|Identity Theft||Online Safety||Phishing||Privacy Statement|
|Safe Mobile Banking||Security Statement||Social Engineering|
September 2016 - Fraudulent NCUA Text Messages
Consumers Should be on Alert for Fraudulent NCUA Text Messages: The National Credit Union Administration has received additional consumer calls about suspicious text messages claiming to come from the agency. The messages read: “National Credit Union Administration Alert for (recipient's phone number). Contact 844-234-5445.” Other fraudulent phone numbers to be alert for are 855-340-1398 and 844-906-0773. These texts are not communications from NCUA. The agency does not seek personal information through the internet or on the telephone.
Please contact NCUA's Consumer Assistance Center at 1-800-755-1030 between 8 a.m. and 5 p.m. Eastern if you receive one of these messages. NCUA also recommends contacting your credit union and local law enforcement as well.
You may also contact the Internet Crime Complaint Center, a partnership between the Federal Bureau of Investigation and the National White Collar Crime Center. NCUA operates an online Fraud Prevention Center that offers information about avoiding frauds and scams on its MyCreditUnion.gov website.
If you suspect you may have become a victim of identity theft because of this scam, you should immediately contact the three major credit bureaus and request a fraud alert be placed on your credit report: Equifax (888-766-0008), Experian (888-397-3742), and TransUnion (800-680-7289).
First Scam: You receive an official-looking email from the Social Security Administration with an invite to create an account so you can receive your benefits. You land on a webpage where the scammers hope you will fill out all your confidential information. Don't fall for it. Never click on links in any of these emails. If you want to sign up for a My Social Security Account go directly to https://ssa.gov/myaccount/
Second Scam: The "bad guys" actually create an account for someone and redirect the payments to a bank account controlled by them, not the victim. To prevent this from happening, create your own MySSA account with a strong username and password. This is similar to filing your tax return early before the bad guys file a bogus return and steal your refund.
Protect Yourself! When you create your MySSA account, go to the settings and choose the option that any changes to the checking or savings account into which your check is electronically deposited only be done physically at a Social Security branch office and not using your online account.
Our Credit Union is constantly concerned about our member’s critical information and privacy. With this in mind, we have the following security services installed on our Internet server:
Regulation D is a federal regulation that places limits on the number of transfers or withdrawals members can make from their saving accounts. It affects all savings accounts including; regular savings, second savings, vacation club savings, Christmas club savings, and money plus savings. Regulation D allows for up to six (6) withdrawals, overdraft transfers, electronic funds transfers/automatic withdrawals (EFT/ACH), debit card transactions, home banking, and telephone transfers per month from each savings account.
Transactions affected by Regulation D include:
What transactions are not affected by Regulation D?
What are my options once an account has reached its Regulation D limit?
What will happen if funds are in my savings account but I have reached my Regulation D limit?
I have authorized a merchant to automatically withdraw payments from my Savings Account; do these count against my monthly limit?
Exception: We have 24x7 monitoring systems for our credit and debit cards. You may receive a phone call from these monitoring systems to verify that you performed a transaction that they consider suspicious or unusual for you. However, when they do contact you they will never ask you for any personal identifying information.
What is Identity Theft? Identity theft occurs when someone uses your personal identifying information, like your name, Social Security number, or credit card number, without your permission, to commit fraud or other crimes.
What is Social Engineering? Instead of attacking a computer, Social Engineering is the act of interacting and manipulating people to obtain important/sensitive information or perform an act that is latently harmful. To be blunt, it is hacking a person instead of a computer. A social engineer can use the phone, the internet, or even show up in person to perform the malicious act. They can be after data such as ID number, username, password, server names, machine names, remote connection settings, schedules, credit card numbers, etc. They may also try to get someone to install some malicious software, visit an unscrupulous website, or even access unauthorized locations.
What is Phishing? The personal information is then used to access the individual’s account and can result in identity theft and financial loss.
Protect Your Personal Information
Be proactive in securing the mobile device itself. Depending on what security options are available on your device, create a "strong" password (consisting of unusual combinations of upper- and lower-case letters, numbers and symbols) or PIN (with random numbers instead of, say, 1234 or the last four digits of your Social Security number) and periodically change it.
The best place to download an app is from the official Web site of the credit union or company that you are doing business with or from a legitimate app store. Note that the business will often direct you to an app store.