It's the most wonderful loan...of the year!

Finance up to $5,000 for as low as 5.9% APR! Click here to learn more.
Property Taxes are due soon...

We may be able to help! Click here to learn more.
A comprehensive list of major data breaches to date.

Stay informed of which merchants had data stolen. Click here to learn more.
Santa is on his way!

Join us for Santa Day December 22, 2014 Click here to learn more.
It's not too late!

Petitions for board nominations are now being accepted. Click here to learn more.
HTFFFCU Mobile App

New and Improved Mobile Banking! Click here to learn more.
Turbo Tax '$25k Giveaway'

Enter for a chance to win your share of $25,000! Click here to learn more.
Traveling for the holidays?

Don't forget to let us know! Click here to learn more.

News & Updates

Fraud Alerts You Should be Aware Of

December 2014

Major Data Breaches: Below is a is a recap of the current major breaches primarily affecting U.S. customers. The information is based off when the incident was reported to the public, rather than when it actually occurred.

We encourage you to monitor and review your purchases on CU Online or on your statement for transactions that were not authorized. If you see anything unusual, please contact us right away at (800) 325-3678 to report any fraudulent credit card activity.

Organization Date Records Data Compromised
Staples 10/20/14 Unknown Payment card information
K-Mart 10/10/14 Unknown Payment card information
SuperValu 9/30/14 Unknown Payment card information including cardholder names, account numbers, and some expiration dates
Viator.com 9/30/14 880,000 Payment card information including cardholder names, account numbers, and some expiration dates
Albertsons 9/29/14 Unknown Account numbers, expiration dates, other numerical information and/or cardholder names. For questions, call (855) 865-4449
American Income Life 09/29/14 Unknown Company is not stating any details
Yandy.com 9/22/14 45,000 Payment card information, addresses and email addresses. Affected customers can call the company at (844) 236-1015
Home Depot 9/2/14 56 Million Payment card information. Affected customers can contact Home Depot to obtain a free 12 month credit monitoring service
JP Morgan Chase 8/28/14 76 Million Names, addresses and phone numbers, no financial or bank account information was accessed
Dairy Queen 8/28/14 Unknown Payment card information from 400 of its over 4,500 outlets
UPS 8/21/14 Unknown Payment card information from 51 of its 4,470 locations. Affected customers can call (855) 731-6016
Community Health Systems 8/18/14 4.5 Million Social Security numbers, names and addresses
SuperValu 8/16/14 Unknown Payment card information at approximately 1,000 locations
Jimmy Johns 8/1/14 Unknown Payment card information. Company is offering free identity protection services
Goodwill Industries 7/24/14 868,000 Payment card information from 330 store locations
P.F. Chang's 6/11/14 Unknown Payment card information
American Express 6/3/14 94,000 Payment card information from California residents
Spotify 5/29/14 Unknown Small number of user names and passwords. Spotify recommends all customers change their password
ebay 5/21/14 Unknown Usernames, encrypted passwords, email addresses and other private information. Company claims no financial information was stolen. Customers should change their passwords immediately
Boomerang Pets 5/9/14 Unknown Payment card information
LivingSocial 4/26/14 50 Million Names, email addresses, date of birth, encrypted passwords. Payment information was not accessed. Passwords should be changed immediately
Michael and Aaron Brothers 4/18/14 3 Million Payment card information. Free 12 months of credit monitoring services is being offered
California DMV 3/22/14 Unknown Payment card information
Sally Beauty Supply 3/17/14 25,000 Payment card information
Evernote 3/2/14 50 Million User names and passwords
Neiman Marcus 1/21/14 1.1 Million Payment card information
Target 12/16/13 76 Million Payment card information. Free 12 months of credit monitoring services is being offered

Source:

https://www.stickleyonsecurity.com/sos_examples.jspx?sosnoteid=461

October 2014

Type of scam: Dairy Queen Data Breach

What you need to know: Dairy Queen has confirmed that Backoff point-of-sale malware was used in a payment card breach that affected 395 of its 4,500 franchised U.S. locations. The ice cream and fast food chain says more than half a million cards may have been compromised.

We encourage you to monitor and review your purchases on CU Online or on your statement for transactions that were not authorized. If you see anything unusual, please contact us right away at (800) 325-3678 to report any fraudulent activity.

More information about the breach and which stores were possibily affected found here.

September 2014

Type of scam: Jimmy Johns Data Breach

What you need to know: On July 30, 2014, Jimmy John’s learned of a possible security incident involving credit and debit card data at some of Jimmy John’s stores and franchised locations.

We encourage you to monitor and review your purchases on CU Online or on your statement for transactions that were not authorized. If you see anything unusual, please contact us right away at (800) 325-3678 to report any fraudulent activity.

