The LSCU is providing this alert in response to the Equifax Data Breach

 

Background:

Equifax, a national credit reporting bureau, suffered a data breach that compromised the personal information of as many as 143 million consumers. The LSCU encourages credit unions to provide guidance to assist members with protecting their financial accounts. We suggest that all credit union members closely monitor their accounts and report any suspicious activity immediately.

Equifax has set up a website at EquifaxSecurity2017.com where consumers can check to see if they may have been impacted and to enroll in one year of free credit file monitoring and identity theft protection.

Additional information about the breach is available on the Federal Trade Commission (FTC) Consumer Information website at consumer.ftc.gov. The FTC webpage is labeled “Share This Page” and appears to be available to be posted or linked from a credit union website. Credit unions may also wish to use statement stuffers to alert members.

 

Tips for CUs:

Suggested guidance to credit unions includes recommending that members take the following precautions:

  • Please read through the information on the website at EquifaxSecurity2017.com and check to see if your data was potentially compromised. If you have any questions, please call Equifax at (866) 447-7559.
  • To review FAQs related to the breach, visit the Equifax website: https://www.equifaxsecurity2017.com/frequently-asked-questions/
  • Regularly request free credit report(s), inspect the report(s) closely, and promptly dispute any unauthorized accounts.
  • Inspect all financial account statements closely and promptly dispute any unauthorized charges.
  • Consider enrolling in free credit reporting and monitoring services.
  • Consider implementing a credit lock or credit freeze on your existing credit files.
  • Consider placing a fraud alert if the member believes his or her data has been compromised.
  • Monitor potential credit activity in the names of any children.
  • Be on guard for potential phishing emails. This includes not opening email messages or attachments from unknown senders and not clicking on any unknown links. This also includes not providing sensitive information via email. Fraudsters frequently send coercive or misleading emails that threaten account suspension or other action if sensitive information is not provided.
  • Be vigilant in checking the accuracy of email addresses to confirm the sender is legitimate. Customers should not respond to email from spoofed email addresses (i.e., email addresses that appear correct, but make minor changes in the domain name, such as changing the letter O to the number zero).
  • Remember that a credit union will not ask its members to verify account information via email.