Cal Coast Security Center

The safety and security of our member's identity and personal information is our top priority. Our security center will provide you with alerts on the latest fraud and scam attempts we've detected, tips and resources on how to keep your information safe and what to do if you think you are a victim, and so much more!  

Cybersecurity Alert

December 2022

At California Coast Credit Union, 你的财务状况和资金安全是最重要的.  

With continued media reports about cyber-attacks and security breaches, we want to remind our members about important steps you can take to protect your personal information. 

Six tips to protect yourself:
  1. Enroll in account alerts through your Cal Coast Online Banking login, available under the alerts option within your online banking.
  2. 如果您收到通知,您可能已成为数据泄露的受害者, validate this information with the sender directly.  
  3. Update your passwords and PINs. This is crucial, especially if you reuse credentials. Also, consider enabling two-factor authentication login services.
  4. Add a fraud alert or credit freeze with all three credit bureaus. 父母和监护人必须对孩子的身份保持谨慎,并可以直接向信用机构发出信用警报或冻结.
  5. Enroll in credit monitoring services. In many cases, the entity where the compromise occurred will offer free enrollment in credit monitoring services.
  6. Monitor your accounts, and report any fraud immediately.

If you have any questions, please visit your nearest branch, or contact our Member Service Center at (877) 495-1600 during regular business hours. 

A Multi-layered Defense-in-depth Security Strategy

我们希望帮助您免受身份盗窃和在线欺诈的威胁. Identity theft means that your personal information, such as your Social Security number or driver's license number, is obtained and used by an impostor. 小偷可以通过各种方式获取你的信息,包括:偷你的钱包或邮件, phishing, computer scams and viruses, confiscating documents found in your trash, or even data breach. 加州海岸信用社不通过短信与会员沟通(除了手机银行命令和警报),也不会通过电子邮件或短信询问韦德体育开户信息. 

Your Safety is Our Priority

保护我们会员的账户和韦德体育开户信息安全是我们的首要任务. Robust defenses with 24/7 monitoring are in place so our members can feel confident and worry free. 我们的系统有多个安全层,以防止外人获得敏感信息.

Regular audits from industry experts give high marks to our approach. In addition, all member deposit accounts are insured by the National Credit Union Association (NCUA) for up to $250,000.1 Our net worth ratio exceeds the 7% threshold for being defined as well-capitalized by the NCUA.  

Safety and Security

Upgrade to Extra Value Checking

加州海岸的超值支票包括免费支票账户的所有福利, but with added security, identity theft protection and monitoring, monthly ATM fee rebates, loan discounts, and so much more. There's no cost to having peace of mind. 只要让我们知道你有兴趣升级或今天开设一个帐户,并获得您的前两个计费周期免费!

Recent Scams Alerts

Spoofing scams are when fraudsters manipulate or mask the number from which they are calling. 我们最近注意到欺骗企图的增加,坏人会谎称自己是你的金融直觉,以获取有关你或你的银行信息的敏感信息.

California Coast Credit Union will never:

  • Contact you to ask you for your Online Banking User ID or Password.
  • Contact you to ask you for a one-time passcode.
  • Contact you and ask you for your card information or PIN.
  • Contact you and ask for personal identifiable information.

The FTC's recommendations on how to avoid spoofing:

  • Don't answer calls from unknown numbers. If you answer such a call, hang up immediately.
  • If you answer the phone and the caller - or a recording - asks you to hit a button to stop getting the calls, you should just hang up. Scammers often use this trick to identify potential targets.
  • 不要回答任何问题,尤其是那些能用“是”或“不是”来回答的问题."
  • Never give out personal information such as account numbers, Social Security numbers, mother's maiden names, passwords or other identifying information in response to unexpected calls or if you are at all suspicious.
  • If you get an inquiry from someone who says they represent a company or a government agency, hang up and call the phone number on your account statement, in the phone book, or on the company's or government agency's website to verify the authenticity of the request. You will usually get a written statement in the mail before you get a phone call from a legitimate source, particularly if the caller is asking for a payment.
  • Use caution if you are being pressured for information immediately.
  • If you have a voice mail account with your phone service, be sure to set a password for it. Some voicemail services are preset to allow access if you call in from your own phone number. A hacker could spoof your home phone number and gain access to your voice mail if you do not set a password.
  • 和你的电话公司谈谈电话屏蔽工具,检查一下你可以下载到移动设备上的应用程序. The FCC allows phone companies to block robocalls by default based on reasonable analytics. More information about robocall blocking is available on the FCC website

