How to Stay Secure with Online Banking

Protecting your personal financial information is extremely important to us at Consumers Credit Union. Your Online Banking experience should be not only easy and convenient, but also safe and secure.

When you view or log on to any part of our website or Online Banking, we transmit your information using full industry standard encryption. In addition, we regularly have experts on internet security test our systems. We have designed our site to meet the highest industry standards for secure transactions while maintaining high availability.

What You Can Do to Safeguard Your Information

There are important steps you must take to protect the security of your accounts and information before, during and after your Online Banking sessions. If you suspect any unauthorized activity on your account, contact us immediately at 877.ASK.CCCU (275.2228).

Stay Secure Online

The security of your personal information is always a priority at CCU. We use a variety of technologies and techniques to help ensure that your accounts are safe and sound on our side. Here’s how you can help protect your information and money: Always approach communication from your digital devices with a critical eye. Play it smart and minimize your risks.

Here are some specific steps you can take:

Protect your Email Account! This is a critically important way to secure your personal data and save you from having to deal with someone using your identity for fraudulent reasons, like stealing your money from your accounts. Anyone who gains access to your email account can reset your passwords on any other site, including Online Banking, and do anything you could do on those sites, such as wire money out, send checks to fake vendors, or max out your credit card. Use the highest level of security your provider offers for your email account, including:
- A secure, unguessable password that is not used on any other site. The most common way for hackers to get into your email is if you use the same password at other sites.
- Multi-factor (aka two-step) authentication – Most email providers allow you to use an authentication app such as Google Authenticator when logging in from a new device. This one security tactic can stop an account takeover in its tracks. For example, if you use Gmail, learn how to protect your account with two-step verification.
Never give your PINs (Personal Identification Numbers) or passwords to anyone.
If you notice suspicious activity in your accounts, report it immediately to us.
Always keep your PC and mobile devices up to date with the latest vendor supplied updates.
Install anti-virus, anti-spyware and other internet security software on your PC. Use it regularly and keep it up to date.
Be wary of emails you received from people you don't know, and don't open any attachments or click any links they may contain. When in doubt, delete the message without opening it.
PLEASE NOTE: No one, including anyone at Consumers Credit Union, will ever ask you to transfer money to anyone (including yourself) in order to keep it safe or prevent fraud. If you get a call or text message like this or if you have any question about a communication you have received, contact us directly at 877.ASK.CCCU (275.2228).

We recognize how important it is to protect your identity from unlawful use and shield your accounts from fraud and unauthorized access. With that in mind, we want you to know that we will not ask for your CCU Username, password or multi-factor authentication (MFA) information in email. You only use your username, password and MFA challenge questions (potentially) when you log into Online Banking.

Furthermore, Consumers Credit Union will never:

Send an email threatening to close your account if you do not take the immediate action of providing personal information.
Send an email asking you to reply by sending personal information.
Share your name with anyone outside the credit union in a manner inconsistent with our Privacy Policy.
Contact you and ask for your Online Banking password or other login information.

Beware These Common Scams

Anyone can fall victim to a scam. Scammers play on your trust and typically create a story with a sense of urgency to make you feel like you need to act quickly. Some common examples are:

The Imposter: “This is the IRS and you owe back taxes. You must give us your account details to pay these taxes immediately or a lawsuit will be filed against you.”
Online Romance: “I want to meet you in person but I can’t afford it. Please send me some money.”
Fake Family Emergency: “This is the police. Your grandson has been arrested. If you wire bail money to this account number immediately he can be released, otherwise he will have to spend the night in jail.”
Prize Winner: “Congratulations, you have won a fabulous prize! We just need to collect the taxes and fees. We will send you instructions for how to pay them.”
Investment Scam: “This investment is a guaranteed winner! Are you ready to participate in this once-in-a-lifetime opportunity?”
Tech Support: “This is Microsoft calling. We have detected malware on your computer. I can get that fixed for you right away, for a small fee.”
Fake Credit Union Call: “This is Consumers Credit Union. There has been fraud on your account that I’d like to clean up for you right away. But first, just to confirm the account, can you give me your credit card number and read me the numbers on the back of your card?”
Pay With A Gift Card: No legitimate company or organization will ever ask you to go to a store and purchase gift cards to be sent to them to pay a debt or fee. This is a popular way for scammers to get untraceable funds from you.

