For your online safety and security...
The following are some helpful tips when shopping online:
Beware of:
- Deals for Black Friday and Cyber Monday, which may contain mobile malware
- Malicious screensavers, ringtones, and e-cards
- Make anti-virus software, which may trick you into purchasing the software
- Social media scams, such as phony Facebook pages, Twitter accounts, online promotions, and contests
- Scammers advertising popular holiday items
- Free mobile apps, attempting to steal your information
- Mystery shopping scams asking you to shop for $XX dollars (ex: $100)
- Online coupon scams, asking for your personal or financial information using email
- Phishing scams - emails, text messages or phone calls asking for personal or financial information
- If an offer or item sounds too good to be true, it's probably a scam!
Do the following to help protect yourself:
- Secure your computer - at a minimum, have anti-virus, anti-spyware, and a firewall
- Set up alerts, so you always know when transactions are above a certain limit
- Turn off your computer when you're done shopping
- Research the seller of items before you buy
- Monitor your credit, debit, and account numbers used for online shopping to help identify any unauthorized usage
- Post vacation pictures after you are back home
Learn to stay safe online
About "phishing" and "spear phishing"
Visions Federal Credit Union makes every effort to ensure that our members' information is safe and secure.
A potential threat involving online account access involves email and internet-related fraudulent schemes, such as "phishing" are being perpetrated with increasing frequency, creativity, and intensity. Phishing involves the use of seemingly legitimate e-mail messages and Internet websites to deceive members into disclosing sensitive information, such as bank account information, Social Security Numbers, credit card numbers, passwords, and personal identification numbers (PINs). Financial institutions have reported an increase in fraud attempts involving the exploitation of valid online banking credentials.
Recent phishing attacks are being referenced as "spear phishing." This involves an e-mail containing either an infected file or a link to an infectious website. The e-mail recipient is usually a person within a company who has initiated funds transfers. Once the user opens the attachment or navigates to the website, malware is installed on your computer, which contains a key logger that compromises the users' online authentication credentials. The attacker then initiates a funds transfer by logging into your internet banking accounts.
There is no guaranteed product or service to protect yourself from a "spear phishing" attack. It is important to educate yourself and be wary of any emails received containing attachments or directions to follow links and input data.
Do the following to help protect yourself:
- Never assume that recognizing the email address means it is safe
- Do not open an unexpected email that contains an attachment. It could contain malware, even if it's not "spear phishing" malware
- Ask friends and coworkers to notify you before they send an email with an attachment
- Don't take any chances. If you're unsure about an e-mail or attachment, delete it
- Check out our tips for protecting your mobile devices
Prevention Tips:
1. Password Strength: Use strong passwords. These are at least twelve characters in length, alphanumeric, case sensitive, and require the use of at least one special character (e.g., !, #, $, %, etc.). And change your most important passwords every two months or more.
2. Multi-factor authentication (MFA): If you can set up Face-ID, push notifications, or secure access codes to strengthen your login, then do it! MFA is one of the strongest security measures to keep you aware of login attempts on your digital accounts
3. Security Software: Protect your home computer with anti-virus and spy-ware software and a firewall. Update your software frequently!
4. Time and Date of Last Access: Check the date and time that your account was last accessed after logging into your account. This may help you identify unauthorized access.
5. Logout Procedures: Logout of your online banking session by clicking the logout button* rather than just simply closing the browser window or using the "backspace" key.
*Please keep in mind that if you are using Visions digital banking and Bill Pay in your internet browser, you should click "log out" each session to fully be logged out.
6. Reconcile Accounts: Reconcile all accounts and transactions on a daily basis instead of monthly.
7. Type the URL: Never access a website from a link in an email, especially if it's asking for personal information.
Be aware of:
1. Public Access Computers: Computers accessible to the public may be infected with viruses and/or malicious software, such as key loggers.
2. E-mails offering a prize or discount: these may ask you to enter a user ID and password, which thieves will collect to gain access to your accounts.
3. Grammar and spelling: Fraudulent e-mails often contain poor grammar or misspelled words.
4. Email is Not Secure: Do not include personal or sensitive data in an e-mail. It could be intercepted.
5. Anyone asking for your Secure Access Code: Your Secure Access Code is part of MFA and identity verification for you to enter into your own account. We will never ask for your Secure Access Code via text, email, or over the phone.
Are you concerned about fraud? Want to report a scam?
Please contact us if you believe you have received a suspicious email, text message, or phone call from Visions, or if you provided any of your personal information including your account number.
You may contact a representative in our Contact Center during normal business hours at 800.242.2120. If you'd like to report any card related fraud, please call 833.224.5785 (available 24/7).