Online banking is one of the most convenient ways to manage your money. It is also one of the most targeted areas for cybercriminals. At People Driven Credit Union, we take account security seriously on our end. But your habits matter too. These six practices can help reduce your risk of account takeover, fraud, and unauthorized access.
1. Use Strong, Unique Passwords
Your password is the first thing standing between a hacker and your online accounts. Weak passwords can be cracked quickly using automated tools. Strong passwords are much harder to break. The difference often comes down to a few minutes of effort.
What makes a password strong: Use a mix of uppercase and lowercase letters, numbers, and special characters like @, #, or !. Avoid anything obvious like your name, birthday, or the word “password.” Do not reuse the same password across multiple sites. If one account is breached, reused passwords can give attackers access to your other accounts.
A better approach: Use a passphrase, which is a string of random words or a memorable sentence like “Sunshine!4CloudyDays.” It is long, complex, and easier to remember than a random string of characters. A password manager can also help you store passwords securely, so you only need to remember one master password. For more guidance, read How to Create Strong Passwords You Can Remember.
2. Enable Two-Factor Authentication
Two-factor authentication, or 2FA, requires a second form of verification when you log in. After entering your password, you may receive a unique code by text or email that you must also enter before gaining access. This means that even if someone steals your password, they still cannot get into your account without access to the second verification method.
Enable 2FA on your PDCU online banking account and on every other account that offers it. It is one of the most effective steps you can take to help protect yourself from account takeover.
One important reminder: PDCU will never call, text, or email you asking you to read back a one-time passcode. If someone asks for your code, that is a scammer trying to get past your 2FA protection. Hang up and call us directly at 844-700-7328.
3. Avoid Public Wi-Fi for Financial Transactions
Public Wi-Fi networks at airports, cafes, hotels, and other shared spaces are often unsecured. Cybercriminals may try to position themselves between your device and the network, which can allow them to intercept data you send and receive. This is called a man-in-the-middle attack, and it is one way attackers may try to steal login credentials.
The simple rule: Do not access your bank account on public Wi-Fi. Use your phone’s mobile data instead. It is a private connection that is harder to intercept. If you must use public Wi-Fi, consider using a Virtual Private Network, or VPN, to encrypt your connection.
4. Monitor Your Accounts Regularly
The sooner you spot suspicious activity, the sooner you can act. Make it a habit to log in and review your transactions at least once a week. Look for charges you do not recognize, even small ones. Fraudsters sometimes test a stolen card with a small transaction before attempting a larger one.
PDCU offers real-time account alerts that can notify you of important account activity, including certain withdrawals, logins, and changes to your personal information. Setting up alerts can help you spot suspicious activity sooner.
5. Always Log Out After Each Session
When you finish banking online, log out completely. Do not just close the browser tab. Closing a tab without logging out may leave your session active, which could allow someone else using the same device to access your account. This is especially important on shared or public devices, but it is also a smart habit on personal devices.
6. Keep Your Software and Apps Up to Date
Software updates are not just about new features. Many updates include security patches that fix vulnerabilities cybercriminals may try to exploit. An outdated operating system, browser, or app can create unnecessary risk. Keep your phone’s operating system, internet browser, and the MyPDCU app updated.
One critical note: always update the MyPDCU app directly through the Apple App Store or Google Play. Never install an update from a link sent by text, email, or chat. Fake update links are one way scammers try to install malware on mobile devices.
What to Do If You Suspect Fraud
If you notice something suspicious on your account, act quickly. Do not wait to see if it resolves itself. Call PDCU Member Services at 248-263-4100 during business hours, or call 888-241-2510 any time to report a lost or stolen debit card. Reporting quickly may help limit your liability under federal Regulation E protections.
For more security tips, visit our Fraud Alerts page. You can also log in to your PDCU online banking account to set up real-time account alerts.
Take Two Simple Steps to Help Protect Your Accounts
Good password habits are a smart start. You can add another layer of protection by staying informed about scams and turning on account alerts in online banking.
