How to Stay Secure with Online Banking

Protecting your personal financial information is extremely important to Consumers Credit Union. We understand that your Online Banking experience should be easy and convenient, but also safe and secure.

Our entire site now uses the Secure Sockets Layer (SSL) technology. When you log into our site with your username and password, the information is transmitted via a secure session that is established between your browser and our systems. Your information is encrypted, and sent to our systems for authentication into Online Banking. Please note that Consumers Credit Union never transmits your information without it being encrypted first. Please update your bookmarks and favorites to point to https://www.myconsumers.org.

In addition, we regularly have experts on Internet security test our systems. We have designed our site to meet the highest industry standards for secure transactions, while maintaining high availability.

What can you do to safeguard your information?

There are important steps you must take to protect the security of your accounts and information before, during, and after your Online Banking sessions.

1. Protect Your Password

Make sure to keep your password secret. Don't write it down, and don't share it with anyone else. If you're using a computer in a public area, make sure nobody else is watching your keystrokes as you enter your password.

2. Be Aware of Your Browser

Make sure to fully log out of the credit union website and close your browser window after you finish your online banking session, especially if you're using a computer others have access to.

3. Use a Strong Password

We recommend that you change your password regularly to something than contains more than twelve (12) characters, using a combination of upper and lowercase letters, numbers, and special characters.

4. Contact Us

If you suspect any unauthorized activity on your account, contact Consumers immediately at 877.ASK.CCCU (275.2228).

Stay Secure Online

The security of your personal information is always a priority at CCU. We use a variety of technologies and techniques to help ensure that your accounts are safe and sound. You should protect yourself also by making an effort to control risks when you use your personal computer or conduct business online.

Here are some of the steps you can take:

Do what you can to prevent unauthorized people from using your personal computer (PC).
Log off or lock your workstation or device whenever not in use.
Don't give your PINs (Personal Identification Numbers) or passwords to anyone. In addition, do not record your PINs or passwords in an easy-to-find place. If you notice suspicious activity in your accounts, report it immediately to Consumers.
Install anti-virus, anti-spyware, and other internet security software on your PC. Use it regularly and keep it up-to-date.
Be wary of emails you received from people you don't know and don't open any attachments they may contain. When in doubt, delete the message without opening it.
Make sure your browser uses the strongest encryption available and be aware of the encryption levels of the sites and applications you use.

We recognize how important it is to protect your identity from unlawful use and shield your accounts from fraud and unauthorized access. With that in mind, we want you to know that it is not our practice to ask for your CCU Username, Password, or MFA information in email. We only ask for your Username, Password, and potentially Multi-Factor Authentication Challenge Questions when you log into Online Banking.

Furthermore, you can be assured that it's not our practice to:

Send email that requires you to enter personal information directly into the email.
Send email threatening to close your account if you do not take the immediate action of providing personal information.
Send email asking you to reply by sending personal information.
Share your name with anyone outside the credit union in a manner inconsistent with our Privacy Policy.

You should never respond or reply to email that:

Requires you to enter personal information directly into the email or submit that information some other way.
Threatens to close or suspend your account if you do not take immediate action by providing personal information.
Solicits your participation in a survey where you are asked to enter personal information.
States that your account has been compromised or that there has been third-party activity on your account and requests you to enter or confirm your account information.
States that there are unauthorized charges on your account and requests your account information.
Asks you to enter your member number, username, Telephone Teller PIN, passwords, MFA Challenge Questions, or credit card number into an email or non-secure webpage.
Asks you to confirm, verify, or refresh your account, credit card, or billing information.

Personal information stays personal. Period.

Online & mobile security

Protecting you and your funds. 24-7-365.

256-Bit Secure Sockets Layer (SSL) Technology	For your protection you must use a browser that supports 256-bit encryption, the strongest method of encryption available for use today to access your CCU accounts online. The latest versions of Chrome, Firefox and IE are up to date, so we suggest using one of those.
Firewalls	The servers that run our site are protected by systems that prevent unauthorized access to our networks called firewalls. We keep an eye on them constantly to prevent security breaches.
Timeouts	Your online account session will automatically end if there's no activity for 30 minutes. After this timeout, you’ll need to log in again. This is to protect you from accidentally forgetting to log out of your account and someone using the same computer after you having access to your personal stuff.
Multi-factor Authorization	Not only do we ask you to enter your username and password, but we have added another layer of enhanced security that includes a temporary access code to get into your account, proving you’re who you say you are.
Third Party Links	Sometimes we’ll link you to partner sites or resources outside of myconsumers.org. When you click on one of those links, you’ll get a pop-up window that notifies you that you are about to enter a third-party site that is owned and operated by someone other than CCU. Before clicking the “continue” button, we recommend that you first read and evaluate the privacy and security policies of that organization to fully understand what information may be collected with or without your knowledge. We do our best to link you to companies we admire that we feel offer helpful info, but we’re not responsible for and nor do we endorse, approve or guarantee the accuracy of information or recommendations on external websites. Like visiting any site on the web, use your best judgment when reading and taking action on what you learn on a site.
Text Banking Security	We’re hyper-careful to ensure that text banking will never include any sensitive information about your accounts (i.e. account number, PIN, email or personal address). What they do include is your balance and most recent transaction information -- helpful stuff, not personal stuff.

