Search
How to Protect Your Wallet from Holiday Fraud and Cyber Scams
The holiday season is a time for joy, giving, and celebration. Unfortunately, it’s also a prime opportunity for cybercriminals to target unsuspecting individuals. From fraudulent emails to fake charity scams, these scammers use sophisticated tactics to exploit the hustle and bustle of the holidays.
One of their most common methods is SMS phishing, or “smishing,” which involves sending deceptive text messages designed to trick you into clicking a malicious link. If you’re unprepared, these cyber scams can steal personal information, compromise your financial safety, and dampen your holiday cheer.
Stay safe and secure this holiday season with these cyber-safety tips from GNCU:
⚠ Think Before You Click
Imagine receiving a text claiming to be from GNCU, asking you to verify your account by clicking a link. This is a classic smishing tactic. Before you tap, stop and think: Is this legitimate? GNCU will never ask for personal data, such as your login credentials, through a text message. If you’re unsure, contact us directly through the official channels and contact details on our website.
📝 Receive and Report
If you encounter a suspicious text, call, email, or alert claiming to be from Greater Nevada, report it immediately using GNCU’s official Member Report form. By taking this step, you’re not just protecting yourself but also helping to protect fellow members from potential scams and deeper impact. Reporting suspicious communications is a vital part of community vigilance—we appreciate every alert we receive!
🎁 Holiday Hot-Tip: Set Up GNCU Account Alerts
One of the easiest ways to safeguard your digital banking profile is by setting up account alerts. GNCU offers customizable alerts that notify you of account activity, such as transactions or balance changes. These alerts can help you spot unauthorized activity quickly and act before any harm is done.
🚩 Spot the Red Flags
Cybercriminals know how to prey on holiday emotions. Look out for these common red flags:
- Too-Good-To-Be-True Deals: Offers that seem unrealistically generous often have a catch—a malicious link or a request for sensitive information. Be careful what you click!
- Urgent Charity Requests: Scammers may pose as charitable organizations asking for immediate donations. Verify their legitimacy and locate the charity’s official donation source before giving.
- Fake Invitations: “Holiday Party” RSVPs that require clicking a link could install malware on your device or lead to phishing sites collecting your personal information. Do you know the sender?
Stay cautious and trust your instincts when something feels off. These scams are designed to exploit your goodwill with festive cheer amongst regularly scheduled holiday distractions.
📞 Verify Your Contact
If a message or phone call doesn’t seem right, don’t act on it immediately. Instead, pause or end the interaction to verify the sender’s identity. Members should always contact GNCU directly using the official phone number listed on our website and report any suspicious activity or communications. These extra steps can prevent you from falling victim to an in-progress scam and ensure you interact with a trusted source.
🤝 Spread the Word
Protecting yourself from holiday scams is important, but spreading awareness is just as vital. Share these best practices with family, friends, neighbors, and colleagues. The more people know about holiday fraud, the harder it becomes for scammers to succeed. Help create a ripple effect of safety and vigilance.
How GNCU Protects Its Members
At GNCU, safeguarding your finances is our top priority. We employ advanced security measures to monitor accounts for suspicious activity, provide secure digital banking platforms, and offer resources to help you navigate and resolve fraud concerns. Our Fraud and Disputes Resolution Center is your go-to hub for understanding how we protect you—our members—and the steps we take to prevent fraudulent activity with your help and on your behalf.
Whether it’s through proactive fraud detection or educational tools, we’re committed to ensuring your financial safety—so you can focus on enjoying the season without worry.
Learn to Spot Phishing Scams
Phishing attempts aren’t limited to text messages. Fraudsters also use email, social media, and even phone calls to trick people into revealing personal information. Our guide, 5 Tips to Avoid Phishing Scams, can help you recognize the warning signs and protect yourself from these common traps.
Bank Imposters Are on the Rise
Have you ever received a call or text from someone claiming to represent your bank? Scammers often impersonate financial institutions to gain trust. Learn more about their tactics and how to stay vigilant in our blog post, 4 Ways Bank Imposters Try to Scam You.
Stay Safe on Payment Apps
Peer-to-peer (P2P) payment apps like Venmo or Zelle make transactions convenient, but they can also be a target for scammers. Protect your accounts by understanding the risks and following the tips outlined in our blog, Stay Safe: Avoiding P2P Scams on Payment Apps.
Keep Your Holidays Merry and Bright
At GNCU, we’re here to help protect what matters most—our members. Whether it’s safeguarding your online transactions or avoiding phishing scams, these tips and resources provide valuable insights to keep your finances secure during the holidays and beyond. This season should be a time of celebration, not stress over cybersecurity threats. If you have questions or concerns about your account or potential scams, please don’t hesitate to contact us directly.
