Skip to main content

Report Suspicious Communications and Transactions

Report a lost or stolen debit/credit card or checkbook

Losing your card is stressful, but we’re here to help.

To report a lost or stolen credit card: Sign in to Online Banking to report your lost or stolen credit card. You can also call 800.732.9194 (outside the continental U.S. call international collect 1.757.677.4701) 24/7. You won't be liable for any fraudulent charges. We’ll cancel your card and send you a replacement immediately.

To report a lost or stolen ATM or debit card: Sign in to Online Banking to report your lost or stolen debit card. You can also call 800.432.1000 (outside the continental U.S. call international collect 1.315.724.4022) 24/7. You won't be liable for any fraudulent activity. We'll cancel your card and send you a replacement immediately.

To report a lost or stolen checkbook: Call 800.432.1000 (outside the continental U.S. call international collect 1.315.724.4022) 24/7. If possible, provide the check number for the last check that was written or the name of the person or business to whom it was written. (You can sign in to Online Banking to view digital copies of your checks.)

Report a suspicious email, text or phone message

Phishing email messages (fraudulent emails that appear to be legitimate) usually contain features that reveal their true intent – if you know what to look for:

  • Often the message doesn’t address you by name. It also implies urgency, attempting to get you to act quickly before you have time to carefully read the message or examine it thoroughly.
  • If you hover over a link in a phishing email, it will usually show you that it's pointing to a site different from the one stated in the message. The goal is to get you to click through to a web page where you’ll be asked to provide personal information or open an attachment that may be malicious.
  • Phishing messages often contain grammar and/or spelling errors.

To report a suspicious email: please forward it to us at We will only reply to your message if we require additional information.

See an example of a fraudulent email layer

To report a suspicious text: Forward it to us immediately at Include a screen shot or copy of the message and the number of the sender.

Remember, you should never respond to any Bank of America email with secure information.

To report a suspicious phone message: Contact us immediately to verify the validity of the message.

What is vishing? Voice phishing is an attempt by a fraudulent source to obtain your identity, credit card details or money by phone. Be suspicious when receiving a phone call if the Caller ID or automated voice appears to be from Bank of America and asks you to confirm account details We will never contact you asking you for your bank or credit card numbers.

Report a suspicious transaction

If you provided your card or account information and see charges you don’t recognize, we recommend contacting the merchant to discuss the suspicious or disputed charge directly. It’s generally faster and simpler for you to resolve the issue with the merchant as opposed to going through the dispute process.

If you’ve already contacted the merchant or otherwise need to file a dispute:

For credit card charges: Sign in to Online Banking and follow the instructions.

For ATM or debit charges: Call 877.366.1121.

  1. File a report with your local law enforcement partners.
  2. Contact the Federal Trade Commission to report an ID theft incident: Visit layer or call 877.438.4338.
  3. Visit layer or call 888.567.8688 to prevent consumer credit reporting agencies from providing your information for preapproved and/or prescreened credit solicitations.
  4. Place a fraud alert with a consumer credit reporting agency (you only need to notify one since they automatically notify each other). Experian layer (888.397.3742), TransUnion layer (800.680.7289) and Equifax layer (888.766.0008) are the 3 reporting agencies.
  5. Check your credit reports to ensure that unauthorized accounts are not opened in your name. Visit layer or call 877.322.8228 to request your free copy every 12 months from each consumer credit reporting agency. When reviewing your credit reports, pay close attention to the accuracy of your physical address, since that can help identify fraud. Be sure to report and file fraud claims for any accounts that aren't yours.
  6. If any of your account numbers have been compromised, we recommend that you close those accounts immediately and open new accounts. To report suspicious transactions on your Bank of America accounts, follow the steps for credit card or ATM/debit card charges, as shown elsewhere on this page. A ChexSystems Alert/Consumer Report can place a security alert on compromised checking and savings accounts for 90 days to prevent accounts and services from being approved without your consent. Go to layer or call ChexSystems at 888.478.6536.

If you believe your identity and/or account information may have been compromised, these steps can help safeguard your identity and accounts:

For additional information about identity theft, visit our Fraud Prevention FAQ page.

Report a potential security concern

We value the relationship with our customers across all of the Bank of America, N.A. brands. Our products and services are designed with the best interests of our customers in mind. Our employees place the highest importance on protecting customer information and preventing data loss.

If you believe you have discovered a potential security concern on any Bank of America product, application, service, or affiliated site, contact us via and a member of the Bank of America Security Team will reach out to you.

Please provide the following information in your email:

  • Your preferred method of contact and your contact details to discuss your concern.
  • A generic high level description (please do NOT include specific details of your concern until the Bank of America Security team has established a secure communication channel with you)

We ask our employees and customers to look for opportunities to "do the right thing" in every aspect of their daily lives.Please note submissions are not eligible forcompensation.

Example of fraudulent email

To help protect your info, please be on the alert for emails that look suspicious. Here are some signs that an email may be fraudulent:

Unusual content, including poor spelling and grammar or words spelled in UK-style English

...our fraud programme detected unusual activity on your Bank of America account.

Urgent call to action

If you do not respond to the link above immediately...
Example of fraudulent email