Please also be wary of other forms of fraud, 例如欺诈性电子邮件(Phishing)或欺诈性短信(Smishing),因为这些都是为了欺诈目的而试图获取你的韦德体育开户信息的常见策略. 

Juice jacking is in the news again. 自2021年以来,它一直存在,但联邦调查局和联邦通信委员会再次提高了人们的认识. 

“Juice jacking” is where bad actors use public chargers to infect smartphones and other devices with malware. This mostly happens in airports, hotels, and shopping centers, so avoid charging your mobile device there.

Tips to help you avoid becoming a juice jacking victim:

  • Avoid using a public USB charging station. Use an AC power outlet instead.
  • Bring AC, car chargers, and your own USB cables with you when traveling.
  • Carry a portable charger or external battery.
  • Consider carrying a charging-only cable, which prevents data from sending or receiving while charging, from a trusted supplier.
  • 如果你将设备插入USB端口,提示你选择“共享数据”或“仅充电”,” always select “charge only.”
  • Keep your software updated. 软件更新可能具有当前的安全保护、补丁和错误修复.
  • 如果你在手机上收到提示,询问你是否信任它所插入的设备, that device may be attempting to transfer data from your phone. Decline the request.
  • Use two-factor authentication or biometric log-ins when available.

If you suspect that you might have been a victim of juice jacking, check your device for any signs of unusual behavior, such as unexpected pop-ups, notifications, or apps that you didn’t install, and report this to your phone provider. As always, 我们建议您向当局报告任何果汁劫持事件,以帮助防止其他人成为受害者. 

Sources:

  1. FCC
  2. U.S. Army Cyber Command 
  3. AGIO

Fraud Prevention Tips

  • 如果银行账户或信用卡账单没有按时到达,请立即与您的金融机构联系. 
  • 及时检查您的银行账户和信用卡对账单,并立即报告任何差异或未经授权的交易.

 

  • Store your checks, deposit slips and credit union statements in a secure and locked location. Never leave your checkbook in your vehicle. 
  • Never give your account number to individuals you do not know, especially over the telephone, through email or on the Internet. Be particularly aware of unsolicited phone sales. Fraud artists can use your account without your authorization and you could be held responsible. 
  • When you receive your check order, ensure that all checks are present and that none are missing. 如果你认为你的支票丢失了,立即向信用合作社报告. If you fail to receive your order by mail, 通知信用合作社,因为支票可能在运输过程中被盗或丢失. 
  • If your home is burglarized, check your supply of checks to determine if any have been stolen. Look closely, because thieves will sometimes take only one or two checks from the middle or back of the checkbook. The longer it takes to realize that your checks have been stolen, the more time the criminal has to use them. 
  • Limit the amount of personal information on your checks. 例如,不要包括你的社会安全号码或驾驶执照号码. 罪犯可以很容易地利用这类信息来窃取你的身份. 
  • Do not leave blank spaces on the payee and amount lines. Draw a line or line through any empty spaces. 
  • Use dark ink that cannot be easily erased or written over. Based on recent studies, the ink found in gel pens, has been the only ink found to be counterfeit proof. 
  • 从信用合作社或信誉良好的支票订购公司购买支票是最安全的. 
  • 在加州海岸信用社,我们的电子对账单允许您查看您的机密加州海岸信用社财务记录,没有书面记录,因此您不必担心身份盗窃或金融欺诈. When you sign up for our e-Statements, 您可以从您的家庭或工作电脑的隐私查看您的所有交易, no more waiting for your statement to arrive in the mail. And best of all, it's FREE! 