Together, we can ensure this holiday season remains merry, bright, and scam-free.
How to Stay Cyber Safe: Tips for Protecting Your Finances Online
Cybersecurity threats are more advanced than ever, targeting individuals and institutions alike. Scammers are leveraging tools like phishing emails, voice deepfakes, and malware to steal sensitive information and funds from online accounts. While it can be challenging to keep track of all the latest trends, GNCU is here to help you stay one step ahead. By understanding the risks and practicing proactive online safety, you can protect your personal information and financial well-being from cybercriminals looking for new targets.
The Rising Threat of Financial Fraud
Cybercriminals constantly evolve their tactics, exploiting both new technologies and human vulnerabilities. Data shows that over 95% of breaches involve phishing—a scam designed to trick you into sharing private data like passwords or bank account details.
Voice deepfakes, where fraudsters mimic a person’s voice to authorize fraudulent transactions, are another alarming new frontier. This is where scammers use artificial intelligence to sound eerily realistic, pressuring individuals to act quickly in transferring funds.
To counter these risks, GNCU employs advanced tools like multi-factor authentication (MFA), real-time fraud detection, and customizable account alerts. But technology alone isn’t enough—education and awareness are your best defenses.
3 Red Flags to Watch For
Spotting scams quickly is critical to stopping them. Here are three common warning signs:
- False Sense of Urgency: Emails, calls, or texts that demand immediate action—like transferring funds to avoid losing access to your account—are classic red flags. Legitimate financial institutions will never pressure you to act without verification.
- Suspicious Links or Attachments: Fraudulent messages often contain links or attachments designed to steal your data or install malware. Always hover over links to verify their destination before clicking.
- Unusual Requests for Personal Information: Your bank will never ask for sensitive data like passwords, verification codes, or Social Security numbers through email or text. If you’re asked for these, it’s a scam.
How GNCU Keeps You Safe
At GNCU, your safety is our priority. We’ve implemented robust cybersecurity measures to shield your accounts:
- Customizable Alerts: Members can activate real-time alerts for unauthorized transfers, password changes, or profile updates to stay informed and react quickly.
- Multi-Factor Authentication: MFA adds a critical layer of protection, requiring additional verification for account access.
- Fraud Detection Systems: Advanced monitoring tools help detect suspicious activity and prevent unauthorized transactions.
Additionally, GNCU continually educates members about emerging scams and best practices for online safety. Together, we create a stronger defense against fraud.
5 Simple Cybersecurity Steps to Protect Yourself
Take charge of your online security with these actionable tips:
- Enable Multi-Factor Authentication: Protect your accounts with MFA to reduce the risk of unauthorized access—even if your username or passwords are compromised.
- Verify Before Acting: If you receive a suspicious call or email, hang up or step away. Contact your financial institution directly using official channels to verify the request.
- Avoid Public Wi-Fi for Transactions: Hackers often exploit unsecured networks. Use a VPN or wait until you’re on a secure connection to manage your finances online.
- Monitor Accounts Regularly: Review your bank and credit card statements for unusual activity. Set up alerts to notify you of any suspicious transactions.
- Educate Yourself: Stay informed about new threats, such as smishing (SMS phishing) or voice deepfakes. Awareness is your first line of defense.
What to Do If You’re Targeted
If you suspect fraud or realize you’ve been scammed, act immediately:
- Contact Your Financial Institution: GNCU members can call our fraud hotline at (775) 334-8635, (M—F, 8 AM—5:30 PM) or log in to Digital Banking to report issues and secure impacted accounts.
- Change Your Credentials: Update passwords and enable MFA on all affected accounts.
- File a Report: Submit a complaint with the Federal Trade Commission (FTC) at ReportFraud.FTC.gov and monitor your credit reports for signs of identity theft.
The Future of Fraud Prevention
As scams grow more sophisticated, collaboration between financial institutions and our members is crucial. GNCU is committed to investing in cutting-edge technology and providing ongoing education to empower and protect our community. Together, we can stay ahead of evolving threats and ensure your financial future remains secure. To learn more about GNCU’s fraud prevention tools and alerts, visit gncu.org/fraud.
Protecting Your Business Against Emerging Cybersecurity Threats
As cybersecurity threats evolve and data breaches hit national headlines, businesses become increasingly vulnerable to online attacks. From ransomware and business email compromise (BEC) to unsecured Internet of Things (IoT) devices, defending against these cybersecurity risks is critical for protecting business operations and securing sensitive data.
GNCU’s Vice President of Information Security, Stephen Root, and Information Security Analyst, Kira Luin, recently discussed strategies businesses can proactively adopt and deploy to defend against ongoing cyber threats. Below are their key takeaways—supported by the latest data—and actionable steps you can take to help your business safeguard its digital assets in today’s cybersecurity landscape.
