Online Security Measures

BB&T takes network security very seriously, and we provide a number of solutions designed to help ensure that your electronic transactions and communications with us remain safe and secure.

Our commitment

BB&T is committed to protecting the security of our clients' personal information, including when it's transmitted online. Therefore, BB&T online banking and our other online services use advanced Internet security technology to protect your personal financial information against unauthorized access. is managed by Branch Banking and Trust Co., a subsidiary of BB&T Corporation, and provides information about and access to financial services offered by the BB&T Corporation family of companies.

BB&T will never request personal information via email or pop-up windows. Even with the robust security system in place at BB&T, there are additional steps you can take to further protect your financial and personal information.

User ID and password

To access certain online services, you may have been assigned a unique user ID and password for your use only. Your user ID and password are designed to protect you by confirming your identity to our computer network systems. As an additional layer of protection, BB&T uses other tools to properly authenticate you to BB&T online banking. To prevent unauthorized access to your accounts, it's very important to keep your user ID and password confidential.

Here are some steps you can take to protect the confidentiality of your user ID and password:

  • Use a unique password for each online account or application.
  • Never post your password on your computer monitor, the bottom of your keyboard, under your mouse pad or any other place near your computer system.
  • Change your password at least four times per year. 
  • Change your password immediately if you suspect it has been discovered by anyone else.
  • Never give your password to anyone over the phone, regardless of the circumstances.

Selecting strong passwords

When creating a strong password, your objective is to make it as difficult as possible for anyone to make an educated guess about what you have selected. However, it should be developed in a manner that makes it simple for you to remember without having to write it down.

When creating passwords:

  • Don't use your (or any family member's) name, nickname or initials in any form (forwards or backwards spelling).
  • Don't use your user ID in any form.
  • Don't use other information that can be easily obtained about you. This includes birth dates, telephone numbers, license plate numbers, Social Security numbers, street addresses or the brand of automobile you drive, etc.
  • Don't use all the same character, such as 333333, or consecutive keys on a keyboard, such as ASDFGH.
  • Don't use words that would appear in a dictionary (English or other), as they can be easily compromised by password-cracking programs that use electronic dictionaries.

Tips for choosing strong passwords:

  • Develop a method of creating passwords that makes it easier for you to remember. You want to avoid writing them down.
  • You can use a line in a favorite song, poem or movie and select the first letter of each word to create your password. Also include at least one number. For example, "The early bird catches the worm" becomes the password 1TEBCTW.
  • Use two short words and connect them with a number, such as WIN7ONE.
  • Use a word that you can easily remember, but remove the vowels and replace them with numbers. For example, "summer" becomes the password S2MM3R.
  • If allowable, make your passwords at least eight characters long, and include capital letters and special characters, such as @, #, $, % and &.

Timeout feature

To prevent someone from gaining unauthorized access to your financial information, you should always log off the system after you've completed your business. As an added level of protection, BB&T online banking has a timeout feature that automatically terminates your session after an extended period of inactivity.

For additional protection, access to the BB&T system will be denied or locked after three unsuccessful login attempts.

Protecting online applications

When you choose to apply for BB&T products using an online application, you'll be required to provide the personal information necessary to process your request. To ensure that your information remains confidential, it's sent to BB&T in a secure session, using Secure Socket Layer (SSL) technology, which is a security protocol for transmitting information via the Internet.

Many web browsers support SSL, and many websites use SSL to securely obtain confidential user information, such as credit card numbers. SSL technology scrambles or encrypts information as it moves between your computer's browser and BB&T computer systems.


Encryption is the process by which information is transformed or coded into an unreadable form to anyone who doesn't have the decryption key. Also referred to as a secure session, this process prohibits unauthorized individuals from intercepting and viewing the information.

How to tell whether your online session with BB&T is secure:

  • An unbroken key or a locked padlock icon will appear at the bottom of your browser window.
  • The website address will change from "http" to "https" at the top of your browser window. 
  • You'll be required to enter a user ID and password to gain access to the site.

Firewalls and activity logs

Firewalls and activity logs are additional security mechanisms that BB&T uses to protect your account and online application information. A firewall acts as a barrier between the Internet and the BB&T internal network system, permitting only specific traffic to pass in and out. To further ensure that only authorized users have access to our systems, BB&T conducts regular reviews of activity logs.


Email transmitted across the Internet is normally not protected and may be intercepted and viewed by others. Therefore, you should refrain from sending any confidential or private information via unsecured email to BB&T. We'll never ask you to send confidential information, such as your logon ID, password, account numbers or Social Security number to us via email.

To ensure secure communications, use SecureMessage from online banking or Message Center from U by BB&T.

Occasionally, we'll retain the content of your email and our replies to confirm proper responses to your questions and requests, to comply with legal and regulatory requirements, and to ensure consistent delivery of the perfect client experience.

Virus protection

BB&T uses the most up-to-date technology to protect our internal systems and your personal financial information from computer viruses. Malicious viruses can sometimes be used, however, to gain access to your personal computer. For protection of your personal system, BB&T recommends that you consider the following measures:

  • Purchase and install antivirus software, such as McAfee's VirusScan or Symantec's Norton AntiVirus, to detect and eliminate potential viruses on your computer.
  • Consider purchasing antivirus software that automatically scans for virus updates whenever you go online. If your software doesn't have this feature, update your antivirus software at least weekly by contacting your antivirus vendor to obtain the most current antivirus signature files.
  • Never open email attachments from individuals you don't know. Simply delete the messages altogether.
  • Use caution with email attachments, even if you know the sender. If you weren't expecting the message or if you have any suspicions, contact the sender and confirm that they sent the message.

Report suspicious activity

If you've received a suspicious email or seen something out of the ordinary on our website, please call us immediately at 800-BANK-BBT (800-226-5228).

Report phishing

Just a friendly reminder: BB&T never uses email or text messages to solicit your confidential information.

Report suspicious email that uses the BB&T brand by forwarding the email to us at

Together we can make a difference

The power and convenience of online banking has brought major benefits—as well as new and more complex security challenges.

At BB&T, we realize that online security is a shared responsibility. By employing advanced technology on all of our systems and keeping you informed of strategies to help protect your confidential information, we're confident that together we can minimize your security risks and continue to provide a seamless and rewarding online banking experience.

Interested in online banking?

Related topics

Protecting Your Internet Activities and Electronic Data  (Article)

With more financial activity occurring online than ever before, it's essential to know how to reduce the risks to your data.

Fraudulent Emails  (Article)

Stay on guard for fake emails and websites that have been designed to steal your financial information.

Email Encryption  (Article)

If you send and receive email that contains personal identification information—like account numbers—be sure you make email encryption a priority.

Credit Reports  (Article)

Your credit history may change frequently. By monitoring it on a regular basis, you can be more aware of any fraudulent activity.

Branch Banking and Trust Company, Member FDIC.