Allegacy
  • Facebook
  • Twitter
  • Blog
  • YouTube
  • Google Maps
  • Search
header image

We are committed to educating our members about online security related issues and will use this page to keep you informed of any cyber threats that we feel may be important. Check back here often for new and updated resources, tips, and helpful links. If you believe that your personal computer has been compromised and are concerned about fraudulent activity on your Allegacy accounts, contact Member Services immediately at 336.774.3400 / 800.782.4670.

December 20, 2013
Attention Allegacy Cardholders: Target Payment Data Breach

Allegacy is aware of the Target payment data breach at its US stores. We take a very conservative approach in protecting our members. While we have not been alerted of any members being impacted at this time, we are in the process of identifying members that have shopped at a Target location from November 27 to December 15.

Here is some important information below regarding this breach:

  • Was my card included in the Target compromise I heard on the news?
    We have not received any information from Visa at this time; however we are doing our own research to determine if any Allegacy cardholders were affected. We will issue a new card to you if we find your card was affected.
  • Can I go ahead and block my card now?
    We will be happy to do that, please be aware that the block will be effective immediately and it will take about a week or so for you to receive a new card. It may be more convenient for you to keep your card active and be diligent in watching for fraudulent charges and notify us immediately if one occurs.
  • When did the compromise occur?
    Members who shopped at Target between November 27 and December 15 should check their statements for unusual activity and notify us if they suspect fraudulent charges.
  • Am I liable for fraudulent charges?
    No. You will have $0 liability for any potential fraudulent charges that may be attempted on your Allegacy Visa® Check Card or Allegacy Visa Credit Card. We monitor your debit and credit transactions 24 hours a day and will contact you immediately if we spot something suspicious.

Please contact a Member Service Representative immediately at 336.774.3400 / 800.782.4670 if you suspect an unauthorized purchase or have questions about this breach.

  • I have a "Red" card from Target. How do I get information about that?
    Red Card holders will need to contact Target at 866.852.8680.

November 20, 2013
We have been made aware of a "phishing" email that some of our members may have received.

How do you identify this email?

  • Subject Line: Call Allegacy
  • The email contains the following text:

    (Reference No 2544032)

    Good Afternoon, your VISA Debit is now limited until you contact our support department at: …

What you should know?

  • The email is a "phishing" attempt to obtain personal information from you.
  • Allegacy will never contact a member and ask for secure private information. The member must initiate contact with Allegacy before private and secure information will be asked of them.
  • Allegacy will never send personal email communications to you without including the last 4-digits of your Member Number. This is for your protection and validates that the email originated from Allegacy.

Security Tips
Keep your personal information safe when you go online.

  • We strongly encourage you to use anti-virus and anti-spyware software on your personal computers and keep them updated. We also suggest you set up a firewall and keep your operating system and all software updated with the latest security patches.
  • Allegacy will never contact a member and ask for secure private information. The member must initiate contact with Allegacy before private and secure information will be asked of them.
  • Allegacy will never send personal email communications to you without including the last 4-digits of your Member Number. This is for your protection and validates that the email originated from Allegacy.
  • You will never be prompted for sensitive data on our website, including WebBanking. Sensitive data would be full account numbers or complete Social Security Number, passwords, etc.
  • As a general precaution, you should close all other browser sessions and tabs before logging into a banking session.
  • Log off when done with WebBanking, WebMail and Social Media sites.
  • Change your passwords often and never share the password with anyone. Never write passwords or PIN numbers on financial statements, credit cards, Check Cards or ATM cards.
  • Keep personal information personal.
  • Don't open email attachments from anyone unless they are run through an anti-virus program.
  • Don't reply to spam, harassing or offensive email or forward chain email letters.
  • Avoid opening emails from people you don't know. Instead, delete all emails unread.
  • Don't be caught by the spammers' favorite trick, "Remember me?"

Identity Theft Prevention and Assistance
There are several easy actions you can take to protect yourself against identity thieves, both online and in real life.

  • Go paperless! Elect to receive important financial statements online rather than through the mail. Not only is it more secure, but you are doing the environment a favor as well. Login to Allegacy's WebBanking to enroll in eStatements today.
  • Shred any documents containing sensitive personal or financial information before putting them in the trash. If you do not own a shredder, many office supply stores and shipping/printing businesses offer shredding services.
  • Clean out your wallet. Carry only what you need – driver's license, debit card and credit card. Never carry your Social Security card in your wallet. This will minimize the amount of work associated with closing and restoring accounts.
  • Keep a second copy of all your important financial contact information. Photocopy or write down all of the 800-numbers on the backs of your debit and credit cards, and store this somewhere securely away from your wallet.
  • Protect your personal information online. Avoid posting your mailing address or phone number on social media sites like Facebook or Twitter. Thieves can use just a few pieces of key information to steal your identity – and your account information.
  • Enroll in a credit monitoring service through one of the major credit reporting agencies. You will be contacted immediately if they detect suspicious activity. You can enroll in this service for a low monthly fee when you add the Plus Benefits Package to your Allegacy Checking Account.

If you become a victim of identity theft:

  • Place a Fraud Alert with any one of the three credit reporting agencies. They will inform the other two. A Fraud Alert can make it harder for a thief to open more accounts in your name.
  • File a report with the local police department if a physical theft took place (i.e. a break-in at your home or car, robbery, etc.).
  • Contact the financial institutions with which you have accounts that were compromised or may have been compromised (credit card companies, as well as banks or credit unions who you have debit cards with).
  • File a complaint with the Federal Trade Commission.

For immediate and long-term steps to follow after identity theft, as well as what to do in cases of tax-related, child, or medical identity theft, visit the Federal Trade Commission's consumer section on Identity Theft.

More Information about Online Fraud*
Learn about the methods internet criminals use to steal sensitive information and tips for stronger passwords.

Phishing — When fraudsters send emails or use other communication methods to trick members into submitting personal identifying information, such as their usernames or passwords to online credit union accounts. Frequently, these communications will appear to originate from a trustworthy source like the credit union or a government agency.

Pharming — When criminals redirect traffic from one website to a fraudulent site set up to collect members' information. The fake website is designed to look and operate much like the authentic site. The member may then be prompted to "verify their account" by providing information like their credit card and Social Security numbers.

Malware — The term "malware" is short for malicious software. Criminals create emails, websites or other communications to prompt computer users to download the software to their personal computers. The malware then attaches other software, like Trojan horses, which appear to perform tasks the user desires. In reality, the Trojan is attacking the user's computer and, in some cases, steals sensitive information.

Keystroke logger — A type of malicious software that records the keys a user strikes on their keyboard. This is frequently used to monitor what a person types without their knowledge.

Here are some tips for stronger passwords:

  • The longer the better — Make sure passwords have at least eight or more characters.
  • Complexity is key — When possible, use special characters, numbers and symbols when creating passwords.
  • Vary it up — Change passwords often and don't use the same password for everything.
  • No personal info — Avoid using birthdates, spouses' names or similar information.


*Heightened Authentication by National Association of Federal Credit Unions staff writer Chrisalyn Santos

Related Tools:

QuickLinks
© 2014 Allegacy Federal Credit Union
Allegacy is federally insured by the NCUA
Equal Housing Lender NCUA