Enjoying Capital Lake Park, downtown Olympia.

Fraud Alerts - As of May 20, 2019

Fraud Alerts At OlyFed we work hard to protect you and your accounts from identity theft and fraud. There are safeguards in place to protect your accounts and it is important that you continue to keep your personal information private. One of the first lines of defense is you and by working together we can reduce the impact of fraud. If you ever have a security concern, please contact our Customer Service (360) 754-3400 or 1-800-865-3470 toll-free Monday - Friday 8:30 AM to 5:30 PM.

Social Security Imposters - 5.20.2019

There have been reports of an increase in Social Security scams in our area as imposters pose as government authorities to gain funds. The following article can help you identify imposters: FTC Growing Wave of Social Security Imposters. 

• Do not trust Caller ID. Scam calls may show up on caller ID as the Social Security Administration and look like the agency’s real number.
• Don’t give the caller your Social Security number or other personal information.
• Check with the real Social Security Administration. The SSA will not contact you out of the blue. But you can call them directly at 1-800-772-1213.
• Talk about it. People recognize the IRS scam, but many are getting caught off guard by these new imposters.

Report government imposter scams to the FTC or, if you feel you need steps to protect your credit and your identity, report your concerns.

Equifax Breach Exposes Personal Information - 10.01.2017

The Equifax data breach exposed personal information for approximately 143 million U.S. consumers. A security breach this large has the potential to include many OlyFed customers and we're here to help any way we can. Below are some steps you can take to actively protect yourself.

Steps to Consider:
• Keep up on the latest breach-related news from Equifax
• Sign up for a credit monitoring service.
• Consider applying a credit freeze with all three reporting agencies.

Good Practices:
• Review your credit report annually. 
• Monitor your accounts.
• Change passwords regularly and never share your personal information.

Tools & Resources:
• Utilize OlyFed’s CardValet, a free card management and fraud mitigation tool for our debit cardholders.
         Control: Turn your debit cards on or off if they go missing.
         Peace of Mind: Using your phone's GPS, set location preferences so your card only works where you are.
         Visibility: See your past transaction details.
         Information: Receive transaction alerts and get real-time balances.

Automated Phone Call Scam - 8.11.2014

OlyFed customers have been receiving automated phone calls informing them that their accounts have been flagged and that they must enter their card information to re-activate.
Please be aware that these calls are not from Olympia Federal, nor would we ask our customers to enter their information, as we have that information at our disposal.
If you have accidentally disclosed personal information about your account, please contact Customer Service at the phone numbers listed above ...

Target Data Breach - 2.14.2014

Sadly, the reality of the world we live in now includes scams and fraud, but the good news is you can always rely on OlyFed to take care of you in these situations. If your card becomes compromised and is at risk, it is our policy to personally take care of you–calling and offering options to keep you safe. In light of the recent Target security breach, OlyFed would like to thank our customers for your patience as we continue to be proactive with issuing new debit cards for those affected.

Heartbleed Bug - 5.01.2014

We have thoroughly reviewed our systems and can assure our customers that neither our website, nor your personal information or accounts have been compromised by the Heartbleed Bug. Here are a few measures you can take to protect your computer and personal information, and updates the status of the top 100 sites across the internet.

• Heartbleed: Change passwords after site has been patched
• General: Change passwords often, never reuse old passwords
• Store passwords safely, and keep them private
• Install a firewall
• Don't neglect system critical security updates
• Install Anti-virus software

Callback Scheme - 2.13.2014

Telephone companies in the United States are seeing missed calls used to enable International Revenue Share Fraud (IRSF). Fraudsters are using call generators with automated spoofing capabilities to place calls to a large volume of US cell phone numbers. The calls typically ring once. The number displayed on the recipient’s caller ID is a high-cost international number, usually located in the Caribbean. The recipient calls the number back and is greeted with a message designed to keep them on the line, such as “Hello, you have reached the operator, please hold.” The longer the caller stays on the line, the more revenue fraudsters generate.

Recipients do not realize they are calling an international number and that they will be billed for an international call. Businesses are also victims because recipients often use their work telephone to make the return call.

Telephone companies in the United States are charged when a return call is made because they are required to pay a fee to transfer calls to foreign countries. The payment is then shared with the fraudster who spoofed the calls. This is referred to as IRSF.

Area codes used in the spoofed numbers are from Anguilla, Antigua, Barbados, British Virgin Islands, the Commonwealth of Dominica, Grenada, Montserrat, and the Turks and Caicos Islands. These countries’ numbers are part of the North American Numbering Plan and do not require 011 to be dialed as with other international calls.

Recipients should not answer calls from numbers they do not recognize or initiate a return call. Recipients will not be charged for receiving the calls, however.

Companies that do not conduct business with companies in the above-mentioned countries may want to consider blocking these area codes to avoid this type of charge.

Fraudulent E-mail claims to be from FDIC - January 30, 2013

The Federal Deposit Insurance Corporation (FDIC) has received numerous reports of fraudulent e-mails that have the appearance of being sent from the FDIC. While the e-mails exhibit variations in the "From" and "Subject" lines, the messages are similar. The fraudulent e-mails are addressed to the attention of the "Accounting Department" and meant to notify recipients that that that "ACH and WIRE transactions" are being blocked until "a special security software" is installed. They then instruct recipients to go to a Web site for instructions on how to download the necessary files by clicking on a hyperlink provided (Note: the Web site addresses (URL) vary widely).

This e-mail and link are fraudulent. Recipients should consider the intent of this e-mail as an attempt to collect personal or confidential information or to load malicious software onto end users' computers. Recipients should not click on the link provided. The FDIC does not issue unsolicited e-mails to consumers or business account holders.