Routing Number: 263178070

 Safety & Security

Tax refund scam alert

If you receive a strange phone call notifying you that your tax refund was deposited to your account 'in error,' you should be on alert.

Keeping Safe & Secure at All Times

As the IRS prepares to issue stimulus payments to qualified U.S. households, EFCU wants to ensure you remain vigilant and financially protected against external threats during the process. We have put together some general reminders and precautions for you to observe that will safeguard you against potential scams. Additionally, it is recommended to regularly check for current information on scams that are being used.

Quick tips for online security

Consider these suggestions whenever accessing your sensitive data online:

  • Consider disabling Bluetooth connectivity on your device unless you find it necessary.
  • Consider disabling Global Positioning System (GPS) and other location services unless you need them.
  • Avoid logging in from public computers and over open Wi-Fi connections.
  • Check your last login date every time you log into your EFCU account online.

Safety tips for members

Socially engineered schemes often rely on methods that financial institutions would never employ, to avoid fraud:

  • Never give out personal or financial information in response to an unsolicited phone call, fax, e-mail or text.
  • Contact the financial institution to confirm the legitimacy of any e-mail that asks for the submission of personal or account information.
  • Check credit card and account statements regularly for unauthorized transactions, even small ones.
  • Make sure websites are safe when submitting financial information online. Check for padlocks or key icons at the bottoms of Internet browsers. Most secure Web addresses also use "https" as opposed to "http."
  • Report suspicious activity to the Internet Crime Complaint Center, a partnership between the Federal Bureau of Investigation and the National White Collar Crime Center.
  • Contact your financial institution immediately if a phishy link may have been clicked or a suspicious communication responded to.

Report an Internet crime to the FBI Internet Crime Complaint Center

Use anti-virus software, and keep it updated.

Getting infected with a computer virus or Trojan can be frustrating. These programs are known to destroy your computer, slow its performance, and barrage you with annoying pop-up ads. However, the types of viruses and Trojans that infect computers today are more malicious. They are designed to steal your credit card information and passwords, take over your email and use it for spamming, or even record what you type on your computer. Also, many of the new viruses and Trojans aim to be transparent so most people don't even know they have been infected.

Using anti-virus software and keeping it up-to-date is the best protection against these threats. Nowadays, most anti-virus software products will automatically update themselves as new threats are uncovered so you don't have to do a thing. Many Internet service providers now even offer these products free to their customers.

Use a personal firewall, and keep it updated.

Hackers constantly create new ways to penetrate your computer. Installing a personal firewall is essential to safeguard your computer and valuable personal information. A firewall is a secure barrier that sits between your computer and the Internet that prevents hackers from accessing your information.

A firewall needs to be installed properly or it will not effectively protect you from online threats. In addition, like anti-virus software, your firewall should be kept up-to-date. This is easy to do with software that automatically updates the latest versions onto your computer.

Create strong passwords.

Do you think your password is impossible to guess? The reality is that many people use simple passwords that are easy to remember but make it easy for hackers to gain access to your financial and personal accounts. Making your password more complex will keep you safer online (though much more can still be done).

You should also have more than one password that you use. Just as you wouldn't use the same key for your house, your car, your mailbox and your office, you shouldn't use the same password for all of your online accounts. This exposes you to more risk and increases the likelihood of having your information stolen.

Online scams

Be aware of deceptive emails, pop-ups, and other online scams.
Online criminals will attempt to acquire your personal information by luring you to a website that looks legitimate, but is actually a fake site. If you receive any emails from an unfamiliar source, or any suspicious pop-ups, do not click on the links or open the attachment.

New online attacks are so advanced that they are capable of redirecting you to a fake website, even if you didn't click on anything. If a web page asks for you to provide sensitive information that it has never asked you to provide before, do not type anything and close the page immediately. Financial institutions and online service providers do not ask you to enter information such as your credit card number, full Social Security number, or PIN number on the login page or any subsequent pages.

Fraud is always on the move.

As consumers become more educated about fraud and identity theft, online criminals are moving to other places to launch their scams. Phone scams are gaining popularity again. There are two common types of phone scams. The first type of scam involves an email detailing a problem with your account and requests you to call a specific phone number to provide more details. The second type of scam involves a phone call from an automated call center asking you for sensitive information. You should never provide personal information to an unsolicited caller.

Mobile phones are another new target. For example, one scam involves sending a text message to your mobile phone claiming to be your financial institution or a credit card processor. If you receive such a text message and are unsure if it is a legitimate communication, call your financial institution's customer service center to verify that the message is genuine.

Check the security lock.

Sometimes, just the presence of a security lock alone is not proof enough that a website is genuine. If in doubt, you can verify a website is genuine by double clicking on the lock to display the website's security certificate, and then check if the name on the certificate and the website that appears in the address bar match. If they do not match, then the website might be phony.

Guard your privacy.

Guard your privacy and limit the amount of personal information you share online.

The growth of social networking sites has made it easier for online criminals to obtain information on you. This is a way for them to gather information to answer the challenge questions most online service providers require in order to enable access to your account or retrieve and change your password. Limit the amount of personal information you publicly share online.

