information.
  • If you do open an attachment or click a link containing a virus or other malicious program, you will need to take steps to reestablish the security of your system:
    • The most comprehensive approach would be to make a full backup of all user data, reimage the system and restore the user data.  In addition, all user credentials (usernames, passwords, answers to challenge questions) should be changed.
    • Alternatively, you can clean your system using anti-virus software and change your user credentials. Depending on the nature of the virus or malicious program, the anti-virus program may or may not be successful in removal. We encourage you to check frequently for updates to these virus-detecting programs and install updates as necessary.
    • If you respond to a phishing email with personal or account information, contact Huntington immediately at 1-800-480-BANK (2265) 24 hours a day, 7 days a week.

Stop, Look, Call

The Department of Justice recommends following three simple rules when you see emails or Web sites that may be part of a phishing scheme: Stop, Look, and Call.
  • Stop - Phishers typically include upsetting or exciting (but false) statements in their emails with one purpose in mind. They want people to react immediately to that false information, by clicking on the link and inputting the requested data before they take time to think through what they are doing. Resist that impulse to click immediately. No matter how upsetting or exciting the statements in the email may be, there is always enough time to check out the information more closely.
  • Look - Look more closely at the claims made in the email, think about whether those claims make sense, and be highly suspicious if the email asks for numerous items of your personal information such as account numbers, usernames, or passwords. For example:
    • If the email indicates that it comes from a bank or other financial institution where you have a bank or credit card account, but tells you that you have to enter your account information again, that makes no sense. Legitimate banks and financial institutions already have their customers' account numbers in their records. Even if the email says a customer's account is being terminated, the real bank or financial institution will still have that customer's account number and identifying information.
    • If the email says that you have won a prize or are entitled to receive some special "deal," but asks for financial or personal data, there is good reason to be highly suspicious. Legitimate companies that want to give you a real prize don’t ask you for extensive amounts of personal and financial information before you're entitled to receive it.
  • Call - If the email or Web site purports to be from a legitimate company or financial institution, call or email that company directly and ask whether the email or Web site is really from that company. To be sure that you are contacting the real company or institution where you have accounts, credit card account holders can call the toll-free customer numbers on the backs of your cards, and bank customers can call the telephone numbers on your bank statements.
If you receive a suspicious email requesting personal or account information, please treat it as fraudulent and forward it to us at Or, you can call us at 1-877-932-BANK (2265) 24 hours a day, 7 days a week.

Still Have Questions?

If you can’t find what you’re looking for, let us know. We’re ready to help in person, online or on the phone.

Call Us

24 hours a day, 7 days a week.
(800) 480-2265