We want to inform UC Retirement Savings Plan recipients of recent reports of fraudulent activity involving Fidelity-operated UC Retirement Savings Program accounts.

Fidelity's cybersecurity team identified the issue, closed the vulnerability, and took immediate action to protect all potentially affected accounts. Contact with the 120 affected participants has begun.

Please be assured that as part of Fidelity's Customer Protection Guarantee, Fidelity will reimburse any losses resulting from unauthorized account activity provided the activity was not the result of your own actions. You can view the full guarantee on the Fidelity website.

How to protect your Fidelity accounts

It's always a good idea to stay vigilant about cyber risks and take steps to secure your accounts. Here are some recommended actions to help you monitor and protect your Fidelity accounts:

• Check your accounts regularly.
• Verify both your UC work account (at www.netbenefits.com) and any personal Fidelity retail accounts (at www.fidelity.com). Pay close attention to your profile information, especially mobile phone numbers and emails related to multi-factor authentication (MFA) and account notifications. Fidelity notifies you of any profile changes.
• Report any issues to Fidelity.
• If you notice any unusual activity or unauthorized changes, contact Fidelity immediately at 866-682-7787. As noted above, Fidelity will reimburse any losses resulting from unauthorized account activity, provided the activity was not due to your own actions.
• Increase the security of your account with an authenticator app.

For additional protection, consider using a third-party authenticator app. This provides an additional layer of security beyond your username and password. How to set it up:

• Download an authenticator app (e.g. Duo or Google Authenticator) from your mobile device's app store.
• Sign in to your account at www.NetBenefits.com or https://www.fidelity.com/, then go to Profile & Settings (person icon) and select Security Center.
• In the “Multi-factor authentication when signing in” section, select “Authenticator app.”
• Open the authenticator app and either scan the QR code or manually enter the secret key that appears.
• Enter the 6-digit code from the app on the Fidelity website and select Next to complete your registration.
• When the popup confirms your login, select Done.