Safety & Security - Byline Bank

Hey there.
Just a friendly heads up that you're about to leave

Hope to see you back here again soon.


Business accounts are often targeted by fraud attempts. Please be aware of common email phishing scams where the message appears to come from known and trusted sources, such as the Federal Deposit Insurance Corporation, the Internal Revenue Service, or the National Automated Clearing House Association (the ACH payment network). Telltale characteristics of an attempted email phishing scam are:

  • Typos
    This isn’t because fraudsters don’t know how to spell, it’s so phishing emails won’t be blocked by email filters.
  • Awkward Greeting
    A phishing email may not refer to the email recipient by name or in a nonsensical manner “Client(s)”.
  • Sense of Urgency
    An urgent need to communicate with you for your own security, or a request to verify payment information immediately; compelling language that urges the recipient to take action.
  • Random Generation of Numbers
    A phishing email may contain a random sequence of numbers, such as ACH Payment #38350555 canceled, that can also be inserted into the subject line or text of the email to make it appear as though it is a specific transaction ID or payment amount. That random number can also be inserted into the file name of the pdf.exe file or file, creating a sense of uniqueness and legitimacy.
  • Incorrect Grammar
    Another tactic used to bypass email filters. In this phishing example refer to, “Detailed report on initiated transactions are reason.”
  • Strange or Unfamiliar Links
    The links may look official, but when the mouse cursor rolls over the link the link source code points to a completely different website which may contain malware as a .pdf executable file or .pdf zip. Never open attachments, click on links, or respond to emails from suspicious or unknown senders.
  • Fraudulent Use of Legitimate Business Logo, Website, Address, Phone
    Fraudsters often insert actual identification references to a business into their phishing emails to make them appear legitimate.

Please be aware that business accounts are at a heightened risk of such scams, and be sure to protect yourself by first trying to recognize fake messages, and by installing up-to-date virus protection software on your business computers. If in doubt, do not click on links presented in any message you think is suspicious, rather attempt to authenticate any requests via trusted communications channels such as calling a company representative.

As your financial institution, we take great care in safeguarding your personal and financial information. For this reason, we would like to remind you that we will never send an e-mail requesting your information or asking you to verify a request or transaction.

Byline Bank Pipe emblem

Fraud & Identity Theft

Identity theft continues to be one of the fastest growing crimes in the U.S. and has ranked as one of the top consumer concerns for the past several years.

These crimes are evolving in more complicated ways that make it harder for consumers to protect themselves, and easier for criminals to set up virtual storefronts on the web to sell confidential personal information.

Educate and Protect Yourself

The Federal Deposit Insurance Corporation (FDIC) has released a video that consumers can use to learn how to better protect their computers and themselves from identity thieves. The presentation also features actions consumers can take if their personal information has been compromised.

Learn more by  watching the FDIC’s FDIC video series on Protecting Yourself Online.

If You Suspect or are a Victim of Fraud

If you either suspect that your personal information has been compromised, or that you have been victimized by identity thieves, you should: contact the fraud department at one of the three major credit bureaus and ask that a fraud alert be placed in your file at all three companies; review your credit reports periodically and carefully and look for inconsistencies or red flags such as accounts you didn’t open; debts you can’t explain or inquiries from companies you haven’t contacted, contact the companies where the fraudulent activity occurred, and follow up any telephone calls in writing; file a police report with local police or the police department in the community where the crime took place and keep a copy of the report; and file a complaint with the Federal Trade Commission.

Steps You Can Take

Some of the steps outlined in the presentation that you can take to help safeguard your computer and personal information from identity theft are: never provide personal information in response to an unsolicited telephone or Internet request; never provide a password over the phone or in response to an unsolicited Internet request; review account statements regularly to ensure all charges and transactions are correct; and use a firewall and anti-virus and spyware protection software.

Online Phishing Threats

We have discovered phishing activity in which users are presented a web page that requests certain personal data such as account number, social security number, ATM card, PIN and credit card information.

This web page may be titled “Security Confirmation” and appears to come from within the online banking and bill pay service, but it is actually a fraudulent page caused by malicious code that has infected users’ personal computers.

