How to Protect Your Privacy
Minimize your risk of becoming a victim of identity theft or a scam by taking these preventative measures:
Personal Identifying Information
- Always protect personal identifying information, such as your date of birth, Social Security number, credit and debit card numbers, bank account numbers, Personal Identification Numbers (PINs) and passwords.
- Never give any of your personal identifying information to any person who is not permitted to have access to your accounts.
- Never give any of your personal identifying information over the phone, through email or online unless you have initiated the contact or know and trust the person or company to whom it is given.
Credit and Debit Cards
- Limit the number of credit and debit cards that you carry.
- Cancel all cards that you do not use.
- Review card transactions in Digital Banking frequently and immediately report any discrepancies or unauthorized activity.
- Report lost or stolen cards immediately.
- Notify OKCU prior to traveling.
Telephone, Email and Online Solicitations
- Be suspicious of any offer made by telephone, on a website or in an email that seems too good to be true. Beware if you are asked to deposit a check, wire funds, purchase gift cards or invest in an opportunity.
- Before responding to a telephone or online offer, determine if the person or business making the offer is legitimate.
- Think before you click! Do not respond to an unsolicited email or text containing urgent messages, links, or posing as a trusted source such as a financial institution, government agency or major business.
- OKCU will never request your credit card or account information if we have to contact you. The only time we will ask for your information is when you contact us, and we only request information that will identify you or assist us in addressing a problem with your account. If you should receive an email or phone call requesting such information that appears to be OKCU, do not respond and contact us immediately at 405.606.6528 or 877.677.6328.
PINs and Passwords
- Memorize your PINs and always keep your passwords protected.
- Change your passwords periodically. Use strong, unique passwords and consider a password manager.
- Do not carry PINs and passwords in your wallet or purse or keep them near your checkbook, credit cards or debit cards.
- If you receive a "Password Expiring" email, do not click the link in the email; go directly to the trusted login page.
Safe Computer Practices
Use anti-virus and firewall software that updates and detects automatically.
Apply operating system and application updates (patches) regularly
Only install PC applications from reputable sources such as Microsoft, Filepuma, APK, etc.
Avoid public wifi and public computers when accessing personal information.
Don’t open attachments from unknown email sources and delete emails from unknown sources without opening them.
Lock your computer or use “standby” mode during breaks and turn off the computer when not in use.
Use the "HTTPS" version of a website whenever possible. Also be wary of any certificate/security warning prompts displayed when navigating to an HTTPS website, as these could indicate an attempted impersonation of the HTTPS website in question.
Safe Smartphone Practices
Require a passcode PIN to unlock your smartphone.
Only install applications from known sources such as the App Store, Google Play, Microsoft, etc.
Avoid "rooting/jailbreaking" mobile devices. In addition to potentially compromising device security, this can also disable mobile payment services such as Android Pay, Apple Pay and Samsung Pay.
Review manufacturer and carrier performance history regarding device updates when purchasing a new mobile device such as a phone or tablet. Poor device support can lead to poor device security due to unfixed vulnerabilities.
Keep your operating system (OS) updated for important security updates.
Update your privacy settings and make your account private.
Be cautious of each friend request. Criminals will often create fake accounts or create a duplicate account under the same name as one of your friends.
Shred any unused checks or checks from closed accounts. Even checks from closed accounts can be used to instigate fraud. Criminals will use them to make purchases, which can affect the innocent consumer. Criminals will even order more checks off closed accounts to continue their fraud scheme.
Use a Sanford® Uniball® Signo Gel 207 ink pen to write and sign checks. When checks are “washed” by counterfeiters to remove the writing, it is impossible to completely remove this type of ink because the ink is specially formulated to absorb into the fibers of the paper. (This ink pen is recommended by the FBI.)
Use first initial, last name for preprinted payer information on checks (for example, “J. Doe” instead of “John Doe”).
Consider substituting your work address/phone for personal on your checks.
Request check orders be sent directly to your financial institution to prevent check information stolen from your mailbox.
- Consider investing in a locking mailbox or Post Office Box.
- Promptly remove mail from your mailbox.
- Shred all financial documents and other documents showing personal information.
- Delete all personal information and remove data cards from electronics before discarding.
- Deposit outgoing mail in a post office collection box or take it to a post office instead of leaving it in your doorway or home mailbox, where it can be stolen.
Digital Banking Safety
- Always protect your Digital Banking username or password. Never give your login credentials to anyone. OKCU will never request any of your login credentials. These include your username, password or temporary access codes (TACs). If someone is requesting this information from you, call us immediately at 405.606.6528, as it is most likely fraudulent communication.
- Frequently review transactions in Digital Banking and immediately report any discrepancies or unauthorized activity.
- Never use public wifi to log on to Digital Banking or any program that has personal information. Criminals are able to collect your personal information when you connect to an open wifi network.
- Use Pay a Friend feature as a is secure way to send money to friends and family. Be careful with other person-to-person cash sending apps.
- Enroll in eStatements to avoid financial documents being stolen or lost in the mail.
- Use Pay a Bill feature to securely pay bills. Most payments are processed electronically. For those that are not, payments are paid from a master account which means a crook will not have access to your MICR account and routing numbers.
- Stop a Payment allows you to request a stop payment on a check or group of checks.
- Update your profile and contact information at any time.
- Security Preferences allows you to change your password or username, add a passcode, and setup Face / Touch ID.
- Setup account, transaction, and security alerts to notify you via text or email when certain activity occurs.
- Use the Secure Inbox to safely message OKCU directly.
Be proactive and help defend yourself against identity theft
Identity theft is a fast growing crime, which is when a thief gains access to and uses an individual’s personal identifying information without his or her knowledge in order to commit fraud or theft.
Perform an annual check-up on your credit history.
www.annualcreditreport.com offers consumers one free credit report per year for each of the three reporting credit bureaus. It is recommended that consumers request a report at four-month intervals rather than requesting all three at once. This enables the consumer to track their report periodically throughout the year.
To contact the 3 credit bureaus directly:
Victim Action Steps:
- Contact your financial institution
- Get a recovery plan at identitytheft.gov
- Report to local police, Attorney General office and to reportfraud.ftc.gov
- Share with friends and family
How to protect yourself against a Corporate Account Takeover (aka Business Identity Theft)
A Corporate Account Takeover is the business equivalent of personal identity theft. Hackers, backed by professional criminal organizations, are targeting small and medium-sized businesses to obtain access to their Digital Banking credentials or remote control of their computers. These hackers will then drain the deposit and credit lines of the compromised bank accounts, funneling the funds through mules that quickly redirect the monies overseas into hackers’ accounts.
- As a business owner, you need an understanding of how to take proactive steps and avoid, or at least minimize, most threats.
- Apply operating system and application updates (patches) regularly
- Ensure that anti-virus/spyware software is installed, functional and is updated with the most current version
- Have host-based firewall software installed on computers
- Use latest versions of Internet browsers and keep patches up to date
- Do not batch approve transactions; be sure to review and approve each one individually
- Review your banking transactions and your credit report regularly
- Contact your Information Technology provider to determine the best way to safeguard the security of your computers and networks