Home Computer

使用最新的更新来维护您的计算机是您可以采取的最有效的安全预防措施之一. As vulnerabilities in software are discovered, the software companies release updates, or patches, to address these issues. Many of these programs can be configured to automatically check for updates over the Internet.

Adobe

Adobe has recently released several updates to their products.

  • Adobe home page: http://www.adobe.com
  • Adobe Reader updates are available at: http://get.adobe.com/reader/ 
Microsoft

Microsoft releases updates for their Windows operating systems and their MS-Office suite on a weekly basis. It is highly recommended that your home PC is maintained with these updates on a regular basis. Your home PC should also have an anti-virus program installed. This program requires daily or weekly updates to be effective. 

The latest Microsoft updates are available at: http://update.microsoft.com

Home Internet Router

家庭互联网路由器应该将管理员密码从出厂时的默认密码更改. 路由器的固件可以根据设备制造商发布的固件进行更新. These firmware updates may contain security updates.

Mobile Phones

Android Smartphones

Avoid Android malware using these precautions: 

  • Install apps only from trusted play stores like Google Play
  • 请在“系统设置”中勾选“安装未知来源的应用程序”
  • Keep the option to "Verify Apps" checked in System Settings
  • Keep both options under "Verify Apps" checked in Google Settings > Security
  • Keep an eye on the permissions requested from untrusted and unknown apps, and disallow any suspicious requests
  • 保护你的Wi-Fi网络,当你在机场和咖啡店连接不受信任的公共Wi-Fi时要小心
  • Upgrade, if possible, to the latest version of Android operating system
  • Install anti-virus and other mobile security apps for Android
  • Enable "Remote Wipe" feature, in case your device is ever lost
Apple iPhones & iPads

苹果定期发布iOS操作系统的更新. These updates odten contain fixes for security vulnerabilities. It is highly recommended that your iPad and iPhone are maintained with the latest iOS version.

The update screen can be found under: Settings > General > Software Update.

  • 保护您的卡(s)通过立即激活他们收到后,拨打您的卡上显示的电话号码. 如果您未能在10个工作日内收到您的新卡, notify the credit union immediately. The card(s) may have been stolen from your mailbox or lost in transit. 
  • Keep your card(s) in a secure and locked location when not in use. Do not leave your card(s) in your vehicle. 
  • Retain copies of all sales receipts, merchant and ATM receipts until you receive your monthly statement, 此时,您应核实交易/费用是否准确. If you discover any errors, unauthorized transactions, payments or alterations, notify the credit union immediately. 
  • Cancel all cards that you do not use. 
  • Sign new cards as soon as you receive them. 
  • Report lost or stolen cards immediately. 
  • If you notice anything suspicious when approaching an ATM, return later or use another ATM. Consider having another person accompany you to the ATM. 
  • 你的卡准备好了吗?这样你就不用在提款机前翻钱包了. 
  • 站在靠近自动取款机的地方,用手挡住它,以避免你的密码和其他账户信息被发现, 在使用自动取款机时,确保门锁好,并保持发动机运转. 
  • Put your cash away as soon as the transaction is complete. Count the cash later in the safety of your vehicle or home. 
  • If you notice anything suspicious while you are transacting business, immediately cancel your transaction, put your ATM card away and leave. 
  • Be aware of individuals who pose as credit union staff trying to get information from you. 不要在自动取款机、电话或互联网上向陌生人提供信息. 
  • 信用社努力确保自动取款机设施的安全和方便. 请告诉我们,如果你知道任何问题与加州海岸信用社ATM, 例如灯不亮或自动取款机设备损坏. 
  • Limit the number of credit, debit and ATM cards that you carry. 
  • Memorize your Personal Identification Number (PIN). Do not write the number on your card or keep it in your wallet. 
  • Never give your PIN to anyone, not even your financial institution. 
  • Always be aware of your surroundings and look for well-lit, visible ATMs, especially when transacting at night.