What to do if you Suspect Phishing

If you see a webpage that requests sensitive personal information, do not provide your information and do not submit the form. Most antivirus software providers have recently issued updated software that eliminates the malicious code. It is important that you update and run antivirus protection software immediately to protect yourself.

As a reminder, we want to protect your identity and will never ask you for your personal information online. If you ever receive a call, email or unusual webpage where this information is requested, do not give this information out.

Additionally, if you use Byline Bank Online Banking, log out when finished and close your browser before leaving your computer. Never leave your computer unattended during an online banking session.

If you ever get an unsolicited phone call or email claiming to be from Byline Bank asking you for personal identifying or account information, please do not respond. Call us at (773) 244-7000 to let us know and to be sure you are communicating with Byline Bank. Also, be wary of any email asking you to log into Byline Bank Online if it does not link to the official Byline Bank site located at

About Phishing

The term phishing—as in fishing for confidential information—is a scam that encompasses fraudulently obtaining and using an individual’s personal or financial information.

In a typical case, the consumer receives an e-mail requesting personal or financial information; the email appears to originate from a financial institution, government agency or other entity. The email often indicates that the consumer should provide immediate attention to the situation described by clicking on a link. The provided link appears to be the website of the financial institution, government agency or other entity. However, in phishing scams, the link is not to an official site, but rather to a phony one.

Once inside that website, the consumer may be asked to provide Social Security numbers, account numbers, passwords or other information used to identify the consumer, such as the maiden name of the consumer’s mother or the consumer’s place of birth. When the consumer provides the information, those perpetrating the fraud can begin to access consumer accounts or assume the person’s identity.

Byline Bank Tiles emblem

ATM Safety Tips

Although crimes committed at or near ATMs remain low, the possibility of a crime occurring is very real. You must use common sense to improve privacy and safety at the ATM. Please practice the following safety tips every time you use an ATM.

Look Around the Area First

Before you use any ATM; survey the location of the ATM. Avoid those that are located in dark areas; have obstructions blocking your view or the view of the public; or are in the vicinity of anyone or anything suspicious. If you are already making a transaction and something suspicious happens, stop the transaction and leave the area.

Look For a Safe Parking Space

If you drive to an ATM, park as close to it as you can in an open, well-lit space. Look around the area before leaving the safety of your vehicle. If you decide to use the ATM, take the car keys with you and lock the doors. Never keep the engine running if the car is unattended. If something suspicious happens after the transaction has begun, stop it immediately and return to your vehicle.

Allow Authorized Entry Only

If you use an ATM in a locked foyer or vestibule make sure the door closes and locks before you start your transaction. Do not hold the door open for the person waiting behind you. Each person should have a card to gain entry.

Byline Bank Make it Rain emblem

Drive-up safety

At the drive-up ATM always be alert to the area around you. Keep your doors locked and the engine running. Open your window only when you are ready to make the transaction. If something or someone in the area looks suspicious, do not stop at the ATM. If you have already started the transaction, stop it and drive away.

Minimize Your Time At the ATM

Be prepared to start your transaction when you approach the ATM. Use caution when counting your money. When you are finished, put your receipt, card, and money away as soon as possible.

Know What to Do

If you are followed after leaving an ATM, go quickly to a well populated, well-lit area. Report the incident to the police as soon as possible.

Your Personal Identification Number (PIN) is Confidential

Your PIN is confidential! Memorize it because your ATM/Debit card cannot function without it. Your PIN prevents anyone else from using your card. Do not write your PIN on your card or store it with your card. Avoid using your birth date or Social Security number as your PIN. Never give your PIN to anyone. Stand directly in front of the ATM keyboard or number pad to block the view of others standing nearby when you are using your card at the ATM. Although your ATM/Debit card can be used only with the correct PIN, you should report a lost or stolen card to your financial institution at once!

Report Missing Cards At Once

Although your ATM/debit card can be used only with the correct PIN, you should report a lost or stolen card to your financial institution at once.

Save Your Receipts

Check your receipts against your monthly statement to reduce the chance of transaction fraud. Report any unauthorized transactions or irregularities to your financial institution.

By following these safety tips, you can help protect your personal safety and privacy every time you use an ATM to make a financial transaction.

Byline Bank Cross Stitch emblem