Remember, Consumers Credit Union will never ask you for confidential information like your username, password, PIN or other information when we contact you.

If you are ever contacted by a scammer and they ask for personal information or to send money, end the conversation immediately and call Consumers Credit Union at 877.ASK.CCCU (877-275-2228) to ensure that your account is protected.

Personal information stays personal. Period.

Online & mobile security

Protecting you and your funds. 24-7-365.

256-Bit Secure Sockets Layer (SSL) Technology	For your protection you must use a browser that supports 256-bit encryption, the strongest method of encryption available for use today to access your CCU accounts online. The latest versions of Chrome, Firefox and IE are up to date, so we suggest using one of those.
Firewalls	The servers that run our site are protected by systems that prevent unauthorized access to our networks called firewalls. We keep an eye on them constantly to prevent security breaches.
Timeouts	Your online account session will automatically end if there's no activity for 30 minutes. After this timeout, you’ll need to log in again. This is to protect you from accidentally forgetting to log out of your account and someone using the same computer after you having access to your personal stuff.
Multi-factor Authorization	Not only do we ask you to enter your username and password, but we have added another layer of enhanced security that includes a temporary access code to get into your account, proving you’re who you say you are.
Third Party Links	Sometimes we’ll link you to partner sites or resources outside of myconsumers.org. When you click on one of those links, you’ll get a pop-up window that notifies you that you are about to enter a third-party site that is owned and operated by someone other than CCU. Before clicking the “continue” button, we recommend that you first read and evaluate the privacy and security policies of that organization to fully understand what information may be collected with or without your knowledge. We do our best to link you to companies we admire that we feel offer helpful info, but we’re not responsible for and nor do we endorse, approve or guarantee the accuracy of information or recommendations on external websites. Like visiting any site on the web, use your best judgment when reading and taking action on what you learn on a site.
Text Banking Security	We’re hyper-careful to ensure that text banking will never include any sensitive information about your accounts (i.e. account number, PIN, email or personal address). What they do include is your balance and most recent transaction information -- helpful stuff, not personal stuff.

Identity theft assistance

Protect yourself

A whole world of protection in your little hands

Amp up Your Privacy Settings	Don’t use easy information, such as your birthday or your spouse's name, for your online password, Visa Debit Card PIN or your PIN for our automated telephone banking. Never give out personal information online or over the phone unless you have initiated the contact. If someone calls you and asks for your Social Security number or PIN, it is 100% never us. We’ll never ask you for that kind of info. Don't include information such as your driver's license or Social Security number on your pre-printed checks. Store new and cancelled checks in a secure (preferably locked) place and shred unnecessary financial documents. Consider signing up for a check safekeeping service, which allows your financial institution to keep a copy or digital image of all checks for seven years instead of sending them back with the account statement. Avoid writing your account number on envelopes or other items that may be thrown away later. Some shady characters go through the trash looking for this kind of info.
Protect Your Cards	Select a unique Personal Identification Number (PIN) that isn’t easily identifiable (e.g., birth date, phone number). If you have multiple cards, have multiple PINs. Memorize all PINs, such as your ATM or debit card PIN and online passwords. Don’t keep them with you in your wallet or an obvious place like your home office desk. Keep a list of your card account and customer services numbers in a safe place in case your cards are lost or stolen. When you’re online shopping, don't provide your personal or financial information until you’ve checked for indicators that the site is secure. Example: a lock icon on the browser's status bar or a website URL that begins "https:" (the "s" stands for "secure"). Monitor your card transaction activity on your bank statements and check in online as often as you can. As soon as you get your card, sign the back. Report suspicious card activity, or lost/stolen CCU credit cards at 855.437.2790 or lost/stolen CCU debit cards at 888.908.7833.
Check Your Mail	If you stop receiving bills, statements or other monthly mailings, or if a bill is not received when expected, it may be an indication that your mail is being intercepted, and you should call the company just to be sure. Swing by your mailbox to pick up your mail every day, and use a locking mailbox if possible. Send outgoing financial mail from a secured mailbox or a post office; avoid leaving checks or personal mailings in your home mailbox. Never send cash through the mail. Consider signing up for a check safekeeping service, which allows your financial institution to keep a copy or digital image of all checks for seven years instead of sending them back with the account statement. Shred all unwanted financial mail - even those preapproved offers for credit cards, convenience checks or loans.

