Best Practices and Fraud Prevention

JHFCU takes your card security seriously. There may be fraudsters who attempt to call you and state they are from the Credit Union’s fraud department.  While JHFCU uses an automated service to contact members in cases of fraud, please note we will NEVER ask for a member’s Social Security Number, your card PIN OR the card CV2.  Please protect your information and if someone asks for that information, do not provide it.   While we can’t control what happens at merchants and retailers, we want you to know that Johns Hopkins Federal Credit Union will do everything we can to assist you and your family if a breach or fraud does occur when you use your debit or credit card.

If you suspect fraud on your account, receive suspicious calls or emails, or if you have an issue with card, please contact us

The fraud department communicates through text, phone call, and email. 

TEXT - This is the first method of communication they will use.

  • A text alert from the JHFCU fraud department will always be from a 5-digit number (37268), NOT a 10-digit phone number.
  • A valid notification will provide information about the suspect transaction, and ask you to reply to the text message with answers such as ‘yes’, ‘no’, ‘help’, or ‘stop.’ It will never include a link.
  • If you received a text message from our fraud department and are unsure about responding to it, please call us directly.

PHONE CALL - If they are unable to send a text, they will call. 

  • A phone call with the fraud department will only include a request for your ZIP code and no other personal information, unless you confirm that a transaction is fraudulent. Only then will you be transferred to an agent who will ask you to confirm your identity before proceeding.
  • You will NEVER be asked for your PIN or 3-digit security code on the back of your card.
  • The fraud department can contact you 7 days a week, including holidays. They do not use the credit union phone numbers (410-534-4500 or 1-800-543-2870) to contact you.

Check all of your accounts regularly to review and confirm transactions and report suspicious activity immediately.

Current Scams


Debit and Credit Card Security Best Practices:

  • A text alert from us will always be from a 5-digit number and NOT a 10-digit number resembling a
  • If you have received a voice or a text message from us and are unsure about responding to it, call us at 410-534-4500 for assistance.
  • Using a Mobile Wallet option (Apple Pay, Google Pay, Samsung Pay) can prevent secure information from being included in a potential data breach at a retailer. Mobile wallets store your card information and convert card data to an encrypted token to pay the retailer so they never have access to your actual card data.
  • Regularly check your account online to see if there are any suspicious transactions. If anything looks amiss, call us directly for assistance.
  • We will NEVER ask you for your PIN or 3-digit security code on the back of your card. If someone who claims to represent JHFCU asks for this information hang up and call us directly.


Card Skimmers—What You Should Know


Card skimmers are devices attached to card readers that scan and steal credit or debit card information. Card skimmers can be attached anywhere you use your card, like the gas pump, the grocery store, and the ATM to name just a few.  They're often small, or look nearly identical to legitimate card readers, which can make them hard to identify. Once your card has been "skimmed," scammers can create duplicate cards that charge your account, or sell your card information.


Protect yourself and your account by knowing what to look out for, and a couple of strategies to avoid skimmers altogether:


Check the card reader: Before you insert or swipe your card, take a moment to check the card reader. Does it feel loose? Does it look broken, or just "off" somehow? If so, do not move forward with the transaction, and alert the business immediately. It's better to be safe than sorry!


Use an alternate payment method: It's always safer to use your mobile wallet (Apple Pay, Google Pay, Samsung Pay), even if you're paying somewhere that doesn't have a skimmer. Your payment information isn't collected by the business when you pay with your mobile wallet, so you're protected in the event of a data breach. You can also consider paying in-app when possible, or using cash.


Check your transactions daily: As we know, skimmers can be hard to spot, and even if you're careful it's still possible your card information could be stolen. By keeping a close eye on your accounts, you can identify fraudulent transactions and alert your financial institution before too much damage is done.



For more information, please visit