Apply For a Loan

If you are a current member of SMCU, applying for a loan is easy. Just log into SMCU OnLine and click "Apply For A Loan" located in the Services section of the online home page.

Apply Online               Apply As Guest

Apply For a Loan

If you are a current member of SMCU, applying for a loan is easy. Just log into SMCU OnLine and click "Apply For A Loan" located in the Services section of the online home page.

Apply Online               Apply As Guest

Apply For a Loan

If you are a current member of SMCU, applying for a loan is easy. Just log into SMCU OnLine and click "Apply For A Loan" located in the Services section of the online home page.

Apply Online               Apply As Guest

Apply For a Loan

If you are a current member of SMCU, applying for a loan is easy. Just log into SMCU OnLine and click "Apply For A Loan" located in the Services section of the online home page.

Apply Online               Apply As Guest

Open An Additional Account

If you are a current member of SMCU, opening additional accounts is easy. Just log into SMCU OnLine and click "Open an Additional Account" located in the Services section of the online home page.

Open Another Account Through SMCU OnLine               Open Another Account as a Guest

Security Lock SMCU OnLine Login

Equifax Cybersecurity Incident – as of 9/12/17

As one of America’s three largest credit reporting agencies, Equifax is holds a vast amount of personal information and last week announced that a cybersecurity incident may have put that information at risk. Social Security numbers, names, addresses, birth dates, and even some driver's license numbers for 143 million consumers may have been compromised between May and July of this year.

What you should know as of today

  • None of SMCU’s data was compromised as a result of the Equifax breach. 
  • Equifax reports they have found no evidence of unauthorized activity on their consumer or commercial credit reporting databases.
  • To check if your information may have been impacted by this incident, you can visit Equifax’s dedicated site at equifaxsecurity2017.com.
  • If you have additional questions, visit equifaxsecurity2017.com or call Equifax directly at 866-447-7559 from 7:00am to 1:00am (Eastern Time), seven days a week.

What you can do to protect yourself
To check if your information may have been impacted by this incident, visit Equifax’s dedicated site at equifaxsecurity2017.com – but even if you haven’t been affected by this particular data breach, it is still a good idea to take extra precautions:

  • Set up Account Alerts so that you can be notified right away when transactions are made; if you see a transaction you didn’t make you’ll know immediately.
  • Monitor your accounts using Online Banking, Mobile Banking, and your monthly statements to look for unauthorized transactions.
  • Learn more about Identity Protection and how to stay safe by taking our free online education course.
  • Check your credit report for any loans, accounts, or inquiries you don’t recognize. You can get your credit report for free at annualcreditreport.com and experts recommend checking in once every four months (you are able to see a credit report from each of the three major credit reporting agencies once per year).
  • Set fraud alerts with all 3 credit bureaus. To learn how, visit consumer.ftc.gov.
  • The FTC offers additional Identity Protection tips on the FTC blog.
  • Reset passwords, PIN codes, and other login credentials for any financial accounts that may be vulnerable; changing your passwords regularly is always a good idea.

Remember, if you see any unauthorized activity on any of your SMCU accounts, contact us right away at (650) 363-1725.

Text/Phone Scam Alert — 6/27/2017

SMCU has just been made aware of a phone and text message scam that has affected a small number of members. These members received either a text message claiming to be from San Mateo Credit Union that asks them to call or a direct phone call. Once on the phone, an automated voice asks you to enter your 16-digit card number.

Do not respond to the text message or phone call. Do not provide any account or card information as this is a fraudulent attempt to gain access to your account. If you have already provided your account/card information please contact us directly at (650) 363-1725 to notify an SMCU Financial Service Representative.

Stay alert and aware! Scammers often send mass messages using the name of a specific financial institution or entity in the hopes that people who bank there will fall for the scam. Your security is our top priority and we're committed to protecting your money and your accounts. No communication will ever be sent to you from SMCU that requires you to provide personal, card, or account-relation information without being in a secure environment or first verifying your identity.

You can learn more about current fraud trends and how to protect your information at www.consumer.ftc.gov/scam-alerts.

 

Concerned About a Data Breach?

Your account security is top priority for San Mateo Credit Union (SMCU). For this reason, we inform our members as soon as possible of a possible data compromise to their debit card or credit card. Typically a data security breach to your card can occur from use at a retailer, restaurant or local merchant where you may have recently visited.

