|
|
Check Here For Recent Fraud Alerts and Information
April 2008 Phishing Email's
Phishing ‘NAFCU’ e-mails picking up
NAFCU members and others yesterday were reporting a high incidence of Phishing e-mails eeking
“verification” of credit-card and other sensitive data, so be alert.
This volume of phishing reports to the association hasn’t occurred for roughly a year, and the association's anti-phishing service provider,
Cyveillance, devoted a good deal of its time Thursday working to locate the offending sites and get them deactivated.
If you receive an e-mail that asks for sensitive financial or personal identification information, the best thing to do is delete it.
The e-mails can also be e-mailed to abuse@nafcu.org, and NAFCU will report them to Cyveillance.
February 2008 Email Scam
Members have reported receiving emails similar to the one below.
This is not from R.I.A. Federal Credit Union.
It is a scam and you should not respond to it or click on the links contained in it.
From: [EMAIL ADDRESS REMOVED]
Sent: 2/15/2008 9:04:14 A.M. Central Standard Time
Subj: Important Notification from Arsenal Credit Union Online Banking
Dear Arsenal Credit Union client,
You have received this email because you or someone had used your account
from different locations. For security purpose, we are required to open an
investigation into this matter.
In order to safeguard your account, we require that you confirm your banking
details.
The help speeed up to this process, please access the following link so we
ca complete the verification of your Arsenal Credit Union Online Banking
Account registration information.
[LINK REMOVED]
If we do no receive the appropriate account verification within 48 hours,
then we will assume this Arsenal Credit Union account is fraudulent and will be
suspended.
The purpose of this verification is to ensure that your bank account has not
been fraudulently used and to combat the fraud from our community.
We appreciate your support and understanding and thank you for your prompt
attention to this matter.
October 2007 CUNA Email Scam
Members have reported receiving emails similar to the one below. This is not from CUNA. It is a scam and you should not respond to it.
-----Original Message-----
From: Credit Union [mailto:EMAIL ADDRESS REMOVED]
Sent: Monday, October 29, 2007 9:47 AM
Subject: CUNA Alert: Irregular Check Card Activity
We detected irregular activity on your check card on 11/28/2007. For your
protection,
you must verify this activity before you can continue using your
card.
For your security you need to reactivate your card.
Call us immediately at 425-998-1069 and we will review the activity on your
account with you and upon verification, we will remove any restrictions
placed on your account.
Please disregard this notice if you have already accessed
the web site or spoken with one of our representatives.
Copyright C 2007 - Credit Union National Association, Inc
Protecting Your Account and Identity
What We Are Doing...
- R.I.A. Federal Credit Union will never contact you via phone or email asking you to verify confidential or sensitive member or account information.
- We have implemented both Verified By Visa and MasterCard SecureCode programs to add additional security when using your credit or debit card online for purchases. If you have not registered for these programs, please visit our Links Directory to do so.
- R.I.A. offers you the ability to setup a Phone ID to be used when calling us. Contact your local Branch for details on how to establish yours.
- Secure Internet Account Access. For your protection, our servers require that your web browser uses 128-bit
encryption to connect. Review more information on Security here.
- We now offer Enhanced Login Security for Internet Account Access. This feature requires a second authentication factor to be verified prior to gaining access to your accounts online. You can learn more about this feature and how it works by visiting the link at the top of the page.
- Signup for E-Statements and you won't have to worry about your statement getting lost in the mail or stolen by a would be thief. You can view your account details when ever you want from the comfort and safety of your home computer.
- Neural Networks are in place on both our Visa Credit Card and MasterCard Debit Programs. These systems track our members purchasing patterns and alert us when any unusual activity occurs.
What You Can Do...
- Watch out for scams known as "phishing," where someone calls or emails you and claims to be from one of your accounts (Financial Institution, Credit Card, Internet provider etc.) and wants to "verify" your information or "prevent account closure or restriction" by requesting that you give them your account number, Social Security number, Credit Card number, etc.—DON'T GIVE OUT THIS INFORMATION to anyone over the telephone if they've called or emailed you! Hang up and call the company back using a telephone number you know to be genuine (not one they give you) to check that it was a legitimate inquiry and to notify them of these occurrences.
- Forward spam emails that are phishing for information to Anti-Phishing Working Group and to the company, financial institution, or organization impersonated in the phishing email. Most organizations have information on their websites about where to report problems.
- If you get an email or pop-up message that asks for personal or financial information, do not reply. And don’t click on the link in the message, either. Legitimate companies don’t ask for this information via email. If you are concerned about your account, contact the organization mentioned in the email using a telephone number you know to be genuine, or open a new Internet browser session and type in the company’s correct Web address yourself. In any case, don’t cut and paste the link from the message into your Internet browser — phishers can make links look like they go to one place, but that actually send you to a different site.
- Cancel unused credit cards.
- Limit the amount of identification and the number of credit cards you carry.
- When making transactions over the Internet, use only a secure site. Look for the "lock" icon on the Web page.
- Don't leave envelopes with checks inside in an unsecured mailbox. Try to use a sealed U.S. Post Office mailbox for your correspondence. If you have an "open" mailbox, make an effort to pick up your mail promptly. Don't leave mail in your mailbox overnight or on weekends.
- Completely destroy or shred copies of credit card receipts, statements from financial institutions, tax returns and loan applications before discarding them. Keep the ones you need in a SECURE place.
- Look for statements from financial institutions and verify that the account information is correct.
- Never give your Personal Identification Numbers (PINs) to anyone, for any reason.
- Watch for unexplained interruptions in your mail service. If there is one, contact your local post office and verify that your address has not been changed without your knowledge.
- Review a copy of your credit report at least once a year. You may catch an incident early if you order a free copy of your credit report periodically from any of the three major credit bureaus. See www.annualcreditreport.com for details on ordering a free annual credit report.
- Use anti-virus software and a firewall, and keep them up to date. Some phishing emails contain software that can harm your computer or track your activities on the Internet without your knowledge. Anti-virus software and a firewall can protect you from inadvertently accepting such unwanted files. Anti-virus software scans incoming communications for troublesome files. Look for anti-virus software that recognizes current viruses as well as older ones; that can effectively reverse the damage; and that updates automatically. A firewall helps make you invisible on the Internet and blocks all communications from unauthorized sources. It’s especially important to run a firewall if you have a broadband connection. Operating systems (like Windows or Linux) or browsers (like Internet Explorer or Netscape) also may offer free software patches to close holes in the system that hackers or phishers could exploit.
- Be cautious about opening any attachment or downloading any files from emails you receive, regardless of who sent them. These files can contain viruses or other software that can weaken your computer’s security.
- If you believe you’ve been scammed, file your complaint at ftc.gov, and then visit the FTC’s Identity Theft website. Victims of phishing can become victims of identity theft. While you can’t entirely control whether you will become a victim of identity theft, you can take some steps to minimize your risk. If an identity thief is opening credit accounts in your name, these new accounts are likely to show up on your credit report.
|
 |
