Thursday, April 24, 2014
The Investors Foundation was established in 2005 to enrich the lives of New Jersey and New York citizens by supporting initiatives in the arts, education, youth development, affordable housing, and health and human services. To date, the Foundation has pledged more than $7 million in support of the communities the bank serves. Learn about some of the grant recipients the Foundation has supported. And envision how their reach will soon extend into the communities we call home.
Our Current Rates:
For a listing of our current deposit and loan rates, click here.
Investors Bank Welcomes GCF Customers
GCF Bank Customers Will Soon be Welcomed into the Investors Bank Family!
As a loyal GCF customer, you've come to expect excellent customer service from your bank - and you can count on the same great banking experience with Investors. But as a new Investors Bank customer, you'll also have access to many additional products, services and branches to make your banking even easier and more convenient.
Click here to find a branch location.
And watch your mail for more information on how your banking will soon get even better!
Does Your Heartbleed?
The Internet has been compromised. Not just a particular website or an individual PC. Not a new form of malware circulating the black market. This is serious stuff. On a scale of one-to-ten, security experts rate this bug an 11.
Turns out the security protocol used by approximately two-thirds of the websites to keep the bad guys out had a hole that gave them the very information they had been protecting. It had been open for two years before anybody knew about it.
At least, we hope nobody knew. There is no way of knowing if hackers or even rogue nations have been pilfering our data.
We do know a barrage of attempts have been staged since news broke of the hole. A server setup at the University of Michigan for research purposes was under attack the very next day from a computer in China. The server was left vulnerable to attract hackers so they could be studied.
Canadian authorities arrested a 19-year old who attacked the Canadian tax site. The timing for this news couldn't have been worse for Canadians. The site was taken down to patch the hole as tax filing deadline loomed.
But to date, there is no evidence to suggest any of the vulnerable websites had been compromised. Organizations were quick to apply patches once news of the hole was made public.
And we're talking major websites using this form of security. Google, Facebook, YouTube, Yahoo, Wikipedia, Bing, Pinterest, Instagram, and even Healthcare.gov are among those who patched the vulnerability immediately after learning about it.
The hole was found in a form of encryption called OpenSSL. You send data, like login credentials, to the web server. The server repeats it back.
Older versions of OpenSSL don't check that the length of text requested matches what they provide. They send back the data - plus whatever else the server happens to have in memory!
Updated, patched version sends back exactly what it should. Say your password is eight characters. It repeats those eight characters rather than adding any other arbitrary data it happens to find laying around in memory.
The bug isn't restricted to websites. It's the very backbone of secure communications across every type of device. Servers, VPNs, Virtual Machines, phones and tablets are all at risk. Any device you use online.
Security vendor Trend Micro studied its impact on mobile applications. They found 1,300 apps from the Google Play app store were connected to vulnerable servers. Several are popular apps used daily like instant messaging apps, online payment and shopping apps, and healthcare apps.
Our world revolves around Internet transactions. What can you do?
Do not login to a website unless you know it's safe. Lists of the state of popular websites are available several places across the Internet. Do a quick Google search to find the one that includes your favorite sites. Once a site has been patched, or if it used a different form of security and not vulnerable to Heartbleed, change your password immediately. Until then, avoid the site.
Watch your accounts closely. After you've changed your password, that is. If the site was compromised, you'll be able to limit potential damage.
Be on guard for heightened phishing schemes. It's probable that scam artists will take advantage of the situation by sending bogus email invitations to reset your password using their link. If you get an email of this nature referring to a site you frequent, visit it manually and make the change. Don't become a victim by following a malicious link.
We can hope that cyber crooks never noticed the vulnerability. But it's a pretty good bet they'll exploit it in one way or another now that they know it exists. The worst is yet to come.
GCFlash is a monthly e-mail sent only to its listed customers and associates free of charge. GCFlash informs customers of special product offerings which may be of interest, current interest rates on both deposit and loan products, selected financial news and other financial tidbits. GCFlash is intended to supplement the more comprehensive information listed on the GCF Web site at http://www.gcfbank.com.GCFLASH PRIVACY STATEMENT
GCF maintains your e-mail address in a confidential and secure database along with much of your other account information, such as mailing address and telephone number, etc. Before aggregating our e-mailing list each week, we filter out any duplicates. In most cases, this inhibits the unintended e-mailing of multiple copies of GCFlash to a single e-mail address. However, because these account records are kept by both individual and account, there is a chance members of the same household could each receive a copy of GCFlash or any other transmission at the same e- mail address - resulting in multiple copies. For example, a husband and wife that both have accounts with GCF may both receive a copy because the names are different but listed at the same e-mail address. This is similar to the manner in which each individual may share a common telephone number. To handle this situation, GCF recommends you simply delete any extra copies of GCFlash as this will ensure that ALL individuals receive any future promotional mailings, which might only be targeted or offered to specific accountholders meeting certain criteria. GCF has the capability to suppress customer e-mail addresses so they are omitted from our transmission list. If you would rather have a specific household member's e-mail address suppressed in our electronic database, simply send us a reply, as stated below, and indicate the accountholder for which you would like to have e-mail suppressed. Please keep in mind that this suppression will mean that NO future e-mails are sent, including special promotional offers. If you have any questions about this process or need additional information, please contact us at firstname.lastname@example.org.
If you would like to be removed from this electronic mailing list, click this link to send us an email to unsubscribe. Please note, removing your name from our electronic mailing list means GCF will send NO FUTURE NEWS or SPECIAL OFFERS.
Banking With Us