Security Alerts

ROBO Phone Call and Text Message Scam

METRO has received a number of reports that members are receiving 'robot' or automated calls with messages purported to be from US Bank or USAA Bank regarding a blocked debit card. The message prompts responders to press 1 for more information. THIS IS A FRAUDULENT ATTEMPT TO OBTAIN DEBIT CARD NUMBERS.

The reported calls originate from the following numbers:
736-386-99XX (Last two digits are masked)

In addition to phone calls, members may also receive text messages from 61937211@rr.com with the following message:
USAASavings-ImportantNotification. Call 804-242-0875.

If you received such a call or text, please do not supply any requested information. This call did not originate with METRO or USAA Bank.

Phishing Scam Using Support@Digitalinsight.com

Your security is important to us. We want to alert you to a potential phishing campaign that may impact users of our online banking.

What is happening? Emails are being sent to random internet users who may or may not be Digital Insight customers using the spoofed address support@digitalinsight.com. These emails are not legitimate communications from Digital Insight. Attached to the message is a zip file containing a malicious executable file that looks like a PDF document that infects the user's computer with malware.

Sample fraudulent email
Incoming Transactions Report
An incoming money transfer has been received by your financial institution and the funds deposited to account.
Initiated By: Fiserv Inc.
Initiated Date & Time: Fri, 15 Aug 2014 23:00:11 +0700
Batch ID: 976
Please view the attached file to review the transaction details.

How can my end users protect themselves against this and other phishing attacks? METRO recommends end users employ security best practices to proactively mitigate phishing and malware threats like this. These best practices include:
  • Install an antivirus app on both your personal computer and your mobile device and keep it updated.
  • Do not click on attachments in suspicious emails.
  • Perform regular backups of data.
  • Don't view or share personal information over a public wi-fi network.

These are the alerts METRO is currently aware of and important to communicate to the membership. We're committed to protecting you and your account information from unauthorized users. If you received an email similar to the ones described below, please notify METRO with a copy of the email to memberservices@sdmcu.org and delete the original immediately.


(April 23, 2014) - METRO cardholders may be receiving automated calls from 317-807-6443 or text messages from 444111 claiming that their cards were suspended and to press 1 to reactivate. Cardholders are also asked to provide card numbers. PLEASE DO NOT RESPOND OR PROVIDED ANY REQUESTED INFORMATION. These calls or text messages did not originate with San Diego Metropolitan Credit Union. 

METRO Information re: the Heartbleed OpenSSL Vulnerability (CVE-2014-0160)

Security researchers recently announced a discovery of a new vulnerability named Heartbleed. This vulnerability affects secured websites that use OpenSSL as an encryption method and can allow attackers to gain access to servers in order to obtain user passwords, logins and other related information.

The security and protection of your personal information is our top priority. METRO has taken steps to evaluate all member systems and is working with affiliated partners to identify any systems that may be impacted.


Online Banking & Credit Cards:

To date, online banking and credit card data are NOT affected by this vulnerability. The online banking platform and card data servers use a different type of encryption not associated with the source of the vulnerability. In addition, all online banking servers have been validated and do not use the Heartbleed extension.

This security vulnerability is a global problem that affects every internet company. It is not exclusive to METRO. We will continue to work with all other affiliated partners to determine their processes for assessing this threat, what systems are affected, and what steps they have taken to resolve the threat.

Windows XP:

Another unrelated security issue is the recent announcement made by Microsoft to stop support for Windows XP. For the past year METRO has been aware of this impending action from Microsoft and we have taken steps to update any systems with Windows XP installed, including ATMs.

Online Checking Tool

Are the sites you visit vulnerable to the Heartbleed OpenSSL Bug? Use the online tool below.

LastPass Heartbleed Checker

METRO will provide updates to the Heartbleed Vulnerability issue as needed. Please check back on this page for updates.


Additional information on the Heartbleed Bug is available by visiting www.heartbleed.com. CVE 2014-0160 is the official reference to this bug. CVE (Common Vulnerabilities and Exposures) is the Standard for Information Security Vulnerability Names maintained by MITRE.


CO-OP Financial Services Warns About Phishing Attempts

We received notification from CO-OP Financial Services about recent phishing scams and deceitful attempts to obtain cardholder information with the intent of committing fraudulent activity against member accounts.

This fraudulent attempt to capture cardholder information is done with an email from possible various credit union email addresses. One recent email reported is efunds@securesuite.net, however there could be various emails used.

The message indicates confirmation of the member's activation to the MasterCard SecureCode Service, instructing the member to personalize their MasterCard SecureCode account as soon as they can. A link has been provided to have the member log into their account. MasterCard has confirmed that this is not an email address used by MasterCard.

Sample of Fraudulent Email

There are so many ways for perpetrators to attempt to get personal information, including the use of phishing emails, auto-dialers and text messages. Please contact METRO immediately if you received this fraudulent email (above) at 619-297-4835 during regular business hours.

NCUA Warns About Telephone Fraud

Consumers Targeted by Vishing Scam Should Call Agency's Hotline

ALEXANDRIA, Va. (Jan. 21, 2014) - The National Credit Union Administration today warned consumers to beware of a new telephone fraud, known as a "vishing" scheme, that is using the agency's name in an attempt to obtain personal financial information.

Several credit union members have been contacted by an automated phone call claiming to be from NCUA and notifying consumers their debit cards have been compromised. The call then asks the receiver to follow prompts, which request personal information, including sensitive financial data and personal identification information.

Anyone contacted by this so-called "vishing" scheme should immediately contact NCUA's Consumer Assistance Center Hotline at 800-755-1030 or by email at phishing@ncua.gov to report the scam. Operators answer calls Monday through Friday between 8 a.m. and 5 p.m. Eastern.

NCUA neither seeks personal information from consumers over the telephone nor handles day-to-day maintenance of member account information. NCUA works with law enforcement agencies, including the FBI, to protect consumers from frauds of this nature.

NCUA urges consumers to never verify or release personal financial information to unknown callers.