More information about the breach and which stores were possibily affected found here.

September 2014

Type of scam: Home Depot Data Breach

What you need to know: Home Depot has confirmed that it’s investigating a data breach that could affect credit cards. Cards that were primarily used at self-checkout terminals between April 11 and September 7 could be compromised.

We encourage you to monitor and review your purchases on CU Online or on your statement for transactions that were not authorized. If you see anything unusual, please contact us right away at (800) 325-3678 to report any fraudulent activity.

Home Depot is now offering identity protection services to its customers. More information about the breach and to learn about their ID protection services can be found here.

April 2014

Type of scam: Heartbleed Encryption Bug

What you need to know: Houston Texas Fire Fighters FCU and affiliated vendors are in the process of completing a thorough review of online security in response to published information of an internet security vulnerability, known as Heartbleed.

Current analysis and findings indicate that HTFFFCU websites, CU Online, and affiliated programs, are not affected by this encryption and information security bug. For members who are concerned, they may take the precautionary measure of updating sign-on passwords.

Click here for a report from NBC News.

January 2014

Type of scam: $9.84 Charge

How the scam works: Be on the lookout for a recent $9.84 charge on your debit or credit card. It might be part of a massive, worldwide scam.

Thieves are using stolen payment cards to make small charges that could easily go unnoticed. The charges are attributed to generic-looking websites such as EETsac.com, CEWcs.com and EduAcc.in, which claim to offer customer support services.

The Better Business Bureau, a consumer protection group, put out a national alert about the scam on Monday. The organization urged people to closely monitor past and current credit card statements and to call the actual card-issuing banks to resolve the issues.

It's not yet clear how widespread the fraud might be or how and when the affected credit card numbers were stolen. The Better Business Bureau and the nation's two major credit card companies, Visa and MasterCard, weren't immediately able to provide numbers.

January 2014

Type of scam: Fraudulent Phone Calls

How the scam works: We have learned that various members have recieved automatic phone calls telling them that their credit card and debit card have been closed or lost and to contact a 1-800 phone number. Once called, they are then asked to enter their credit card number and PIN. This is a scam. The credit union would NEVER ask for your PIN number over the phone, email or in person. That is a code you and you alone should know.

Another type of call is an automated call that says “Your mastercard has been deactivated. Press 1 to activate. Press 2 to deactivate." If you select 1 it will then ask for your card number and PIN number.

Please be aware of these types of phishing scams - never give out your personal information over the phone.

December 2013

Type of scam: Target Data Breach

How the scam works: We have learned of recent phishing emails related to the Target breach. The emails look like they are from Target and play on the fears of the public that they may have had their card compromised. As a precaution, proceed with caution if you receive an e-mail from Target. Do NOT OPEN any links that may be included in these emails as that could potentially allow additional access to your personal information. Target plans to post any and all emails to their breach-related site so its customers will know the difference between valid emails and phishing emails. Target’s breach related website: Click Here

According to Target’s press release, approximately 40 million credit and debit card accounts may have been compromised between Nov. 27 and Dec. 15, 2013. Please check your transaction activity frequently or view your statements carefully. If you see suspicious charges report them to us and call Target at 866-852-8680. Our contact information is below. Individuals that ordered online are not affected by this breach.

The Credit Union offers a Debit Card Mobile Alert service free of charge to its members. The alert service will send you a text message for a variety of purchases plus balance inquiries. For more information on Debit Card Mobile Alerts or to register for this service, click here

To report a lost or stolen Debit MasterCard: (800) 453-4270

To report a lost or stolen MasterCard or VISA: (800) 325-3678

Target has set up a website with important information which they are keeping updated. Click Here to view.

September 2013

Type of scam: Email/Fraudulent Check Scam

How the scam works: It has come to our attention that members are receiving emails from an "advertising" company claiming to pay them to wrap their cars with certain advertisements. This fictitious person by the name of "Taylor Nelson" claims that he will pay you $500 per week to be part of his “advertising team”. You agree to turn your car into a giant bumper sticker (i.e., have your car wrapped with an advertising decal). Taylor will mail you a (counterfeit) cashier’s check for $2,750 to deposit into your account. He then requests that you send a $2,250 Money-Gram to a “decal company” in Utah, in care of Andrea Cardenas and that you send a text message to 951-878-0605 when you’re done. Your fee for achieving this is a fictitious $500. You are now financially responsible to repay the credit union $2,750. Please be aware that this is a scam.

An example of the email circulating can be seen by clicking here.

News & Updates

Other Services

  • Contact Us Have a questions about a certain product or service? Contact Us
  • Credit Union Events Find out and stay up to date on what else is going on at the Credit Union! more