Please update your browser.

We don’t support this browser version anymore. Using an updated version will help protect your accounts and provide a better experience.
Update your browser


Fraudulent Emails & Identity Theft

Stay up-to-date with instant alerts and avoid attempts to steal your identity.

In our modern web-based world, it's important that you protect yourself and your financial information from cyber criminals. Below you will find tips and information on how to keep your accounts safe.

Phishing information

Phishing is a type of fraudulent email scheme designed to trick you into providing your personal and/or financial information.

The credit union will never ask you for personal account information via email or text message requesting you to provide personal secure information, such as a PIN, account number, social security number or password. Never respond to an email/text message requesting personal info to verify an account or to reactivate an account.

Check for anything that looks unfamiliar, unprofessional, or out of place to you.

To report a suspected phishing scam, please email us with details about the incident at [email protected].

Protections provided by California Credit Union under Regulation E

Regulation E or the Electronic Funds Transfer Act which establishes the basic rights, liabilities, and responsibilities of consumers who use electronic fund transfer services and of financial institutions that offer these services. The primary objective of the Act and this part is the protection of individual consumers engaging in electronic fund transfers.

Account means a demand deposit (checking), savings, or other consumer asset account (other than an occasional or incidental credit balance in a credit plan) held directly or indirectly by a financial institution and established primarily for personal, family, or household purposes.

A consumer's liability for an unauthorized electronic fund transfer or a series of related unauthorized transfers shall be determined if the consumer notifies the financial institution within two business days after learning of the loss or theft of the access device. The consumer's liability shall not exceed the lesser of $50 or the amount of unauthorized transfers that occur before notice to the financial institution.

If the consumer fails to notify the financial institution within two business days after learning of the loss or theft of the access device, the consumer's liability shall not exceed the lesser of $500 or the sum of $50 or the amount of unauthorized transfers that occur within the two business days, whichever is less.

Tips to help you protect your personal information

  • Check your statements frequently to make sure you recognize all the transactions and amounts listed. Refute any unauthorized withdrawals or transactions in a timely fashion.
  • Select online shopping websites carefully. When searching for a product or service online, do business only with those you recognize. Established e-retailers are your safest bet.
  • Use secure sites. Before entering a credit card number, always look for “https” in the address bar. The “s” in “https” means the site is secure.

  • Protect your computer through the use of active, up-to-date anti-virus software and firewall protection.
  • Keep your operating system, browser and other applications updated with the latest security patches.
  • Avoid transactions at wireless hotspots or Internet cafés.
  • Always check for the browser “lock” icon in the URL address bar. Be aware that this only signifies a secure communication channel, not necessarily a legitimate website.
  • Digital Banking can help you protect your identity—log in and check your account statements or transaction history regularly. Report any suspicious or unauthorized transactions immediately. Check credit reports to spot accounts that may have been opened without your knowledge.
  • When finished with Digital Banking, use the “Logout” option. This completely logs you out, avoiding any potential unauthorized use. When stepping away from your computer use the logout option as well; our system will time out after a short period, but not immediately.
  • Never respond to an email requesting that you provide personal information to verify an account or to re-activate that account or service.
  • Remember, we do not contact members via email or text message requesting a member to provide personal secure information, such as a PIN or passwords.

  • Use a strong password—at least eight characters, with a combination of numbers, letters, and punctuation symbols.
  • Make passwords easy for you to remember but difficult for someone else to guess.
  • Don’t use the same password for Digital banking that you use for other online accounts.
  • Keep your password safe—don’t leave it in a file on your computer or on a sticky note on your monitor.
  • Avoid password managers. While convenient, they can allow you to forget your password as well as override new passwords, creating login verification errors.
  • Change your password regularly.

Just like your personal computer, your mobile device is susceptible to viruses and malware. That’s why it’s important to take the following actions to secure your mobile devices.

  • Keep your operating system and applications up-to-date. In general, your device’s application store will keep you aware of any required application updates. You can also proactively check for updates.
    • For an iPhone® or iPad® use iTunes on your desktop computer or the settings panel on your phone to check for updates.
    • For an Android® mobile device, check your device settings for updates.
  • Don’t jailbreak or root your mobile device. If you do, you can make it more vulnerable to malicious software and may void your warranty.
  • Beware of malicious software. Limit your risk of installing malicious software by only downloading trusted applications from an application marketplace or store.
  • Use a password or PIN to restrict access to your phone, if your mobile device supports it. This makes it more difficult to get into your device. Your device may have a wipe function that can be triggered by password failures. You may also be able to perform a remote wipe in case your phone is stolen or lost.     
  • If your device is lost or stolen, immediately contact your mobile service provider to stop service and contact us to disable text message alerts.

  • If you receive an email requesting that you dial a certain number, do not call the number. Contact us immediately at (800) 334-8788.
  • Do not provide your personal secure information to an unsolicited caller.
  • Never respond to a phone call or voice mail service asking you to verify account information or reactivate a service.

What to do

If you believe you are a victim of fraud, or have been the recipient of suspicious communication:

  • Forward the suspicious email or text message to [email protected] 
  • Delete the email or text message
  • To be safe, monitor your account for any unauthorized transactions
  • For more information on personal privacy and security, visit

If you have any questions, please call us at (800) 334-8788.

The information included in this document is provided for general purposes only and the credit union does not provide any express or implied warranty, guarantee or promise concerning the content, completeness, accuracy or value of the information. All persons or entities should confirm the accuracy as it applies to their specific business or system. California Credit Union is not liable for any direct, indirect, incidental, special or consequential damages arising out of the information above.