NetBranch access from older browsers may be affected by upcoming security update.
Access from updated internet browsers should not be impacted.
By January 29, 2017 our NetBranch online banking application will be updated to require the newest security protocol TLS 1.2. This is being done to protect member data against attacks similar to the Poodle attack that occurred within the past few years. With the use of older TLS versions, a hacker can force a browser to downgrade to an older security version, which is far less secure than today's standards. A browser using older TLS versions is vulnerable enough to let hackers spy on the data traveling to and from the computer.
You may experience difficulty accessing NetBranch if you are using an older browser that is not updated to protocol TLS 1.2. Please update your browser to the latest version or follow the instructions below to enable TLS 1.2 in your current browser.
This security update will not affect access through our Mobile App.
FAQ
What exactly is changing and how will that affect my access to NetBranch?
In an effort to provide the highest level of security for your data, connection to NetBranch from devices using any Transport Layer Security (TLS) less than 1.2 is disabled. Any device that is not using TLS 1.2 or higher will not be able to connect to NetBranch. Today, all recent versions of the major internet browsers provide the option to use TLS 1.2 and higher.
Why is this change being made?
The change is being made to protect your data against attacks similar to the Poodle attack that occurred within the past few years. With the use of older TLS versions, a hacker can force a browser to downgrade to an older security version, which is far less secure than today's standards. A browser using older TLS versions is vulnerable enough to let hackers spy on the data traveling to and from the computer.
Are there older versions of operating systems/ browser combinations that will not support TLS 1.2 and higher?
Yes. Windows XP and Windows Vista are only capable of upgrading up to Internet Explorer version 8. Therefore, users of these operating systems using Internet Explore as their browser will not be able to connect to NetBranch. However, they may have the option of loading the latest version of another browser such as Chrome or Firefox.
I am using a current browser and still cannot connect.
The following steps will aid in determining the issue you may have with connecting to NetBranch as it relates to this change:
- Check if TLS 1.2 has been enabled in your browser settings. Please see the information below – Instructions for enabling TLS 1.2for instructions on how to enable these options.
- If these options are enabled and you still cannot connect, go to https://www.howsmyssl.com and have verify what is showing in the Version section on this page. If you see verbiage similar to what is below and verify that you have enabled the TLS 1.2 option in the previous step, this could be an indication of an issue with your computer such as a virus or malware. You will then need to troubleshoot whatever issue is causing your computer to not have the ability to make the appropriate changes.
- Until the “Version” listed when visiting https://www.howsmyssl.com reports “Good” you will be unable to connect to NetBranch from this computer.
Suggestions for troubleshooting:
- Check to make sure you have current antivirus and/or malware protection
- If “yes” verify the definitions are current and run a scan. After any issues have been corrected try https://www.howsmyssl.com” to verify if the version now shows “Good”, and if it does then proceed to verify you can access NetBranch.
- If “no” consider evaluating some of the antivirus and/or malware protection programs available, some of which are free. Once current virus/malware scans have run and any issues have been corrected to try the site https://www.howsmyssl.com to verify if the version now shows “Good”, if it does then proceed to verify you can access NetBranch
- Finally, you may want to seek local computer repair, if necessary, to determine what is causing your computer to not report “good” even though you have TLS1.2 option enabled
- If the results of https://www.howsmyssl.com show that TLS 1.2 is enabled – similar to the verbiage below, and you still cannot connect to NetBranch, please contact the credit union for further research. Please be ready to provide the following information: your Operating System, Browser, Version # and any details on what issue you are having when trying to connect.
Does this change affect the mobile app?
No. This change does not affect your ability to use our mobile app.
Instructions for enabling SSL Versions TLS 1.2
Please select the browser that you are using to connect to NetBranch:
Internet Explorer:
1. Open Internet Explorer
2. Click Alt T and select “Internet Options”.
3. Select the "Advanced" tab.
4. Scroll down to the "Security" section.
5. Locate and check "Use TLS 1.2".
6. Then, press the "OK" button.
Google Chrome:
1. Open Google Chrome
2. Click Alt F and select “Settings”.
3. Scroll down and select “Show advanced settings…”
4. Scroll down to the Network section and click on “Change proxy settings…”
5. Select the "Advanced" tab.
6. Scroll down to the "Security" section.
7. Locate and check "Use TLS 1.2".
8. Then, press the "OK" button.
FireFox:
1. Open FireFox
2. Type in “about:config” in the URL bar and press Enter
3. Scroll down to “security.tls.version.max” and press enter
4. Set the value to 3
5. Then, press the "OK" button.
Opera:
1. Open Opera
2. Click Ctrl+F12
3. Click on “Security”
4. Click on “Security Protocols…”
5. Check on “Enable TLS 1.2”
6. Press the "OK" button.
7. Then, press the "OK" button.
Safari:
There are no options for enabling SSL protocols. If you are using Safari version 7 or greater, TLS 1.2 is automatically enabled.