Digital Security
Digital security at Servus Credit Union is built on the principle that your money and personal information deserve the same protection a vault provides. The security architecture combines encryption, multi-factor authentication, real-time fraud monitoring, and member education into a single coordinated system. Each layer reinforces the others, creating a defense that protects against both external attacks and human error.
Cyber threats evolve daily. What worked five years ago — a simple password and a session timeout — is no longer sufficient. Servus Credit Union invests continuously in security infrastructure, including hardware security modules for encryption key storage, behavioral analytics that learn each member\'s normal transaction patterns, and partnerships with industry threat intelligence networks. The security team conducts regular penetration tests and phishing simulations to identify weaknesses before attackers can find them.
Members are partners in this security model. Every security feature includes clear documentation, setup wizards within online banking, and a support team trained to answer security questions without judgment. Security should not be intimidating — it should be a set of straightforward habits that protect what matters.
Breaking It Down
Encryption is the foundation. Every connection between a member\'s device and Servus Credit Union\'s servers is protected by TLS 1.2 or higher. Data stored on the credit union\'s systems is encrypted at rest using AES-256, the same standard used by government agencies and major financial institutions. Encryption keys are stored in dedicated hardware security modules that are physically and logically isolated from the rest of the network. Even in the unlikely event of a data breach, encrypted information remains unreadable without the keys.
Multi-factor authentication adds a second layer of verification beyond the password. When MFA is enabled, logging in from an unrecognized device requires a one-time code sent via SMS, email, or an authenticator app. The code expires after five minutes and can only be used once. Members who travel frequently should enable MFA for all logins through the security settings panel. The extra five seconds per login is the single most effective action a member can take to prevent account takeover.
Security Layers
| Layer | Technology | What It Protects |
|---|---|---|
| Encryption | AES-256, TLS 1.2+ | Data in transit and at rest |
| Multi-Factor Auth | SMS, email, authenticator app one-time codes | Account login credentials |
| Fraud Monitoring | Real-time behavioral analytics and pattern detection | Transaction activity |
| Session Management | Auto-logout after 15 minutes idle, concurrent session limits | Active online sessions |
| Device Recognition | Cookie-based and browser fingerprinting | Login from new devices |
| Card Monitoring | 24/7 transaction analysis with geographic and velocity checks | Debit and credit cards |
| Alert System | Real-time push, SMS, and email notifications | Member awareness |
| Penetration Testing | Quarterly external and internal security assessments | Infrastructure vulnerabilities |
Fraud Monitoring and Incident Response
The fraud detection system at Servus Credit Union runs continuously. It analyzes every transaction against a profile of the member\'s normal behavior — typical transaction amounts, frequent merchant categories, usual geographic locations, and common transaction times. When a transaction falls outside the expected pattern, the system flags it for review. Minor deviations may trigger a text message asking the member to confirm the transaction. Major deviations — like a five-thousand-dollar withdrawal in a city the member has never visited — automatically block the transaction and lock the card.
When a member reports fraud, the response process is designed for speed. The first call to (970) 482-3100 reaches a trained representative who can freeze accounts, block cards, and begin the investigation while the member is still on the phone. Provisional credit for confirmed unauthorized transactions is typically issued within one business day. The investigation team works with law enforcement and merchant acquirers to trace the fraudulent activity and prevent recurrence.
Safe Banking Practices for Members
Strong passwords remain a critical defense. Each online banking password should be unique — never reused from another website — and should include a mix of uppercase letters, lowercase letters, numbers, and special characters. Password managers are recommended because they generate and store complex passwords without requiring the member to memorize them. Servus Credit Union supports password manager integration with the online banking platform.
Phishing awareness deserves ongoing attention. Fraudulent emails and text messages pretending to be from Servus Credit Union sometimes circulate. These messages often create urgency and include a link to a fake login page. The credit union will never send links that direct members to log in. Any message requesting account credentials, one-time codes, or personal information should be reported immediately. Forward suspicious emails to the security team. For more tips, visit the Safety page.
"The alerts system caught a suspicious charge before any damage was done. I got a text within thirty seconds of the transaction. By the time I called the credit union, they had already locked the card and opened a fraud case." Frank Delgado, HVAC Business Owner, San Antonio TX — Member since 2019
Frequently Asked Questions About Digital Security
- What encryption does Servus Credit Union use for online banking?
- Servus Credit Union uses 256-bit AES encryption for all data in transit and at rest. The online banking platform enforces TLS 1.2 or higher for every connection, and all mobile app communications are encrypted end-to-end with certificate pinning.
- How does Servus Credit Union multi-factor authentication work?
- MFA requires a one-time code sent to your registered phone or email in addition to your password when logging in from an unrecognized device. Enable MFA for every login through the security settings. The code expires after five minutes.
- What should I do if I suspect fraud on my account?
- Contact Servus Credit Union immediately at (970) 482-3100 or through secure messaging in online banking. The credit union will lock your account, review recent transactions, and issue provisional credit within one business day.
- Does Servus Credit Union monitor accounts for suspicious activity?
- Yes. The fraud detection system runs 24 hours a day, 365 days a year and analyzes transaction patterns in real time. Unusual activity triggers an automatic review and potential card freeze.
- How can I protect my online banking account from phishing?
- Always access online banking by typing the URL directly or using the official mobile app. Servus Credit Union will never ask for your full password or Social Security number by email or text. Report suspicious messages immediately.
Device and Session Security
Every device that accesses Servus Credit Union online banking is recognized and logged. The system tracks browser type, operating system, IP address, and approximate location. When a login attempt comes from an unrecognized combination of these factors, the system triggers an additional verification step even before the password is validated. This prevents automated credential-stuffing attacks that try thousands of username and password combinations from random devices.
Sessions are managed aggressively. After fifteen minutes of inactivity, the online banking session expires and the member must log in again. The mobile app has a shorter timeout of five minutes because phones are more likely to be left unlocked or set down in public places. Members can view all active sessions from the security settings page and force-logout any session that does not look familiar. Concurrent session limits prevent the same account from being logged in from multiple locations at once.
Stay Protected with Digital Security
Your security matters. Enable multi-factor authentication, review your alerts, and learn more about how Servus Credit Union protects your accounts every day.
Learn About Safety