Social media & cybersecurity: 6 tips for securing your business

David Pollino
Posted by David Pollino

Social media is one of the most powerful ways for businesses to build their brands and influence customers to purchase products and services. The reason? Americans are increasingly connected to social media.

Tech workers in a light, fun coworking space with blackboards, bean bag chairs, etc.In fact, two-thirds of American adults are on Facebook, according to a March 2018 report from Pew Research. Thirty-five percent of Americans are active on Instagram, while 50% of Americans with a college degree use LinkedIn.

While most executives appreciate the potential benefit of social media, they often do not realize the magnitude of the risk that it creates. Recent studies show that social engineering is the most common way that criminals penetrate organizations to steal data. And many social engineering attacks start with hackers scanning social media for information that can be exploited.

At Bank of the West, we recently had to shut down two fake LinkedIn accounts impersonating a senior executive. Managers within our institution unknowingly accepted connection requests from the fictitious accounts. (To ensure that I am connecting with a real-person, I often IM my business contact to ensure they had actually just sent me an invitation.)

How can you protect yourself from fictitious connection requests and other possible risks? Here are six tips to help keep your social media accounts secure:

1. Verify connections. Make sure the connection request came from the real person. Email, call, text, or IM to confirm the connections are from a friend and not a scammer.

2. Use strong passwords. A good password has at least 16 characters and looks something like this: Gh27cV^?b320O#Vc!. It’s not easy to remember — for good reason. Consider using a password manager.

3. Be mindful of privacy settings. Ensure the privacy settings for your social media sites are set to the appropriate preference level. Do you want your LinkedIn profile to be public or private? Do you need your connections to be alerted each time you update your profile?

4. Do not share login credentials or other confidential information. 5. Cut ties with questionable contacts. If you have connected with an unsavory character, remember that you can always unfriend, block or delete a connection on your social networks. (Note: This doesn’t include your Aunt Janet, who comments on every single Facebook post.)

6. Act fast. If you believe you’ve fallen victim of a phishing scam or a cyberattack, quickly change your passwords and, if you feel it is necessary, close the accounts.

Remember to limit the amount of information you share online. If you post too many details about yourself, an identity thief can find information about your life, use it to answer ‘challenge’ questions on your accounts, and get access to your money and personal information. Of course, never post your full name, Social Security number, address, phone number, or account numbers in publicly accessible sites.


Reminder: All comments are moderated prior to publication and must follow our Community Guidelines.

  • Anonymous says:

    Good info, thanks for taking time to post it.

    Reply | 1 year ago
  • Anonymous says:

    Does BOTW have plans to implement multi-factor-authentication for online banking?

    Reply | 1 year ago
    • Editor says:

      Thanks for your question. David has answered this on other posts, with this reply: Bank of the West does apply multi-factor authentication on a risk-assessed basis, so customers do not need to turn on this security feature themselves. We are continuously evaluating our layered security approach. If you have further questions regarding your account, I would encourage you to call 800-488-2265 or email your contact details to (please do not include any account numbers).

      Reply | 1 year ago

Submit an Idea

[contact-form-7 id="32" title="Share An Idea"]

You are leaving the Bank of the West Change Matters site. Please be aware: The website you are about to enter is not operated by Bank of the West. Bank of the West does not endorse the content of this website and makes no warranty as to the accuracy of content or functionality of this website. The privacy and security policies of the site may differ from those practiced by Bank of the West. To proceed to this website, click OK, or hit Cancel to remain on the Bank of the West Change Matters site.