1. Ransomware: Stop It Before It Spreads
The threat: Ransomware attacks are a leading concern for businesses. These attacks typically start with phishing or compromised passwords, allowing hackers to access an internal network, move laterally within it, and eventually encrypt files and applications. The result is often a ransom demand, leaving the impacted files locked by hackers until the organization pays to decrypt the affected data.
The facts: Ransomware attempts surged significantly in 2023, especially targeting industries reliant on digital systems.
Steps to Mitigate Ransomware:
- Employee Awareness: Security training is essential to prevent phishing; train your team to recognize phishing emails and avoid dangerous clicks.
- Multi-Factor Authentication (MFA): Enforce MFA and strong passwords for all systems to mitigate unauthorized access.
- Network Security: Set up firewalls and monitor system logs to detect unusual activity.
- Backup Systems: Keep air-gapped backups to prevent the loss of crucial data and set your business up for fast recovery options without paying cyber ransoms.
2. Business Email Compromise: Defend Against Deceptive Emails
The threat: Business Email Compromise remains one of the costliest cyber threats for businesses. In BEC attacks, cybercriminals often pose as company executives or trusted contacts to trick employees into transferring funds or sharing sensitive information.
The facts: Global phishing attacks grew by 58.2% last year, with finance and insurance sectors amongst the hardest-hit industries.
Strategies to Combat BEC:
- Enhanced Email Security: Implement domain protections such as SPF, DKIM, and DMARC to prevent spoofed emails.
- Training and Awareness: Educate employees on identifying phishing tactics, including impersonations, to reduce incidents.
- Monitoring for Anomalies: Set alerts for changes to email forwarding rules (a common sign of unauthorized access) and monitor logs for other suspicious activities.
3. IoT Security: Minimize Your Vulnerabilities
The threat: The growing adoption of IoT devices introduces new vulnerabilities for many businesses. These devices often have insecure default settings and limited encryption, making them easy targets for cyber hackers.
The data: IoT devices are increasingly targeted as businesses adopt AI, which expands their digital footprint and can inadvertently expose vulnerabilities, specifically when targeted in phishing attacks.
Best Practices for IoT Security:
- Secure Device Configurations: Change default passwords and disable unnecessary features.
- Segment Networks: Isolate IoT devices from core business systems.
- Prioritize Encrypted Products: Use IoT devices with built-in encryption and regularly update device software to avoid outdated vulnerabilities.
4. QR Phishing: Think Before You Scan
The threat: QR codes have become popular for quick and easy website access, but attackers have exploited this by creating malicious QR codes that direct users to phishing sites.
The trend: Experts note a growing trend in QR-based phishing scams, as attackers use QR images in emails or websites to bypass security filters.
Mitigation Tips for QR Phishing:
- Verify QR Code Sources: Only scan QR codes from trusted sources.
- Double-check URLs: Confirm that the URL matches the intended site before navigating.
- Use a Secure QR Scanner: Mobile apps like Trend Micro QR Scanner provide additional safety by screening QR codes for potential threats.
5. Incident Response Plan: Be Ready to Act
The threat: Preparing for cybersecurity incidents can be the difference between a quick recovery and prolonged downtime. Fast, well-coordinated action during a cyberattack can save your business time, money, and its reputation. A strong and clear incident response plan (IRP) helps ensure your team knows what to do when an attack inevitably occurs.
The advice: Experts suggest that businesses regularly simulate phishing attacks to identify vulnerabilities, test their responses, and improve their IRP as real-world attacks become increasingly sophisticated.
Elements of an Effective IRP:
- Preparation and Training: Ensure roles are defined and response teams are well-trained.
- System Monitoring and Detection: Regularly review and analyze logs to spot issues early.
- Containment and Recovery: Outline clear steps to isolate affected systems and recover data.
- Clear Communication Protocols: Establish internal and external channels for quick updates and added transparency.
- Post-Incident Analysis: Conduct a review to learn from each incident and improve your response strategy.
Cybersecurity Is an Ongoing Process
Building a secure business environment in today’s rapidly developing digital landscape is an ongoing commitment. Cybersecurity requires constant vigilance and regular updates. By implementing these measures, businesses can build a strong foundation for online security and protect themselves against emerging cyber threats.
At Greater Nevada Credit Union, empowering our employees and members with tips to stay safe and vigilant against these ever-evolving threats remains one of our top strategies for securing our assets and operations. The more you know, the better prepared you’ll be to protect yourself and your business from lingering cyber attacks.
