Potential Phishing Scams - Potential Phishing Scams Caution.

Caution. Beware of Phishing Scams.

If you have questions or wish to report what you believe to be a phishing incident, please contact us at cashmgmt@rcbank.com or call us at (916) 567-2660.

Email claiming to be from the "Electronic Payments Association"

NACHA — The Electronic Payments Association has received reports that individuals and/or companies have received a fraudulent email that has the appearance of having been sent from NACHA and signed by a non-existent NACHA employee. Specifically, this email claims to be from the “Electronic Payments Association” and appears to be coming from the email address “payments@nacha.org <mailto:> .” See a sample of the email below.

Be aware that phishing emails frequently have attachments and/or links to Web pages that host malicious code and software. Do not open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.

NACHA itself does not process nor touch the ACH transactions that flow to and from organizations and financial institutions. NACHA does not send communications to individuals or organizations about individual ACH transactions that they originate or receive.

If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system.

Always use anti-virus software and ensure that the virus signatures are automatically updated.

Ensure that the computer operating systems and common software applications security patches are installed and current.

Be alert for different variations of fraudulent emails.

= = = = = Sample Email = = = = = =

   From: payments@nacha.org [mailto:payments@nacha.org]
   Sent: Tuesday, February 22, 2011 7:32 AM
   To: Doe, John
   Subject: ACH transaction rejected

   The ACH transaction, recently sent from your checking account (by you or any other person), was cancelled by the Electronic Payments Association.

   Please click here to view report

Potential phishing scam directed towards Internet Banking customers.

River City Bank uses a third party, Digital Insight, to host its Internet Banking system. This phishing scam is trying to target Digital Insight users by sending emails that appear to be from an official Digital Insight source (for example, Digital Insight Customer Care or Digital Insight Administration). It is designed to trick the recipient into clicking a link in the e-mail for the purpose of acquiring sensitive data, such as passwords or financial information.

Please be advised to NEVER click links or install programs suggested in emails, even if the email appears to be from an official or familiar source. For your protection, we ask that you immediately delete any email that is requesting you to click a link and fill out a form with your personal information. River City Bank and Digital Insight will never send our customers emails containing links to download software or applications.