Your Security Matters

Bangor Federal Credit Union takes your security very seriously. Here are some things we do to watch out for you and some ways you can help protect yourself.

  • We have a fraud monitoring system in place to monitor all debit and credit card activity. You may receive a call from us, or on our behalf, to verify transaction activity on your card. Please be advised that we will never ask for your card number, pin number or the 3-digit code on the back of your card. You are covered by Visa’s Zero Liability protection against fraudulent transactions (does not apply to ATM transactions, PIN transactions not processed by Visa, and certain business card transactions).
  • If you plan on traveling and using your debit or credit card, please give us a call so we can make a note on your account. This will help decrease the likelihood that your card will get blocked.
  • Never write your pin number on your debit or credit card and don’t keep it in your wallet or purse.
  • Never give out your username and passwords.
  • Use complex, hard to guess passwords for online services including Online Banking and store them in a secure place only accessible to you. Complex passwords are at least 8 characters in length, and are a combination of upper and lower case letters, numbers, and special characters. Avoid using birth dates, anniversaries, family member’s or pet’s names, or words out of the dictionary as passwords.
  • Do not use the same username and password combination on multiple sites. If it gets compromised, cyber criminals can then use it to gain access to other sites you have used it on.
  • Don’t use public computers for financial activity. Public computers can be infected with viruses and malware.
  • If your Bangor Federal debit or credit card gets lost or stolen, contact us immediately to limit your liability. For information on how to report it after hours, click here.
  • Beware of phishing attacks. Bangor Federal will never contact you by phone, email or text message to ask for personal, account, or card information.
  • The best line of defense is you. We offer several means by which to monitor your account 24/7 for unauthorized activity. Sign up for one of our free account access products including Online Banking, eAlerts, Mobile Banking, iTalk Banking, and SMSGuardian. If you detect suspicious activity on your account, contact us immediately at 207-947-0374.
  • Log off of websites when you are finished. Don’t just close the browser. Never leave your computer unattended while you are logged on to a website.
  • We use multi-factor authentication on your Online Banking to help protect your accounts from fraud. The security image and phrase that you set up when you register is your verification that you are on the real Bangor Federal Online Banking login page.

The Federal Trade Commission is a great resource to help you deter, detect and defend against identity theft. You can also click here to download an informative Identity Theft brochure. Here are some tips for how to avoid becoming a victim of Identity Theft:

  • Review a copy of your credit report annually to make sure the information on it is accurate.
  • Monitor account activity regularly for unauthorized activity. If you see anything suspicious, contact your financial institution immediately.
  • Store personal information, passwords and sensitive records in a safe place. Shred financial statements, credit card offers, bank checks, and any other documents that contain personal information about you before throwing them away.

Beware of e-mail scams! Help protect your computer and your personal information with these simple tips:

  • Never click on links in unexpected or untrusted emails, particularly when they are requesting personal information.
  • Don’t open emails from unknown sources, and use extreme caution when opening attachments in emails. If the email isn’t from a trusted source, don’t open the attachment. Even if it is from a trusted source, use caution, it could be that their email account was compromised. Attachments can contain viruses or malware.
  • Whenever entering personal information in an online form, ensure that the site you are using is secure.
  • Run updated anti-virus and anti-spyware software on your computer and mobile devices. Be sure to keep the software updated so you have the latest protection available.
  • Make sure to install any available operating system patches regularly, and do not use computers with operating systems that are no longer supported (such as Windows XP).

 

Fraud Alerts

 

Anthem Security Breach – 2/5/2015

On February 4, 2015 it was announced that was the target of a very sophisticated cyber attack. They are indicating that at this time, there is no evidence that credit card or medical information were targeted or compromised. Anthem will individually notify current and former members whose information was accessed. Anthem’s website indicates that they will not contact those affected by phone or by email. Those impacted by the breach will be contacted by mail. Several scam emails are currently circulating appearing to be from Anthem. If you receive one:

  • DO NOT click on any links in email.
  • DO NOT reply to the email or reach out to the senders in any way.
  • DO NOT supply any information on the website that may open, If you have clicked on a link in email.
  • DO NOT open any attachments that arrive with email.

View the information above about how to protect yourself from Identify Theft including a printable brochure. You can also contact us to require a photo ID for all in-person transactions.

You can view their full announcement on their website by clicking here. 

SSL 3.0 Protocol Vulnerability and POODLE Attack – 10/23/2014

Recently, the Department of Homeland Security announced a vulnerability that affects applications and systems utilizing Secure Socket Layer (SSL) 3.0 with cipher-block chaining (CBC) more ciphers may be vulnerable. POODLE (Padding Oracle On Downgraded Legacy Encryption) attack demonstrates this vulnerability using web browsers and web servers, which is one of the most likely exploitation scenarios. Those using Internet Explorer 6 will need to update your browser to a newer version. Bangor Federal is aware of this situation, and is researching the effects, if any, on the Credit Union. We take security very seriously, and are continuously monitoring our network and systems for unusual activity as part of our everyday practices. Any further updates to this situation will be provided on this page.

You can read the full announcement on the Department of Homeland Security’s website by clicking here.

Shellshock Vulnerability – 9/29/2014

Last week, the U.S.-CERT issued an alert pertaining to a vulnerability which may make certain systems vulnerable to cyber attacks. Bangor Federal is aware of this situation, and is researching the effects, if any, on the Credit Union. We take security very seriously, and are continuously monitoring our network and systems for unusual activity as part of our everyday practices. Any further updates to this situation will be provided on this page.

You can read the full announcement on the Department of Homeland Security’s website by clicking here.