Security Tips

Carolina Postal Credit Union is committed to protecting your accounts and your personal information. Occasionally, we receive safety and security tips that go beyond having an account at CPCU. On this page, you will find various topics that are about protecting you - our member.

Beware Fraudulent Emails 

The subject line of the e-mail states: “Unauthorized ACH Transaction.” The e-mail includes a link that redirects the individual to a fake Web page and contains a link which is almost certainly an executable virus with malware. Do not click on the link. Both the e-mail and the related website are fraudulent.
 
Be aware that phishing e-mails frequently have links to Web pages that host malicious code and software. Do not follow Web links in unsolicited e-mails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.

If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system. Always use anti-virus software and ensure that the virus signatures are automatically updated.
 
Ensure that the computer operating systems and common software applications security patches are installed and current.
 
Be alert for different variations of fraudulent e-mails.
 
= = = = = Sample E-mail = = = = = =
 
From: Information
Sent: Thursday, July 22, 2010 8:27 AM
To: Doe, John
Subject: Unauthorized ACH Transaction

Dear bank account holder,

The ACH transaction, recently initiated from your bank account, was rejected by the Electronic Payments Association. Please review the transaction report by clicking the link below:

Unauthorized ACH Transaction Report

Mystery Shopper Scam  It's a new twist on the “fake check” scam: People across the country are receiving letters in the mail-accompanied by fat checks-inviting them to earn extra money as mystery shoppers.

The letter invites you to become a paid mystery shopper in your area, and the letterhead and check appear to come from a legitimate U.S. company. The listed phone numbers, however, originate in a foreign country.

Here's how it works: the letter instructs you to deposit the check- for, say, $3,750-into your checking account, wire $3,150 using a company like Western Union or Money Gram, keep $300 as pay, take out $200 for wiring fees, and use $100 to purchase merchandise.

Then you're told to contact the person named in the letter for further instructions.  Sounds like an easy way to make money, right? But if you deposit the check, you'll get a notice from the bank that it bounced. And you're left holding the bag for the $3,750.00 !

Postal Inspectors advise that if you receive this offer, do NOT respond. Instead, report the incident to Postal Inspectors online or call US Postal Inspectors at 1-877-876-2455.

Fake TEXT alerts - to consumers informing them that their debit card has been de-activated and asking them to call a phone number to reactivate it. 

Anyone who receives an e-mail or text message that appears to be from a credit union or bank that asks for personal account information should consider it to be a fraudulent attempt to obtain their personal account data for an illegal purpose and should not follow the instructions in the e-mail.

Jury Scam Alert  The phone rings, you pick it up, and the caller identifies himself as an officer of the court. He says you failed to report for jury duty and that a warrant is out for your arrest. You say you never received a notice. To clear it up, the caller says he'll need some information for "verification purposes"-your birth date, social security number, maybe even a credit card number.

This is when you should hang up the phone. It's a scam.  Click here for the FBI website for more information.

Learn more about Protecting Your Personal & Financial Information!

With all the horror stories about ID Theft, hackers, and compromised data, do you ever wonder just what can you do to protect your personal and financial information?  Carolina Postal has partnered with Digital Defense to bring you constant up-to-date free information on the pro-active steps you can take for your own protection.  Please click here to learn more about protecting your private information.

Internet/E-Mail Fraud Alert
Unfortunately, there are on-going multiple e-mail fraud attempts, known as "Phishing, that are initiated via e-mail sent to members of the general public that appear to be from different banks & credit unions.  This scam e-mail asks for the recipient to click on a link to verify their account registration. If the recipient proceeds to do so, the link directs them to a false website and asks for their credit union account number and PIN, along with other personal information.

CPCU does not ask members for personal information such as your account number, address, social security number etc. Anyone who receives an e-mail that appears to be from CPCU and asks for account information should consider it to be a fraudulent attempt to obtain their personal account data for an illegal purpose and should not follow the instructions in the e-mail.

If you have responded to an e-mail and provided any confidential account information, please notify us immediately.

If you feel that you have received a fraudulent phishing e-mail from CPCU, please forward the entire e-mail message to carolinapostalcu@cpcuonline.com

Additionally, you can file formal complaints concerning any suspected fraudulent e-mail with the Internet Fraud Complaint Center (IFCC) at www.IC3.gov . The IFCC is a partnership between the Federal Bureau of Investigation, and the National White Collar Crime Center.

• Store your ATM card in your purse or wallet, in an area where it won't get scratched or bent.
• Get your card out BEFORE you approach the ATM. You'll be more vulnerable to attack if you're standing in front of the ATM, fumbling through your wallet for your card.
• Stand directly in front of the ATM keypad when typing in your PIN. This prevents anyone waiting to use the machine from seeing your personal information.
• After your transaction, take your receipt, card and money away. Do not stand in front of the machine and count your money.
• If you are using a drive-up ATM, get your vehicle as close to the machine as possible to prevent anyone from coming up to your window. Also make sure that your doors are locked before you drive up to the machine.
• Do not leave your car running while using a walk-up ATM. Take your keys with you and lock the doors before your transaction.
• If someone or something makes you uncomfortable, cancel your transaction and leave the machine immediately. Follow up with your credit union to make sure the transaction was canceled and alert them to any suspicious people.

For safety reasons, ATM users should seek out a machine that is located in a well-lighted public place. Federal law requires that only the last four digits of the cardholder's account number be printed on the transaction receipt so that when a receipt is left at the machine location, the account number is secure. However the entry of your four-digit Personal Identification Number (PIN) on the keypad should still be obscured from observation, which can be done by positioning your hand and body in such a way that the PIN entry cannot be recorded by store cameras or store employees. The cardholder's PIN is not recorded in the journal but the account number is. If you protect your PIN, you protect your account.