Help stop fraud before it starts.

Supplement our security measures by taking measures of your own. Use the checklists below to see how your current habits measure up.

Component ID : "accordionGridLayout-2008173831"
Model : "faq"
Position : "left"
  • Select a strong password, and turn on multi-factor authentication.
  • Monitor your accounts routinely with online or mobile banking.
  • Dispute unknown transactions. Simply sign in and visit Support to file a claim. You can also  call
  • Keep your profile information up-to-date.
  • Notify Truist before you travel anywhere outside your typical stomping grounds.
  • Use trusted methods of payment within online banking and the Truist Mobile App (like Zelle®).
  • Enroll in one-time passcodes. If we detect unusual or suspicious activity at sign-on, a unique passcode will be sent to your verified mobile number or email address that, once entered, will grant you access to your account.
  • Safeguard your personal information. Never share personal information (e.g., Social Security or account numbers) over the phone unless you initiated the call or have verified the caller.
  • Keep communicating with us. Accept and return Truist calls regarding questions about a recent application or transaction as soon as possible. This helps us establish whether the transaction or inquiry is legitimate. However, remember—if you receive a call you find suspicious, hang up, and contact Truist through the customer service hotline on your bank card or bank statement.
  • Pay attention to collection calls. If you’re receiving collection calls for debts you don’t owe, this can indicate identity theft. Report any fraud to credit bureaus.
  • Register your home and mobile phone numbers with the National Do Not Call Registry by calling 888-382-1222.
  • Make use of secure messaging. Use secure messaging in online banking to ensure that information is transmitted safely.
  • Be aware of any texts/emails that ask you to take immediate action—like changing your email address or password. The fraudsters’ goal is to get you to enter personal information.
  • Do not respond to suspicious texts and emails. And avoid opening suspicious links and attachments, especially from senders you don’t know. If you have a question about a message from Truist, call us at:
  • Go paperless. Help keep your mail from landing in wrong the hands.
  • Keep your Social Security Number (SSN) under wraps. Do not print or write down your SSN on any document that could fall into the hands of identity thieves, like checks. Ask why someone needs your SSN if they are not running a credit check on you.
  • Carry only what you absolutely must. Keep extra credit cards, checks, Social Security cards, important documents, birth certificates, or passports secured at home or in a safe deposit box.
  • Invest in a micro-shredder and shred all sensitive documents before throwing them away.
  • Do not post personal information on social media.
  • Adjust your social media privacy settings—and audit your digital footprint—to ensure that only your close family members and friends can view your profile.
  • Ensure that multi-factor authentication is set up whenever it is offered on social media accounts.
  • Be unpredictable. Fraudsters are known to use stolen usernames and passwords from one website to try to gain access to financial websites. Make it difficult for fraudsters to guess your IDs and passwords by creating unique passwords for different online accounts—especially for bank accounts.
  • Be strong and mysterious. Truist user IDs must be a minimum of 6 characters (letters, numbers, and special characters) with no spaces. Passwords must be between 8 and 28 characters and contain at least one letter, one number, and one special character, with no spaces. Your new password must be different than your current ID and previous passwords. Avoid including characters from your email, phone number, or other personally identifiable information (Social Security number, date of birth, etc.).
  • Change any IDs and passwords that don’t meet these standards.  
  • Consider using a secure password manager. Password managers can help with creating unique passwords across multiple sites.
  • Read your credit report regularly. Make sure it’s accurate, and if you spot an inaccuracy, follow up. Check reports from Experian, Equifax, and Transunion.
  • Sign up for a credit monitoring service.
  • Look for mistakes. In some cases, a typo or an incorrect address on your report may be a simple oversight—or, it could indicate that an identity theft event has occurred.
  • Make sure you recognize new lines of credit. Identity thieves may open a new credit card account or take out loans. Anything you don’t recognize can indicate identity theft.
  • Scan for new names. Your credit report will reflect all of the names you have used when applying for credit. But a completely different name on your report may indicate identify theft.
  • Be aware of sudden score drops or delinquent accounts. A credit check isn’t required for a criminal to use your identity to pay for medical expenses, apply for a pay day loan, etc. Then, when the criminal doesn’t pay the bill, the account may end up in collections and appear as a delinquent account on your credit report and impact your credit score.
