Privacy and Security
Fort Bragg Federal credit Union is committed to ensuring the confidentiality and security of our Members’ data.
Please be assured that:
Fort Bragg Federal Credit Union does not sell our Members' data or information to others. Please note: We occasionally work with businesses to offer services that benefit our Members. This is done in conjunction with Fort Bragg Federal Credit Union and as an extension of service.
To the extent possible, Fort Bragg Federal Credit Union uses partial information instead of an entire number such as an account number to better safeguard our Members' data. This method is used in many efforts, including statements, Member mailings and notices, receipts, etc.
We have extensive internal processes for safeguarding our Members' data that involves file encryption and other security methods. We continuously update and enhance our efforts as new technology and safeguarding methods become available.
We have specific policies, procedures and practices to ensure security related to our facilities, employees, information technology hardware and software, etc. Examples include Fort Bragg Federal Credit Union's Security Policy and Business Resumption⁄Disaster Recovery Plan.
We initiate online security methods to protect your account and data and ensure safer online shopping. An example is Multi-Factor Authentication (MFA).
Customer Identification ProgramIMPORTANT INFORMATION ABOUT PROCEDURES FOR OPENING A NEW ACCOUNT — To help the government fight the funding of terrorism and money laundering activities, federal law requires all financial institutions to obtain, verify, and record information that identifies each person who opens an account. What this means for you: When you open an account, we will ask for your name, address, date of birth, and other information that will allow us to identify you. We may also ask to see your driver’s license or other identifying documents.
Our Third Party Site DisclosureThe Credit Union’s Web Site may contain links and/or e-mail addresses to/for other web sites owned and operated by third parties. Links to other Web Sites and/or e-mail addresses are provided solely as a convenience to our members and other customers. The Credit Union has no control over these sites/addresses; and the Credit Union shall have no responsibility or liability relating to any access to such sites or communications between you and such Third Parties. In addition, Third Parties are not covered by the Credit Union’s privacy or other policies; and the Credit Union is not responsible for the privacy practices or the content of Third Party Sites. The Credit Union Web Site may also contain links to other web sites owned, operated by, or affiliated with the Credit Union ("Affiliated Sites"). Affiliated Sites are also not governed by Credit Union’s privacy or other policies; and you are advised to review the privacy statement applicable to each Affiliated Site you visit. The Credit Union is not responsible for the content or availability of linked sites. Please be advised that the Credit Union does not represent either the third party or you, the member, if you enter into a transaction. Further, the privacy and security policies of the linked site may differ from those practiced by the Credit Union.
Learn more about recent fraud alerts and read our latest information security updates on the Security/Frauds Alerts page. Remember, Fort Bragg Federal Credit Union will never solicit personal or financial information.
Alert to Members: Fort Bragg Federal Credit Union will never solicit personal or financial information. Do not respond to requests for information unless you initiate the request - this includes requests via e-mail, phone, text messaging or through the mail.
Fraud AlertsVishing Scam Leads to PIN-Based Debit Fraud
Some people are being targeted in a vishing (phone-based phishing) scam in which fraudsters spoof phone numbers making the calls appear to originate from a credit union or bank. The members are duped into providing CVV2/CVC2 codes and expiration dates for their debit cards. The fraudsters, already possessing the counterfeit mag stripe debit cards, use the information to change the PINs through voice response units. Then, they use the counterfeit cards to make ATM withdrawals, as well as purchases at Wal-Mart in Florida and Georgia. Financial institutions in Indiana, Kentucky, Ohio, and Virginia have been impacted by the scam.
No Evidence of Unauthorized Access to Core Consumer or Commercial Credit Reporting Databases - Company to Offer Free Identity Theft Protection and Credit File Monitoring to All U.S. Consumers
September 7, 2017 — Equifax Inc. (NYSE: EFX) today announced a cybersecurity incident potentially impacting approximately 143 million U.S. consumers. Criminals exploited a U.S. website application vulnerability to gain access to certain files. Based on the company’s investigation, the unauthorized access occurred from mid-May through July 2017. The company has found no evidence of unauthorized activity on Equifax’s core consumer or commercial credit reporting databases.
The information accessed primarily includes names, Social Security numbers, birth dates, addresses and, in some instances, driver’s license numbers. In addition, credit card numbers for approximately 209,000 U.S. consumers, and certain dispute documents with personal identifying information for approximately 182,000 U.S. consumers, were accessed. As part of its investigation of this application vulnerability, Equifax also identified unauthorized access to limited personal information for certain UK and Canadian residents. Equifax will work with UK and Canadian regulators to determine appropriate next steps. The company has found no evidence that personal information of consumers in any other country has been impacted.
Equifax discovered the unauthorized access on July 29 of this year and acted immediately to stop the intrusion. The company promptly engaged a leading, independent cybersecurity firm that has been conducting a comprehensive forensic review to determine the scope of the intrusion, including the specific data impacted. Equifax also reported the criminal access to law enforcement and continues to work with authorities. While the company’s investigation is substantially complete, it remains ongoing and is expected to be completed in the coming weeks.
“This is clearly a disappointing event for our company, and one that strikes at the heart of who we are and what we do. I apologize to consumers and our business customers for the concern and frustration this causes,” said Chairman and Chief Executive Officer, Richard F. Smith. “We pride ourselves on being a leader in managing and protecting data, and we are conducting a thorough review of our overall security operations. We also are focused on consumer protection and have developed a comprehensive portfolio of services to support all U.S. consumers, regardless of whether they were impacted by this incident.”