  • Order a copy of your credit report annually and review it for accuracy. 
  • 检查你的信用报告,看看有没有未经授权的银行账户、信用卡和购物记录. 
  • 在你的信用报告中寻找任何可疑的东西,列出谁收到了你的信用记录的副本. 

  • Store extra checks, credit cards, documents that list your Social Security number, and similar items in a safe place. 
  • Shred all credit card receipts and solicitations, ATM receipts, bank account and credit card statements, canceled checks, and other financial documents before you throw them away. 

  • Promptly remove mail from your mailbox. 
  • Deposit outgoing mail in a post office collection box, hand it to a postal carrier, 或者把它送到邮局,而不是放在门口或家里的邮箱里, where it can be stolen.

Each year scam artists and identity thieves steal billions of dollars from unsuspecting consumers. These criminals use the phone, email, text messaging, postal mail and the internet to steal your information or trick you into handing over your money. Learn how to recognize common scams, take action if you think you are a victim of fraud, and what you can do to protect your finances from fraud.

Learn more

  • Never use the same password on multiple systems. 如果您的密码在一个系统上泄露,这将授予访问其他系统的权限. 
  • Never share your password with anyone else. 
  • Select strong passwords, which means: 
  • Use a password that is easy to remember yet complex enough that it cannot be easily guessed. 
  • 避免在密码中使用字典中的单词,以免受到字典攻击. 
  • 使用大写字母和小写字母的组合,再加上数字和特殊键盘字符,如 !#$%. 
  • Some computer systems have limitations to the allowed length, number of characters, or types of special characters allowed. Use the strongest password that the system will allow. 
  • 一般来说,密码越长越复杂,就越难被攻破. 
  • Avoid writing down your passwords. If a password is written down, always keep it in a secure location. 
  • 永远不要将密码与相关的信用卡或借记卡存储在同一个地方. 
  • Never write your password on a post-it note on your computer monitor or under your keyboard. 
  • Multifactor authentication is based on "what you have" (a card or device) and "what you know" (a password). If the card or device is compromised, the second factor of a strong password becomes even more important. 
  • If a system does not require period password changes, it is a good practice to periodically change your password anyway. 
  • 如果您怀疑您的信用合作社系统密码已被泄露, immediately contact the credit union. 

  • Always protect personal identifying information, such as your date of birth, Social Security number, credit card numbers, bank account numbers, Personal Identification Numbers (PINs) and passwords. 
  • 不要把你的韦德体育开户识别信息提供给任何不被允许访问你的账户的人. 
  • 不要在电话中提供任何韦德体育开户识别资料, 通过邮件或网络,除非你已经发起了联系,或者你知道并信任收到联系的人或公司.

  • Memorize your PINs and passwords and keep them confidential. 
  • Change your passwords periodically. 
  • 避免选择容易被身份窃贼发现的韦德体育开户识别码和密码. 
  • 不要把韦德体育开户识别码和密码放在钱包或钱包里,或者放在支票簿附近, credit cards, debit cards or ATM cards.

Protect yourself and your money from fraudsters

It’s a high-tech spin on an old-fashioned scamming scheme, 然而,社会工程是一种强大的技术,可以用来欺骗你与骗子和身份窃贼合作. 这些欺诈者可以使用各种恐吓手段欺骗你提供你的金融机构的登录凭据和卡数据或支付不必要的技术支持服务或其他项目.

This can be done through a phone call, where a scam artist pretends to represent a credit union, a fraud department, a software company like Microsoft, or a popular anti-virus company. They may spoof the caller ID so that it displays a legitimate phone number from a company, 然后要求你安装一个应用程序,并向他们提供代码,使他们能够远程访问你的计算机. 

Text messaging is another method that scam artists will use to fool you. 这些攻击可以以SMishing (SMS文本网络钓鱼)和Vishing(语音网络钓鱼)的形式发生。. SMishing和Vishing通常是指会员收到询问可疑交易的短信或电话. However, the real information the fraudster is looking for is your card number, CV2 code, PIN number, or other information that could compromise your account.

