Member Account Security
Your account security is important to us and we are always working to keep your money and information secure. Help us protect you by following cybersecurity best practices, enabling the security features available for your BECU accounts, and being aware of the ways BECU will and will not validate your identity.
Understanding Account Security Best Practices
- Use up-to-date software. Your computer's browser communicates with our systems and websites. Update it regularly to ensure you are connecting through the most secure available browser. See our system requirements.
- Protect your devices. Install antivirus and anti-malware software to protect your information from hackers and cyberattacks. When connecting to the internet, use trusted, password-protected networks and avoid using public Wi-Fi.
- Keep your apps and operating system updated. Keep the operating system (OS) on your mobile device updated and enable auto-updates on your BECU and other financial apps. Outdated devices and operating systems can be vulnerable to cybersecurity attacks.
- Add a unique personal code word. Safeguard your account with a code word. When you call BECU or visit a BECU location, we will ask for your code word as an additional way to confirm your identity. We will never call you and ask for this word. See instructions to set up an account code word.
- Choose security questions and answers. Add an extra layer of protection to your Online Banking account with security questions. Select three security questions and provide answers that are easy for you to remember, but that you alone know. Be aware that scammers can determine a lot from social media, especially if you frequently share personal information in posts, comments, polls, quizzes, etc., so choose your questions and answers carefully.
- Set up security questions: Log in to Online Banking, go to Profile, Profile Settings, Manage Security Options.
- Enable multi-factor authentication (MFA). Turn on mobile text verification to receive a one-time code to your mobile device if we ever need additional verification of your identity. When you receive the code, you will be prompted to enter it in to Online Banking or the mobile app. We will never call you and ask for this code.
- Enable MFA: Log in to Online Banking, go to Profile, Profile Settings, Manage Security Options.
- Set up transaction monitoring. Sign up for email and/or SMS transaction alerts for your deposit account(s). If you have a debit card and/or credit card with BECU, your account activity is automatically monitored for patterns or abnormalities that might indicate fraud. Regularly reviewing the transactions posting to your account is also recommended.
- Set up transaction monitoring: Log in to Online Banking, go to Profile, then Alert Settings to select which alerts you would like to enable on your account(s).
- Control your debit card. You can pause your debit card if you ever have concerns about a transaction or if you think your card is lost or stolen.
- Pause your card: In the mobile app go to Card Manager. In Online Banking go to Account Services, Manage Your Card.
Scammers might try to impersonate BECU employees and systems. Here are some ways to know if you are actually interacting with BECU – or with an impersonator trying to access your accounts.
- BECU employees will not ask for your Online Banking User ID or password.
- We will not ask for your account code word if we call you. We will not ask for your card number or CVV code if we call you to verify activity on your account.
- We will not include a link in a text message that directs to a login page. A fraudulent or “spoofed” text message typically includes a link that directs you to enter your Online Banking user ID and password.
- We will not request one-time security codes or Zelle® SMS validation codes if we call you.
- We may send a one-time security code and ask you to provide it for identity verification if you:
- Call BECU for any reason.
- Set up a wire transfer online.
- Log in to Online Banking or the mobile app.
This helps us protect your accounts and prevent unauthorized access.
If we suspect fraud on your credit or debit card:
- We may send you a text message, email or automated phone call. If we send a text message, you will be asked to reply YES or NO, or advised to call the BECU servicing number on the back of your card to verify card usage. We will not send a link.
- We will connect you to a live person if you identify unauthorized transactions. You will never be asked to reply YES to activity you did not authorize.
We're always working hard to protect you.
- Our websites are secured using digital certificates and industry-standard encryption and time-sensitive session cookies in order to obtain personal information for member transactions.
- We only support browsers that can provide industry-accepted encryption protocols. Your connection to our websites uses Transport Layer Security (TLS) to protect the contents of the message from eavesdropping and interception.
- All BECU mobile app releases undergo methodical and rigorous testing to ensure that member privacy and account security are protected.
- Our systems and employees conduct 24/7 fraud monitoring on accounts, credit and debit cards in an attempt to identify and respond to any unusual and unexpected activity.
Zelle® and the Zelle® related marks are wholly owned by Early Warning Services, LLC and are used herein under license.