Indentity theft assistance

Protect yourself

A whole world of protection in your little hands

Amp up Your Privacy Settings	Don’t use easy information, such as your birthday or your spouse's name, for your online password, Visa Debit Card PIN or your PIN for our automated telephone banking. Never give out personal information online or over the phone unless you have initiated the contact. If someone calls you and asks for your Social Security number or PIN, it is 100% never us. We’ll never ask you for that kind of info. Don't include information such as your driver's license or Social Security number on your pre-printed checks. Store new and cancelled checks in a secure (preferably locked) place and shred unnecessary financial documents. Consider signing up for a check safekeeping service, which allows your financial institution to keep a copy or digital image of all checks for seven years instead of sending them back with the account statement. Avoid writing your account number on envelopes or other items that may be thrown away later. Some shady characters go through the trash looking for this kind of info.
Protect Your Cards	Select a unique Personal Identification Number (PIN) that isn’t easily identifiable (e.g., birth date, phone number). If you have multiple cards, have multiple PINs. Memorize all PINs, such as your ATM or debit card PIN and online passwords. Don’t keep them with you in your wallet or an obvious place like your home office desk. Keep a list of your card account and customer services numbers in a safe place in case your cards are lost or stolen. When you’re online shopping, don't provide your personal or financial information until you’ve checked for indicators that the site is secure. Example: a lock icon on the browser's status bar or a website URL that begins "https:" (the "s" stands for "secure"). Monitor your card transaction activity on your bank statements and check in online as often as you can. As soon as you get your card, sign the back. Report suspicious card activity, or lost/stolen CCU credit cards at 800.449.7728 or lost/stolen CCU debit cards at 888.908.7833.
Check Your Mail	If you stop receiving bills, statements or other monthly mailings, or if a bill is not received when expected, it may be an indication that your mail is being intercepted, and you should call the company just to be sure. Swing by your mailbox to pick up your mail every day, and use a locking mailbox if possible. Send outgoing financial mail from a secured mailbox or a post office; avoid leaving checks or personal mailings in your home mailbox. Never send cash through the mail. Consider signing up for a check safekeeping service, which allows your financial institution to keep a copy or digital image of all checks for seven years instead of sending them back with the account statement. Shred all unwanted financial mail - even those preapproved offers for credit cards, convenience checks or loans.

Fraud & phishing

Do you know what a phising scam is? You should.

Report Account Fraud	Call us immediately 877.275.2228 if you spot something irregular on your account or suspect fraud. We promise you a Total Protection Guarantee if any unauthorized transactions occur on your CCU accounts due to usage of our online or automated phone services, or fraudulent ATM, Visa debit card or Visa credit card signature transactions. That means CCU guarantees that your liability will be zero dollars ($0.00). The sooner you report it, the sooner we can help.
Report Suspicious Emails	Get an email claiming to be from CCU but it looks like it’s from anyone but? Forward it to [email protected] and we’ll check it out.
Avoid Phishing Scams	Phishing is a popular scam these days. Criminals lure in victims through spam emails, text messages or pop-up messages requesting personal and/or financial information. These can be very well done, looking just like websites you visit every day. Learn to protect yourself by visiting OnGuard Online.
Protect Sensitive Data On Your Computer	Your computer probably contains a significant amount of sensitive information about you. If it falls into the hands of the wrong person, you could be in trouble. Here’s how to protect yourself: Update your operating system (Windows, OSX, etc.), your browser (Chrome, Firefox, IE, etc.), and your online software (Microsoft Office or other web applications) frequently. Sometimes this is automatic, but if not, you need to check manually for updates. Up-to-date software means up-to-date security, which will dramatically reduce the potential that your computer can be accessed by hackers. They usually take advantage of known software weaknesses, so if you keep up-to-date with your patches, you'll be a much tougher target. Use and update your antivirus software regularly. Computer viruses can delete files or send out files to unauthorized users. Your antivirus software should always be active when your computer is turned on, automatically screening your files often. Back up your data weekly. Copy your personal data to an external hard drive and/or a cloud storage site such as iCloud, Google Drive, or Dropbox. Don't download files from strangers or click on hyperlinks from people you don't know. Even if you know the person sending you an email, never open an attached file until you have scanned it first using your antivirus software -- most email programs like GMail will do so automatically, but if something looks unusual, don’t click it. Use a firewall. The firewall allows you to limit uninvited access to your computer. Without a firewall, hackers can take over your computer and access sensitive information. Use a secure browser. This will guard the safety of your online transactions. When you're submitting any sensitive information, look for the "lock" icon on the status bar and/or an https:// at the beginning of the URL. Both are a symbol that your information is secure during transmission. Password protect all sensitive information on your computer using a "strong" password comprised of a combination of letters (upper and lowercase), numbers, and special characters such (#$&!). Avoid using an automatic log-in feature that saves your username and password; and always log off when you're finished. You certainly do not want a burglar to make off with a computer with full access to your online banking or brokerage accounts! Delete any personal information stored on your computer before you dispose of it using a utility program that overwrites the entire hard drive and makes the files unrecoverable. Just deleting them or “sending to trash” isn’t enough. They can be recovered. Read the privacy policy on a site to understand what they do with any information they capture about you . They should answer questions about the access to and accuracy, security and control of personal information the site collects, as well as how sensitive information will be used, and whether it will be provided to third parties.

Online Security FAQ

Q: What is phishing?

Q: What protection do I have if I responded to a phishing attempt?

Q: Should I provide authentication information in an email?

Q: Does Consumers send out marketing emails?

Q: What should I do if I'm suspicious of email bearing the Consumers logo?

Q: Is Consumers proactively working to stop phishing?

Q: Is your network secure?