Equifax has established a dedicated website, www.equifaxsecurity2017.com, to help consumers determine if their information has been potentially impacted and to sign up for credit file monitoring and identity theft protection. The offering, called TrustedID Premier, includes 3-Bureau credit monitoring of Equifax, Experian and TransUnion credit reports; copies of Equifax credit reports; the ability to lock and unlock Equifax credit reports; identity theft insurance; and Internet scanning for Social Security numbers – all complimentary to U.S. consumers for one year. The website also provides additional information on steps consumers can take to protect their personal information. Equifax recommends that consumers with additional questions visit www.equifaxsecurity2017.com or contact a dedicated call center at 866-447-7559, which the company set up to assist consumers. The call center is open every day (including weekends) from 7:00 a.m. – 1:00 a.m. Eastern time.
In addition to the website, Equifax will send direct mail notices to consumers whose credit card numbers or dispute documents with personal identifying information were impacted. Equifax also is in the process of contacting U.S. state and federal regulators and has sent written notifications to all U.S. state attorneys general, which includes Equifax contact information for regulator inquiries.
Equifax has engaged a leading, independent cybersecurity firm to conduct an assessment and provide recommendations on steps that can be taken to help prevent this type of incident from happening again.
CEO Smith said, “I’ve told our entire team that our goal can’t be simply to fix the problem and move on. Confronting cybersecurity risks is a daily fight. While we’ve made significant investments in data security, we recognize we must do more. And we will.”
About EquifaxEquifax is a global information solutions company that uses trusted unique data, innovative analytics, technology and industry expertise to power organizations and individuals around the world by transforming knowledge into insights that help make more informed business and personal decisions.
Headquartered in Atlanta, Ga., Equifax operates or has investments in 24 countries in North America, Central and South America, Europe and the Asia Pacific region. It is a member of Standard & Poor’s (S&P) 500® Index, and its common stock is traded on the New York Stock Exchange (NYSE) under the symbol EFX. Equifax employs approximately 9,900 employees worldwide.
Forward-Looking StatementThis release contains forward-looking statements and forward-looking information. These statements can be identified by expressions of belief, expectation or intention, as well as estimates and statements that are not historical fact. These statements are based on certain factors and assumptions with respect to the investigation of the cybersecurity incident to date. While the company believes these factors and assumptions to be reasonable based on information currently available, they may prove to be incorrect.
Several factors could cause actual results to differ materially from those expressed or implied in the forward-looking statements, including, but not limited to, the final results of the investigation, including the final scope of the intrusion, the type of information accessed and the number of consumers impacted. A summary of additional risks and uncertainties can be found in our Annual Report on Form 10-K for the year ended December 31, 2016, including without limitation under the captions “Item 1. Business — Governmental Regulation” and “– Forward-Looking Statements” and “Item 1A. Risk Factors,” and in our other filings with the U.S. Securities and Exchange Commission. Forward-looking statements are given only as at the date of this release and the company disclaims any obligation to update or revise the forward-looking statements, whether as a result of new information, future events or otherwise, except as required by law.
NCUA Launches Fraud Prevention CenterConsumers now have a new information resource to help learn about and protect themselves against fraud with the launch of the National Credit Union Administration’s new Fraud Prevention Center. Click here for information. Each year, scam artists and identity thieves steal billions of dollars from unsuspecting consumers. They use the telephone, email, text messaging, postal mail and the internet to steal information or trick consumers into handing over money. The new Fraud Prevention Center helps consumers learn how to recognize common scams, take action if they think they are victims of fraud and protect their finances.
With the site’s easy-to-use navigation and mobile-responsive design, users can access a number of resources from NCUA and other federal partners. The Fraud Prevention Center has sections covering a variety of topics, including:
- Frauds and Scams: learn about the newest and most common types of frauds or scams, what to do if you become a victim of fraud and how to report a scam;
- Identity Theft: discover what steps you can take to prevent and report identity theft;
- Online Security: get tips for staying safe online;
- Fraud Alerts: stay a step ahead with the latest information and practical tips about recent frauds and scams; and
- Fraud Resources: visit other NCUA partners for additional fraud prevention resources.
Holiday ScamsUS-CERT reminds users to remain vigilant when browsing or shopping online this holiday season. E-cards from unknown senders may contain malicious links. Fake advertisements or shipping notifications may deliver infected attachments. Spoofed e-mail messages and fraudulent posts on social networking sites may request support for phony causes. To avoid seasonal campaigns that could result in security breaches, identity theft, or financial loss, US-CERT encourages users to take the following actions:
- Avoid following unsolicited links or downloading attachments from unknown sources.
- Refer to our security Tips to learn more about Shopping Safely Online and Avoiding Social Engineering and Phishing Attacks.
- Read the Federal Trade Commission's blog on Cyber Monday shopping.
- Visit the Federal Trade Commission's Consumer Information page on Charity Scams
- File a complaint with the FBI's Internet Crime Complaint Center (IC3).
- Report the attack to the police and file a report with the Federal Trade Commission.
- Contact your financial institution immediately and close any accounts that may have been compromised. Watch for any unexplainable charges to your account.
- Immediately change any passwords you might have revealed and do not use that password in the future. Avoid reusing passwords on multiple sites.
Stickley on Security
Fort Bragg Federal Credit Union utilizes Stickley on Security to provide members with information about protecting your personal information securely and tips on avoiding identity thieves. Check out their vehicles and more on the Stickley on Security page.
Fraud Prevention Begins with Awareness
Scams, identity theft, viruses, worms and credit card fraud are happening more frequently today than ever before. Working with Stickley on Security (SoS) we are able to educate our members about the many security risks they face and proactively keep them informed about new breaches, threats, and attacks. SoS also provides our members with helpful tips necessary to stay one step ahead of the identity thief.