Check your online statements frequently.

Despite adopting all the appropriate security measures, online users still manage to fall victim to scams and have their identity stolen. In order to help ensure that you and your information stay safe, check your online account statements frequently. If you have fallen victim to online fraud, the sooner you know about it, the sooner you can act to block your accounts, and take corrective action. If you detect suspicious activity in your account, you should immediately contact your account provider for help.

Debit & ATM card security

To protect your account, we monitor your ATM and debit card transactions for potentially fraudulent activity which may include a sudden change in locale (such as when a U.S. issued card is used unexpectedly overseas), a sudden string of costly purchases, or any pattern associated with new fraud trends around the world.

So that we may notify you as quickly as possible, it is important that EFCU has your cell phone number and accurate email address. Call 850.862.0111 x1402 or update your Contact Information electronically when logged into your accoutn via a browser or the EFCU Mobile App. Please be diligent in monitoring transaction activity on your account and contact us immediately if you identify any fraudulent transactions.

Security at ATMs

Maximize your safety at ATMs with these tips:

  • Keep your ATM/Debit card in a safe place. Memorize your personal identification number (PIN) - never write it on your card!
  • Use ATMs that are well lit, are located in high traffic areas, and have mirrors so you can see who is approaching you from behind. At night, it is a good idea to have someone else with you.
  • At walk-up ATMs, don't leave the keys in your car.
  • At drive-up ATMs, keep your car locked.
  • Use your body to shield the keyboard from view when entering your PIN. When you get money, don't count it in public view.
  • Remember to take your card and receipt. Keep receipts until you have balanced your monthly statement.
  • If you see something suspicious at an ATM, leave immediately and contact the police.
  • Never enter your PIN in any ATM that does not look genuine, has been modified, has a suspicious device attached, or is operating in a suspicious manner.
  • Be Alert to potential scams -We will never call or email you to verify your Eglin Federal Credit Union account information, such as your password and/or PIN number.

EFCU Mobile App security FAQs

Is the mobile app secure?
The mobile app uses SSL encryption to communicate securely throughout the entire process of accessing your accounts.

How long does each login session last?
Each login session lasts 20 minutes from the beginning of the session. The timer is not reset with activity.

How can I further protect my account information?
Protect your account information by taking additional steps: - Use the screen locking feature of your mobile device. - Never save your account number on your mobile device. - Always use the Logout feature of the mobile app. - Request a password change if your device is lost or stolen. - Read "Make Your Smartphone Safe" on this page to learn more about securing your mobile device.

Make your smartphone safe

As technology evolves, so unfortunately do the ways that criminals can illegally access your personal information. Smartphones give us a lot of freedom and make our lives more efficient, but they also present their own set of challenges when it comes to data security. However, there is no reason why you can't make yourself more secure with a few key habits.

Security courses

EFCU has partnered with Digital Defense Inc. to provide you Training, Education, and Awareness Module™ (TEAM) that is relevant and easy-to-understand. Using a web browser you can access the security training anytime and anywhere. Click the button below to browse topics for improving your online security.

Links to other sites are provided as a convenience to our visitors. The Credit Union is not responsible for the availability, content, or privacy practices of any linked site.

EFCU's Commitment to Security

We are committed to taking reasonable steps to protect the security of our member's financial information in all areas of our operations. Therefore, when providing access to your financial information over the Internet, we practice the following security measures:

  1. The Credit Union maintains a firewall system that protects our Web server from unauthorized access.
  2. We use EV-SSL (Extended Validation Secure Socket Layer) technology to encrypt all traffic (including account numbers, PINs, and financial data) that is sent between your computer and our online banking system. A new encryption key is generated every time you log into your EFCU account online. Please note that the information is not encrypted once it resides within your computer.
  3. We require a valid account number and PIN to access your account. After three bad attempts, the account is locked for your protection.
  4. A session-only cookie is transmitted to your computer when you successfully log in to your EFCU account online. The cookie contains a number that is unique to every session and every member. While you are logged in, it is used to verify your access to information. When you either logout, close your browser, or allow the inactivity timer (see below) to expire, this session-only cookie values becomes invalid. EFCU recommends that you log out and/or close your browser every time you are finished accessing your financial information online. We do not recommend leaving your computer unattended and allowing the inactivity timer to expire. In order to access your account online via a browser or the EFCU Mobile App you will need to enable session-only cookie support for
  5. An inactivity timer automatically breaks your connection after several minutes of inactivity. This prevents you from accidentally leaving active connections to your account after you have completed your transactions.
  6. The Credit Union uses a Multi-Factor Authentication system to further verify your identity when you access your account information online. Members are prompted to select and answer three secret questions to establish their identity. The questions will appear when there is a challenge situation, for example; you log in from an unfamiliar location.
Information submitted to EFCU via email is not encrypted and may not be secure. To send us a secure message, please use our secure email platform.

This statement updates and replaces any other notices about our Internet security.