It's Time to Change Your Passwords
To help aide in protecting your accounts, we recommend updating your password every few months, which can be done easily inside the My Settings menu in Online Banking or within the Mobile App. After changing your password, we’ll also prompt you to update your thumbprint or face ID the next time you visit your 1st Source Mobile App, just to make sure we are always up to date with the latest login security settings.
New Password Requirements
- Between 8 and 32 characters Minimum 1 of each:
- Uppercase letter
- Lowercase letter
- Special character
- The 2 previous passwords are not allowed to be reused
- Passwords should be changed every 6 months
- Make your username and password complex by using a phrase or song lyric mixed with numbers and punctuation, like “Ihave3dogs@home” or “2Tickets2paradi$e”.
- Make your username and password complex by using random, unrelated words in your password mixed with numbers, punctuation and capitalization.
Why we are requiring password changes more frequently
- 80% of all data breaches start with password theft
- 66% of Americans use the same password for multiple accounts
- Only 34% of Americans change their passwords regularly
Enhanced Security Login Notifications
1st Source employs multi-factor authentication to keep your confidential information safe, and it complies with the latest regulatory guidelines. If you are logging in with your username and password for the first time, we will send a one-time passcode via voice call or text message.
This security process provides a safe and easy-to-use means of reducing your risk of credential exposure by using multiple sources to confirm that it's really you logging into your account.
Authenticator App Support
Clients now have the option to utilize an authenticator app such as Google Authenticator or Microsoft Authenticator as a secondary account authentication mechanism. Authenticator apps provide a more secure method of providing one-time passcodes to customers due to its reliance on the customer and time to generate its unique codes. This option can be used in place of a phone call or an emailed one-time password to authenticate the account.