Archive Links

Consumer Archive
CU System Archive
Market Archive
Products Archive
Washington Archive

News Now

Washington
CompBlog provides many CU tips on prepping data breach response
WASHINGTON (2/12/14)--Is your credit union preparing for the increasing threat posed by data breaches? In the event of a breach, notifying members is always a good first step, the Credit Union National Association's CompBlog noted in the latest CompBlog Wrap-Up.

Part 748 of National Credit Union Administration regulations only require credit unions to notify regulators and affected members after a breach involving member information systems maintained by a credit union or its contracted service providers. So, a merchant breach would not trigger a Part 748 member notification, CUNA explained.

"Nevertheless, notifying affected members is still a good idea, both to protect the member and the credit union from fraudulent card usage," CUNA said.

Many credit unions have alerted their members through mail and e-mail following the Target data breach, posted information on their websites and educated members on the steps they can take to protect themselves. CUNA emphasized that these efforts are still ongoing.

There are 46 states that have their own data breach notification laws, and state leagues will have information on any specific actions that are required by state law, the blog post added. (For a state law list compiled by the National Conference of State Legislatures, use the resource link.)

CUNA Mutual Group has also released a series of tips to help credit unions mitigate the risks posed by data breaches. Tips include:
  • Educating cardholders regarding phishing fraud (i.e., not responding to phone calls or e-mail/text messages requesting ac-count information), reporting fraudulent transactions to the credit union and placing fraud alerts on credit reports;
  • Reviewing the card associations alerts daily and taking action when necessary;
  • Evaluating compromised card numbers to determine if there will be increased fraud exposure;
  • Blocking and reissuing affected cards, or accelerating card expiration dates on active cards;
  • Making sure that all fraud associated with an event has been reported to the card associations and to the credit union's insurance company; and
  • Working with a fraud monitoring system vendor to create rules and strategies to help prevent future fraud on the com-promised card accounts.
For more compliance gems, use the resource link.
RSS print
News Now LiveWire
NCUA confirmed earlier indications that there would be no National Credit Union Share Insurance Fund premium for 2014.
11 hours ago
.@NJCUL supported prized-linked savings legislation introduced in New Jersey state Senate.
12 hours ago
#creditunions emphasize co-op principles during National Co-op Month #NewsNow http://t.co/zEb9UFot1N
18 hours ago
Servicemember's spouse drives away with Bank on More's SUV thanks to #missouri #creditunions http://t.co/WvTrKxh0sV
19 hours ago
From @FHFA this a.m.: U.S. house prices up 0.5% in Aug. on seasonally adjusted basis from previous month. More here: http://t.co/1yVDOPggeX
20 hours ago