Online security is crucial in both personal and professional contexts. This article covers some of the ways to keep your login credentials secure, the common types of cybersecurity threats and how to identify and protect against them.
Username and password tips
For every site or account, create a strong username and password that is different from the credentials on other platforms or sites you use.
- Use special characters, upper/lowercase letters and numbers — and make it easy to remember.
- Try to avoid using personally identifiable information like your name, date of birth or social security number.
- Protect your passwords. Do not save them on internet sites.
To know the best cybersecurity practices, it’s important to understand the types of threats that exist and where they come from.
Phishing scams
If you receive an official-looking email or text from what appears to be a legitimate source like the IRS or someone in the tax industry, look for underlying messages seeking to capture personal information from you to help determine if it's a scam. Beware of lookalike login sites that attempt to capture personal information as well. Lookalike sites are designed to resemble the web pages of familiar brands or companies. They include the same logos or photos but sell counterfeit goods with the intention of spreading malware.
Regarding phishing emails (or texts), you should: 1) be wary of unknown authors and attachments, which could contain a virus; 2) refrain from clicking on emails that look suspicious, and 3) just delete it if you have any doubt.
The bottom line is that a phishing message may look official and come from an official-looking source; however, the messages tend to include copy that preys on fear, greed or curiosity. Phishing emails frequently include malicious links or attachments, and the attacker will often bait the recipient into giving away personal or confidential information. Once that information is collected, the victim’s network may be exposed to malware.
Credit and debit card fraud
There are many ways card fraud can occur, whether through online scams or skimmers installed on ATMs or gas station pumps.
Below are some methods to help keep your card information secure.
- Never give your card information to anyone over the phone unless you deem them a trustworthy source.
- Be careful using your card online. Be sure the website is dependable and has a reputable background/history.
- Look for unusual card slots on ATMs and gas station pumps. Feel around the slot and see if anything moves. If so, it could be a skimmer that was installed to steal card information. If you're skeptical, notify the gas station attendant or institution in charge of the card reader.
- Shred your card statements that contain personal information before disposing of them.
Social media scams
Several social media scams have been circulating that attempt to capture personal information or infect your computer with malware. Keep your guard up when using social media platforms. Scammers on social media often use hidden URLs, where you as the user may see a post that includes a link with a shortened URL. Since hidden URLs conceal the full web address, users may blindly click on the link that takes them to a site that installs malware on their device. Other popular malicious phishing attempts can be cash grabs or bait-and-switch games that ask you to complete a quiz — and hand over personal information in the process — so be sure to think before acting or clicking.
Best practices for online security
Keep your software and hardware up to date. Change your passwords frequently. Use anti-malware or antivirus programs to help keep your devices secure. Avoid suspicious emails and texts, and always check links before clicking.
Reporting banking security issues
We take online security seriously here at U1. Protecting your personal information is important to us and we want to make sure you have all the tips to help you prevent identity theft. We will never contact you via phone or email and ask you to verify your account information, and we strongly encourage you to add a passcode/passphrase to your account. You should also never give your account information, including credit/debit card PIN and online banking credentials, to anyone. If you have, please contact us for instructions on how to reset your information.
If you have any questions or concerns about emails, texts, websites or unsolicited calls related to Universal 1, please email our compliance department at compliance@u1cu.org. You can also call our eServices representatives at (800) 543-5000 option 0 or (937) 431-3100 option 0. We are available Monday - Friday from 9:00 a.m. to 5:00 p.m. and Saturday from 9:00 a.m. to 12:00 p.m.
If you suspect you are a victim of identity theft or your information was exposed in a data breach, visit the Federal Trade Commission's ID theft recovery plan webpage to take action.
Universal 1 Credit Union (U1) is a not-for-profit financial institution that exists to create personal, community and financial well-being. With over 50,000 members and more than 85 years of service, U1 has been serving members in the Dayton, Ohio, area since 1937.