Often times the data compromise or card breach puts your card number or data at risk and we typically take the following course of action:

  • Notify you about next steps
  • Limit or lower the number of card authorizations
  • Close or block the compromised card
  • Reissue a credit or debit card

Typically, if a new card is ordered, you can expect to receive the card in about 5-7 business days from the date of notification. Plus, members have the ability to visit one of our branch locations to immediately replace a card. Click here for a list of branch locations and hours.

If you would like to take additional following steps to protect yourself from misuse of your personal and credit information; you could:

  • Set a fraud alert in your credit file. This alert lets creditors know that you want to be contacted before new accounts are opened. The alert and report are available free of charge by contacting the credit agencies listed below:
Equifax P.O. Box 105069 Atlanta, GA 30374 1-800-525-6285 www.equifax.com
TransUnion Fraud Victim Assistance Division P.O. Box 6790, Fullerton, CA 92834 1-800-680-7289 www.transunion.com
Experian P.O. Box 9532 Allen, TX 75013 1-888-397-3742 www.experian.com
  • Review the FTCís website for information regarding identity theft at ftc.gov/idtheft or call 1-877-ID-THEFT (877-438-4338). You may also write to the FTC at Federal Trade Commission Consumer Response Center at 600 Pennsylvania Avenue, NW Washington, DC 20580.

If you have any questions or would like to speak to a representative, please call our Contact Center at (650) 363-1725 Monday through Friday, 8:00 am-6:00 pm or Saturday, 9:00 am-3:00 pm.

Is my account safe from Heartbleed?

Headlines about the Heartbleed Bug

Give us the chance to tell you about our security and put your mind at ease. San Mateo Credit Unionís online presence is not vulnerable to this bug. Please be assured that we regularly review, scan and test our systems for security threats such as this and are active in early warning groups so we can respond quickly when necessary. But, viruses such as this remind us about being safe with passwords and internet security and remembering the following basics:

  • Donít re-use your password between sites.
  • Change your passwords regularly.
  • Be sure you trust a site before entering your personal information.
  • Run virus software on a regular basis.
  • Watch out for emails asking you to click a link. When in doubt, go to the website directly.

Be careful. Someone wants to be you.

Fraud and Identity Theft Awareness Tips

We've all heard of identity theft. It seems like someone else's problem until suddenly it's not. It can happen to anyone.
Identity theft is more than just a lost credit card. Criminals can weasel their way into all of your accounts. They can suddenly become you. This happens every 3.3 seconds of every day to someone.

We've got some suggestions that can help. We talked to the FBI and some of the shrewdest defenders and we've got a simple starter list of things you can do:

1. Go paperless. It's much more secure than having anything mailed to you.

2. Shred. Don't just dump your old bills into the recycling bin and feel good about it. Feel better when those documents with your name on it are shredded.

3. Simplify your wallet. If you have a wallet or purse filled with every credit card and ID card in your world, you are asking for trouble. One swipe when you're not looking and you have a nightmare for months or years. Please, just take with you what you need, like one credit card and your driver's license. Do you really need more than that?

4. Copy your entire wallet on a copier machine. Both sides. Then you have the 800 numbers at the ready if anything ever happens. You can instantly cancel everything.

5. Turn your firewall on. Make sure your computer is safe.

6. Never get cash from a free-standing ATM that says "ATM" at some gas station or convenience store. Those are identity theft centers. Use us, or the CO-OP Network.

7. Put a fraud alert at all three credit bureaus. They'll contact you if anything suspicious starts happening.

8. Never reply to an email asking for your information, especially those clever ones that tell you your Visa card is stolen or that Apple needs to update your iTunes password. Really? Think about it.

Finally, here's some outside resources that we found useful:

The Federal Trade Commission has quick and smart instructions:
http://www.consumer.ftc.gov/features/feature-0014-identity-theft

The Department of Justice. Many things here including a quick quiz to check yourself:
http://www.justice.gov/criminal/fraud/websites/idquiz.html

Distributed Denial of Service: Explained

What is a DDoS?

Essentially, a DDoS or Distributed Denial of Service is a method of flooding an Internet connection with messages so the website is unavailable for normal business.

While it may sound scary at first, the only real problem caused by a DDoS is a spike in Internet traffic that would prevent us from returning a web page to you in a timely manner. It would not affect the security of your SMCU accounts or personal information in any way.

We are sharing this information with you because we want you to remain aware and educated about the availability of the SMCU online systems at all times.

As always, we will do everything in our power to ensure uninterrupted service to our members.

Please call or email us if you have any concerns.

7