Fraud Information

If you feel your Debit, ATM or Elan credit card has been compromised, please call your nearest Bank First office during business hours.

To report lost or stolen debit/ATM cards after normal banking hours, call 1-800-554-8969.
Press 1 to report a lost or stolen card
Press 3 for help with other inquiries

PIN numbers can be changed at any of our ATMs located at most of our office locations. To obtain a new card, please contact your nearest office.

For current fraud press release information, please visit...

Consumer Alert: Do Not Fall Victim to Email Scams…

Bank First will NEVER initiate email or internet requests requiring customers to respond with personal information. Any requests for personal information received through email, web sites, or pop-up windows should be considered fraudulent and reported to us immediately. If you receive an email asking for your account information (ID, password, card number, etc.), DO NOT respond! If you have already given out your bank account information, report the theft of this information to the bank as quickly as possible by calling (920) 652-3100. Reminder: While logging into your Internet Banking, if you do not see the ImageProtect photo that you have previously chosen, you are being re-directed to an invalid site. To help us track cyber-criminals, please forward any suspicious emails you receive to

Don't Be an Online Victim: How to Guard Against Internet Thieves and Electronic Scams

Identity theft continues to be one of the fastest growing crimes in the United States, and has ranked as one of the top consumer concerns for the past several years. The Federal Deposit Insurance Corporation (FDIC) has produced a multimedia presentation to help consumers protect themselves from identity theft. This presentation provides information on steps consumers should take to secure their computer and protect themselves from identity theft, as well as actions consumers should take if they become a victim of identity theft.

Video link: 
Don't Be an On-line Victim: How to Guard Against Internet Thieves and Electronic Scams

What is "Phishing"?

Phishing is a type of online fraud where the cyber-criminals attempt to acquire personal, financial, or other account information (such as user IDs, passwords, credit card numbers, PINs, etc.) from unsuspecting victims. This type of fraud is typically initiated by sending an official-looking email claiming to be from our bank. The e-mail will probably warn you of a serious problem that requires your immediate attention. It may use phrases such as "Immediate attention required", "online banking upgrade notice" or ask you to fill out a survey by rewarding you with money. The phishing email may also direct you to a spoofed website or pop-up window which looks exactly like the real site, but has been set up for the sole purpose of stealing personal information. Unsuspecting people are then often fooled into handing over credit card numbers, passwords or other details.

The FTC, the nation’s consumer protection agency, suggests these tips to help you avoid getting hooked by a phishing scam:
1. Never provide your personal information in response to an unsolicited request, whether it is over the phone or over the Internet. E-mails and Internet pages created by phishers may look exactly like the real thing. They may even have a fake padlock icon that ordinarily is used to denote a secure site. If you did not initiate the communication, you should not provide any information.

2. If you believe the contact may be legitimate, contact the financial institution yourself. You can find phone numbers and Web sites on the monthly statements you receive from your financial institution, or you can look the company up in a phone book or on the Internet. The key is that you should be the one to initiate the contact, using contact information that you have verified yourself.

3. Never provide your password over the phone or in response to an unsolicited Internet request. A financial institution would never ask you to verify your account information online. Thieves armed with this information and your account number can help themselves to your savings.

4. Review account statements regularly to ensure all charges are correct. If your account statement is late in arriving, call your financial institution to find out why. If your financial institution offers electronic account access, periodically review activity online to catch suspicious activity.

What is "Vishing"?

It’s one of the latest breakthroughs in telecommunications—Voice Over Internet Protocol, or VoIP, which enables telephone calls over the web.

And guess who’s hopping on the VoIP bandwagon along with millions of legitimate customers? Criminals, that’s who. They’re using the technology to hijack identities and steal money. It already has a name: “vishing.”

New wine, old wineskins. Vishing is really just a new take on an old scam—phishing. You know the drill: you get an e-mail that claims to be from your bank or credit card company asking you to update your account information and passwords (perhaps, it says cleverly, because of fraudulent activity) by clicking on a link to what appears to be a legit website. Don’t do it, of course. It’s just a ruse, nothing more than an illegal identity theft collection system.

Vishing schemes are slightly different, with a couple of variations.

In one version, you get the typical e-mail, like a traditional phishing scam. But instead of being directed to an Internet site, you’re asked to provide the information over the phone and given a number to call. Those who call the “customer service” number (a VoIP account, not a real financial institution) are led through a series of voice-prompted menus that ask for account numbers, passwords, and other critical information.

In another version you’re contacted over the phone instead of by e-mail. The call could either be a “live” person or a recorded message directing you to take action to protect your account. Often, the criminal already has some personal information on you, including your account or credit card numbers. That can create a false sense of security. The call came from a VoIP account as well.

Vishing, as you might imagine from these scams, has some advantages over traditional phishing tricks. First, VoIP service is fairly inexpensive, especially for long distance, making it cheap to make fake calls. Second, because it’s web-based, criminals can use software programs to create phony automated customer service lines.

But if the thieves are giving out their phone numbers, they should be easy to track, right? Wrong. Criminals can mask the number they are calling from, thwarting caller ID.

So how prevalent is vishing? Hard to say, due to reporting difficulties. “A lot of would-be victims are reporting this as SPAM or phishing,” says Dan Larkin, chief of the FBI’s Cyber Initiative and Resource Fusion Unit. “But we know it’s out there. It’s happening.”

Don’t let it happen to you. Larkin recommends greeting a phone call or e-mail seeking personal information with a healthy dose of skepticism. If you think the call is legit, you can always hang up and call back using the customer service number provided by the financial institution when the account was opened.

(Vishing Information from the Federal Bureau of Investigation)

What To Do If You Fall Victim:

Contact your financial institution immediately and alert them to the situation.

If you have disclosed sensitive information in a phishing attack, you should also contact one of the three major credit bureaus and discuss whether you need to place a fraud alert on your file, which will help prevent thieves from opening a new account in your name.

Here is the contact information for each bureau's fraud division:

P.O. Box 740250
Atlanta, GA 30374

P.O. Box 1017
Allen, TX 75013

P.O. Box 6790
Fullerton, CA 92634

To help us track cyber-criminals, please forward any suspicious emails you receive to

If you have already given out your bank account information, report the theft of this information to the bank as quickly as possible by calling your nearest location.