Fraud & phishing

Do you know what a phising scam is? You should.

Report Account Fraud	Call us immediately 877.275.2228 if you spot something irregular on your account or suspect fraud. We promise you a Total Protection Guarantee if any unauthorized transactions occur on your CCU accounts due to usage of our online or automated phone services, or fraudulent ATM, Visa debit card or Visa credit card signature transactions. That means CCU guarantees that your liability will be zero dollars ($0.00). The sooner you report it, the sooner we can help.
Report Suspicious Emails	Get an email claiming to be from CCU but it looks like it’s from anyone but? Forward it to [email protected] and we’ll check it out.
Avoid Phishing Scams	Phishing is a popular scam these days. Criminals lure in victims through spam emails, text messages or pop-up messages requesting personal and/or financial information. These can be very well done, looking just like websites you visit every day. Learn to protect yourself by visiting OnGuard Online.
Protect Sensitive Data On Your Computer	Your computer probably contains a significant amount of sensitive information about you. If it falls into the hands of the wrong person, you could be in trouble. Here’s how to protect yourself: Update your operating system (Windows, OSX, etc.), your browser (Chrome, Firefox, IE, etc.), and your online software (Microsoft Office or other web applications) frequently. Sometimes this is automatic, but if not, you need to check manually for updates. Up-to-date software means up-to-date security, which will dramatically reduce the potential that your computer can be accessed by hackers. They usually take advantage of known software weaknesses, so if you keep up-to-date with your patches, you'll be a much tougher target. Use and update your antivirus software regularly. Computer viruses can delete files or send out files to unauthorized users. Your antivirus software should always be active when your computer is turned on, automatically screening your files often. Back up your data weekly. Copy your personal data to an external hard drive and/or a cloud storage site such as iCloud, Google Drive, or Dropbox. Don't download files from strangers or click on hyperlinks from people you don't know. Even if you know the person sending you an email, never open an attached file until you have scanned it first using your antivirus software -- most email programs like GMail will do so automatically, but if something looks unusual, don’t click it. Use a firewall. The firewall allows you to limit uninvited access to your computer. Without a firewall, hackers can take over your computer and access sensitive information. Use a secure browser. This will guard the safety of your online transactions. When you're submitting any sensitive information, look for the "lock" icon on the status bar and/or an https:// at the beginning of the URL. Both are a symbol that your information is secure during transmission. Password protect all sensitive information on your computer using a "strong" password comprised of a combination of letters (upper and lowercase), numbers, and special characters such (#$&!). Avoid using an automatic log-in feature that saves your username and password; and always log off when you're finished. You certainly do not want a burglar to make off with a computer with full access to your online banking or brokerage accounts! Delete any personal information stored on your computer before you dispose of it using a utility program that overwrites the entire hard drive and makes the files unrecoverable. Just deleting them or “sending to trash” isn’t enough. They can be recovered. Read the privacy policy on a site to understand what they do with any information they capture about you . They should answer questions about the access to and accuracy, security and control of personal information the site collects, as well as how sensitive information will be used, and whether it will be provided to third parties.

Online Security FAQ

Q: What is phishing?

Q: What protection do I have if I responded to a phishing attempt?

Q: Should I provide authentication information in an email?

Q: Does Consumers send out marketing emails?

Q: What should I do if I'm suspicious of email bearing the Consumers logo?

Q: Is Consumers proactively working to stop phishing?

Q: Is your network secure?