Phishing is the attempt to obtain sensitive information such as usernames, passwords, credit card details and sometimes, indirectly, money, oftentimes for malicious reasons, while disguised as a trustworthy source in electronic communication.
How to Avoid Phishing Scams
The number of sophistication of phishing scams sent out to you and our members is continuing to increase dramatically. While e-Commerce and online banking are very safe, you should be cautious when giving out your personal financial information over the Internet. Do not click links in an email, instant message, or chat to redirect to any web page if you suspect the message to be fraudulent or you don't know the sender or user's handle.
- Instead, call the company over the phone, or visit their website directly by typing the Web address in your browser
Avoid filling out forms within email messages asking for personal financial information.
- Only communicate sensitive information such as credit card numbers or other account details via a secure website or telephone
Always make sure you're on a secure website when entering credit card or other sensitive information through your Web browser.
- Phishers are now able to forge BOTH a legitimate-looking address AND the "https://" that is normally seen while visiting a secure Web server. You might see both in the link of an email scam. Again, make it a habit to enter the address of all banking, shopping or financial transaction websites yourself and not depend on displayed links.
- Phishers might also forge the yellow lock near the bottom of the screen that you normally see on a secure site. The lock has been considered an additional indication that you are on a 'safe' site. When the lock is double-clicked, the site’s security certificate is displayed. Do not continue if you receive any warnings displayed indicating the address of the site you have displayed does NOT match the certificate.
Spot Suspicious Emails
Be suspicious of any email with urgent requests for personal financial information.
- Oftentimes phishers include exciting or upsetting (but false) statements in their emails to get people to react straightaway
- They generally ask for personal information such as usernames, passwords, birth date, social security number, credit card details, etc.
- Phisher emails are usually NOT personalized, but they can be. Valid messages from your financial institution or e-Commerce company are generally personalized, but always call to check if you are unsure.
Travis Credit Union will never send you an email asking for you to provide confidential information. Please do not click on any link embedded in an email you do not recognize or is suspect – to avoid having malware installed on your computer.
If you receive a seemingly suspicious email claiming to be from Travis Credit Union, please call our Member Service Center at (707) 449-4000 or (800) 877-8328.
Credit and Debit cards are the easiest and safest way to carry money while you are traveling. The following travel tips can help you enjoy your trip and keep your cards safe.
- Before departing, check your cards expiration date and be sure you have sufficient funds in your account and all payments are up-to-date
- Make photocopies of your card and store the documents somewhere safe
- Keep cards and cash in a separate place – that way you lower the risk of losing everything
- In crowded areas, hold wallets and bags close to your body use a money belt if possible
- Use safety deposit boxes or room safes in hotels, if provided
- When you pay with card, check the information on the sales receipt. You are liable for the amount written in the box labeled Total, so make sure it is filled in before you sign
- Memorize your personal identification number (PIN) if you are planning to withdraw local currency from a cash machine and be sure to shield the key pad with you hand as you enter your PIN
- Ask us to place a travel notice on your account specifying your destination and travel dates so your card activity doesn’t appear suspicious or unusual while you are traveling
If possible, let us know your alternate phone number while you are traveling.
Online Shopping Safety Tips
- Only shop at Internet merchants you know and trust; when in doubt, check with the Better Business Bureau
- Register your card with MasterCard Secure Code or Verified by Visa and create a password so your identity can be authenticated and verified once your card is used at a participating online merchant
- Beware of emails marked-down prices on popular gadgets, software or other gifts; if the price sounds too good to be true, it probably is
- If you receive an unsolicited email from an online merchant, do not click on the links within it. Instead, type and search the merchant’s known address or locate it through a reputable search engine
- Check the online merchants’ refund policies; some merchants enforce deadlines for returns or charge a fee to accept returned merchandise
- Do not share your passwords with anyone. Use different passwords for different sites
- Never share sensitive information such as your social security number, date of birth or mother’s maiden name within a website or in an email
- Before shopping online, make sure your computer has the latest security software installed
- Always save and print the confirmation page once completing a purchase online
- Do not wait for mailed paper statements. Check your account activity through Online Banking and contact Travis immediately if you see transactions that you don’t recognize
We monitor your account and will call you to verify any unusual or suspicious activity. Make sure we have your current day time or cell phone number on file.
Use a password manager
Password managers create strong, unique passwords and sync them across all your devices. They are easy to use, inexpensive, and eliminate the need to remember all but one master password.
Reset your passwords each month
According to a recent study, 47% of consumers have a password that is at least five years old, and 77% have a password that has not been changed in a year.
The longer you leave your password unchanged, the greater the risk it is to your security.
Enable two- or multi-factor authentication
Also known as 2FA/MFA, this system requires multiple authentication methods to access an account.
For example, some websites will send a code to your mobile device as the second factor of authentication. That way, a criminal can’t access your account even with a breached password because they won’t have access to the code. The system will also notify you if someone is attempting to log in.
Create a different password for each account
The temptation is to use one or two passcodes for everything, but that would be like making just one key for all the locks on your house, office, car, safe, etc. Again, a password manager generates unique passwords easily, so consider using one across all your personal devices.
How We Protect You Report Lost or Stolen Cards TCU Security