Below are a few red flags that can help you identify if the text you received might be a SMishing attempt. 如果你收到一条关于可疑交易的短信,包含以下任何一项,请小心:

  • Requests for card numbers, PIN numbers, CV2 codes or expiration dates.
  • References to merchants that are vague or nondescript. Legitimate transactions should contain detailed information.
  • Links to unknown websites
  • Hyperlinked phone numbers

A fraudster may also display a fake message on a website, or a pop-up message that won't go away. 像这样的信息,被称为“恐吓软件”,可能表明有病毒或其他恶意软件. These messages are fake, and are designed to trick you into calling a phone number staffed with fake technical support.

When you engage with these fraudsters, 他们会提供虚假的解决方案,并要求以一次性费用的形式付款, subscription service, or gift card. 

Protect yourself from social engineering using these tips:
  • 在回复不请自来的短信和语音电话时要小心, even if they appear to be from the credit union.
  • If you have questions, always hang up and call back the credit union at a reliable, known phone number to inquire about the messages you might have received.
  • 永远不要在回复短信或电话时提供韦德体育开户信息,这些短信或电话应该是来自信用合作社.
  • Be cautious when clicking links in text messages. Most legitimate card activity validation requests will require a simple “YES” or “NO” response, and will not include hyperlinks or a member’s personal information.
  • 不要向这些骗子提供你的信用卡或借记卡信息.
  • Do not give a gift card number or PIN on the back of a gift card to settle a demand for payment. Scammers will typically request popular gift cards such as Amazon, Google Play, iTunes, Steam, and MoneyPak, among others. You can visit the Federal Trade Commission’s site to learn more about gift card scams and how to report them.
  • 大多数公司不会发送未经请求的电子邮件或拨打未经请求的电话,要求提供韦德体育开户或财务信息, or to provide technical support to fix your computer.
  • 与大多数公司的任何客户识别沟通都必须由您发起.
  • If a notification appears with a phone number, don’t call the number.
  • Do not give remote access of your computer to a fraudster.
  • If you need technical support, 你应该先和你研究过的信誉良好的公司联系.

 

  • Be suspicious of any offer made by telephone, on a Web site or in an email that seems too good to be true. 
  • Before responding to a telephone or Internet offer, determine if the person or business making the offer is legitimate. 
  • 不要回复那些承诺有好处但要求提供韦德体育开户身份信息的不请自来的电子邮件. 
  • 加州海岸信用社从不要求客户提供银行卡号, account number, Social Security number, Personal Identification Number (PIN) or password through email. 如果你应该收到一封电子邮件要求这样的信息,似乎是来自加州海岸信用社, do not respond to the email and contact California Coast Credit Union immediately at 1-877-495-1600.

  • Do not carry more checks, credit cards, debit cards, 钱包或钱包里的提款卡和其他你真正需要的银行存款. 
  • Do not carry your Social Security number in your wallet or purse.

Disruption of Internet Service

Cyber attacks, identified as a Distributed Denial of Service (DDoS), have recently been in the news. The intent of such an attack is to prevent Internet access. 这可能意味着我们的会员将无法访问信用社的网站和服务,如网上银行.

We cannot know if or when these this event will actually occur. However, aside from the inconvenience of a potential disruption of online service, be assured that your member information will remain secure and protected.

Internet down? We’re still here for you.
  • Member Service Center at (877) 495-1600 is available Monday - Friday, 7:30 am - 6 pm, and Saturday 9 am - 2 pm
  • 存款与我们的免费加州海岸移动存款应用程序使用您的iPhone支票®, iPad® iPod® or AndroidTM phone or tablet
  • 参观我们在圣地亚哥和南河滨县的20多家分支机构和60多家共享分支机构
  • Access accounts through 30,000 fee-free CO-OP® 全国范围内的自动取款机,包括许多7- 11便利店的自动取款机,当地有近70台自动取款机
  1. Your money is federally insured up to $250,000 by the National Credit Union Administration (NCUA). For added protection, 如果您在不同类型的帐户中拥有不同的所有权利益或权利,您可以在多个帐户中获得额外的保障.