What to Do After a Data Breach: 10 Steps to Protect Yourself and Your Credit
Why it matters: A data breach isn’t just about losing control of your information; it’s about staying ahead of potential identity theft, financial fraud, and emotional stress. Familiarizing yourself with helpful tools and safeguarding your credit before a breach is the best defense, but if you’ve already been impacted, taking these actions quickly can help protect you from further damage.
How to Protect Yourself After a Data Breach:
- Monitor financial statements and credit reports regularly for suspicious activity.
- Change passwords on any compromised accounts and enable multi-factor authentication where possible.
- Freeze your credit with major credit bureaus to prevent fraudulent accounts from being opened in your name.
- Explore identity theft protection services if needed, especially if sensitive personal information like SSNs have been exposed.
- Be cautious of phishing attempts that may follow a breach and verify communication sources before providing further information.
The scoop: Data breaches have become an all-too-common part of modern life. In 2023 alone, U.S. data breaches hit record highs, affecting over 422 million individuals, according to the Identity Theft Resource Center. Globally, cyberattacks and breaches are on the rise, with average costs reaching a staggering $4.45 million globally in 2023, a 15% increase from 2020 to 2023.
For credit union members, the security of your personal and financial information is a top priority, especially as we embrace the convenience and benefits of digital banking. While the digital age offers unprecedented access and control over your finances, it’s essential to stay informed and take proactive steps to protect yourself. Understanding possible risks and taking immediate steps to protect yourself after a breach is crucial to safeguarding your financial well-being.
Concerned your personal data has been compromised and wondering what happens now? A data breach can feel overwhelming but knowing what to do next is critical to protecting yourself and minimizing damage. Here’s a step-by-step guide to take control and stay ahead of potential threats:
1. Check if your information was leaked
First, confirm if your data was involved in the breach. Tools like Have I Been Pwned can help you see if your email or personal info has been compromised. Many companies will notify affected individuals after experiencing a breach, but it’s smart to be proactive in checking these lists periodically.
2. Freeze your credit
Cybercriminals often use stolen personal information to open new credit accounts in your name. Help prevent this by freezing your credit with major bureaus like Equifax, TransUnion, and Experian. It’s free and won’t impact your current credit score (but remember to unfreeze when applying for a new credit card or loan!).
3. Change your passwords
One of the fastest ways to secure your accounts is by updating your passwords. Start with affected accounts and use strong, unique passwords for each system. Consider using a secure password manager to easily use and keep track of your updated unique login credentials.
4. Enable two-factor authentication
Add an extra layer of protection by enabling two-factor authentication (2FA) wherever possible, especially on banking and email accounts. Doing so ensures that even if someone does gain access to your password data, they need an additional verification code to log into your multi-factor authentication-enabled systems.
5. Monitor your financial accounts
Keep a close eye on your bank and credit card statements, especially if you’re notified of your data being subject to a financial institution breach elsewhere. Fraudulent transactions—visible to you as unrecognized charges—are often the first sign of data misuse. Report any suspicious communication or banking activity to your financial institution(s) immediately.
6. Set up credit monitoring
Speaking of looking after your financial accounts, you may be wondering what the best credit monitoring services are. Reputable credit monitoring services like Experian, Credit Karma, and Identity Guard will alert you if there are unusual changes to your credit report, like a new loan or credit inquiry. GNCU members have access to comprehensive credit solutions like My Credit Health to help you stay current with your credit.
7. Watch out for phishing scams
After a data breach, scammers might target you with convincing phishing emails or texts. Learning how to spot phishing scams and attempts before interacting with nefarious links or attachments is critical for consumer safety. Pro tip: Avoid clicking links or downloading attachments from unknown sources, and always verify email addresses or phone numbers, even if the sent message appears legitimate.
8. File an identity theft report if needed
If you notice fraudulent activity, file a report with the Federal Trade Commission (FTC) through IdentityTheft.gov. This gives you documentation to help resolve disputes with creditors and protect your rights as a consumer.
9. Secure your online accounts
If a hacker gained access to your email or social media accounts, you’ll want to learn how to recover your hacked accounts. Look for “recover hacked accounts” guides on the platforms you use and follow their platform-specific recovery steps to regain control.
10. Safeguard your Social Security number
One of the most alarming thoughts after a data breach is often: “Is my Social Security number safe?” If your Social Security number was exposed or compromised in a data breach, place a fraud alert on your credit report or consider a credit freeze. These steps prevent identity thieves from taking out loans or opening accounts in your name. For extra security, explore these third-party identity theft protection services.
Remember: You can’t always prevent a data breach from happening, but you can control your response. These tips can help you stay vigilant, keep your information secure, and act fast if you notice anything out of the ordinary. The sooner you safeguard your sensitive information, the better you can protect yourself, your data, and your financial health from future damages.