  • Download updates. Keep your operating system and apps updated to ensure access to the latest available security features.
  • Protect your devices from viruses and malicious software (malware). Install security software and avoid downloading content from unknown sources.
  • Customize your security settings. When you buy a new device—including wireless routers, smart speakers, and other smart home devices—adjust the privacy settings, and make sure you have it set to automatically install application and system updates.
  • Lock your devices, and use biometric authentication—like face or fingerprint recognition—to access devices and apps, when available. The Truist Mobile App offers fingerprint authentication to iPhone and Android clients.
  • Only use trusted wireless networks, and avoid public Wi-Fi.  Ensure you are always connected securely to protect your personal data and account information, and only perform financial transaction(s) on a secure network. We also recommend using a virtual private network (VPN) to establish a secure private connection.
  • Wipe your computer or mobile device. Delete all your data before you donate, sell, or trade in your electronic devices.
  • Report loss or theft of any device. If your phone is lost or stolen, inform your carrier immediately.
  • Be cautious of using free charging stations. Data thieves can install malware to steal information from your device. We recommend using your own charger with a plug versus inserting your USB cord. 
  • Don’t ignore address change notifications. If you receive a notice and you did not change your address, call Truist immediately.
  • Notify Truist if you don’t receive your bills or statements. Notify Truist to make sure the address has not been changed or your bill has not been stolen from the mail.
  • Check your mail daily. If you notice a sudden and persistent drop off in the amount of mail you normally receive, check with the post office to determine if someone has instructed them of an address change.
  • Preview your mail. Consider enrolling in a free service from USPS called Informed Delivery. It allows you to preview your mail digitally and manage any packages that are scheduled to arrive. For more information on how to enroll, visit
  • Sign up for direct deposit. Have funds put directly into your account instead of having checks sent through the mail.
  • Install a lock. Use a mailbox that locks to prevent mail theft, and place outgoing mail in a U.S. Postal Service box.
  • Safeguard your PINs. Don’t use obvious PINs like your birthday, address, or other personal information. Memorize your PINs. Don’t share them with anyone, and do not write them down.
  • Protect your card number. Never send your card number via email.
  • Use EMV chip technology where available. It helps reduce fraud by making it more difficult to duplicate the card or make purchases without authorization. When you use your card with chip technology, you may be prompted to enter your Personal Identification Number (PIN) for credit card purchases. This PIN verification process will help protect your identify and ensure that you are in fact the authorized user of the card.
  • Only shop on secure websites. Spelling or grammatical errors indicate that the site may not be legitimate. Be aware that even websites with https:// and padlock can be phishing sites.
  • Report a lost or stolen card immediately. 
  • Fraudsters can use information captured from ATMs to create counterfeit cards. Scanning devices known as “skimmers” can be placed on top or inside of an ATM’s real card scanner to copy card numbers, and wireless video cameras may be used to record people entering their PINs.
  • Be alert and aware of your surroundings. Don't use an ATM if you notice suspicious activity nearby or if the machine looks like it has been tampered with in any way.
  • Be safe. Don't count your money at an ATM, and avoid using an ATM alone at night—if you must, be sure the area is well lit. Fill out any forms before you walk up to the ATM.
  • Be secure. When using a drive-up ATM, keep your car running, doors locked, and windows up.
  • Remember to take your card from the ATM before leaving.

Businesses of all sizes should establish an online fraud awareness program and conduct regular risk assessments.

Help safeguard your accounts by following these best practices:

  • When possible, use dedicated computers or mobile devices for your online banking needs. Protect wires and payments by using trusted devices separate from those used for social networking or general web browsing.
  • Make use of user entitlements and payment limits—and routinely review them.
  • Review your accounts on a daily basis. Identify irregularities before they become serious problems.
  • Use alerts to keep tabs on account activity. Get notified when specific events occur—such as when ACH wire transfers are made or when changes are made to user entitlements.
  • Exercise sound password management. Use a different password for each website; regularly change your passwords; and avoid sharing passwords or storing them on your computer.
  • Identify gaps in your internal security controls. Address any known gaps immediately.