Current Fraud Alerts

*** Important Card Notice ***

The number of fraudulent emails, text messages and phone calls known as "Phishing" has increased recently. Many follow the same outline. They appear official but are general enough to include almost any user. The email, text or phone call will also imply that some type of urgent action is needed to protect your account. If you receive anything similar to this, please contact your financial institution before taking any action that the contact may suggest. United Educators Credit Union will never ask you to send personal account information through email. Below are just a few examples we have seen. Many variations of them have been used and, unfortunately, are created daily.

Fraud Alert (11/12/2010)
Phishing Attempt – E-mail Solicitation Using NCUA Address. The purpose of this fraud alert is to inform all federally-insured credit unions about a recent phishing attempt to obtain member credit card account numbers, expiration dates and electronic signatures. In cases reported to NCUA, the perpetrator(s) sent fraudulent e-mails, representing to be from the NCUA, to credit union members and the general public. The emails state the NCUA will add $50.00 to the member's account for taking part in a survey. The link embedded in the message directs members to a counterfeit version of NCUA's website with an illicit survey that solicits credit card account numbers and confidential personal information.

Fraud Alert (08/27/2010)
Beware of Fraudulent Emails Claiming to be from NACHA with Subject Line: "Electronic Payments Association" (35 kb)

Fraud Alert (07/23/2010)
Beware of Fraudulent Emails Claiming to be from NACHA with Subject Line: "Unauthorized ACH Transaction" (45 kb)

Fraud Alert (07/06/2010)
The most recent scam is claiming to be from the FDIC and could easily be spun to appear as if it is coming from NCUA as well. (43 kb)

Steps to avoid becoming an identity theft victim.

Previous Fraud Alerts can be found in our Fraud Alerts Archive Section.

Below are some Common Methods used to steal your personal information. We also have provided steps to avoid becoming a victim.

1. Phishing - Increasingly, Americans are receiving fraudulent emails that direct recipients to web sites where they are asked to provide confidential personal and financial information. These emails may vary significantly in how they request information. Some claim that the individual's personal information is necessary to assist in the fight against terrorism or for some other alleged legal purpose. Other emails purport to be from government agencies or private sector entities, such as banks, Internet auction sites, or electronic payment services. In these fraudulent schemes, commonly known as "phishing", the perpetrator sends an email to consumers, falsely claiming to be from a legitimate company, in hopes of luring consumers to a "spoofed" web site. The spoofed web site, almost an exact copy of the original site including color and images, mimics the legitimate web site for the sole purpose of stealing personal or financial information. At the typical spoofed web site, consumers are asked to update sensitive personal information, such as names, account and credit card numbers, passwords, Social Security numbers and other information. Click here for tips on protecting yourself against Phishing attacks.
2. Pharming - First there was "phishing" where identity thieves posing as financial institutions sent consumers fake emails asking for account information. Now this fraud has evolved to "pharming" where thieves create whole false web sites to entice customers to enter their personal data. How can you avoid pharming? "Look at the site and the URL to see if it is familiar," said Reger. "Peruse the site in depth if it seems suspicious. Crooks may not have set up all the layers of the site."
3. Vishing - Vishing mimics phishing by trying to trap you into divulging your account numbers. But instead of being phished in an email message, you may receive a telephone call from an automated random dialer, and the voice on the other end of the line may tell you your credit card has been used illegally. You're then asked to dial a fake 1-800 number with another voice that asks you to confirm your account details and credit card number.
4. Pay at the pump - Next time you fuel up your car and pay at the pump, beware that your credit card data might be making a detour on the way to the bank for verification. Thieves can plant a bug in the machine that sends your card data directly to them at the same time it is sent for approval. How can you guard against gas station fraud? "Use cash, a credit card or a gas card at the pump instead of a check card so you won't be liable for any fraudulent charges," said Reger.
5. Keystroke catchers - In order to capture your personal data, identity thieves can purchase a small device called a keystroke catcher for about $100. The catcher records all the information typed on a keyboard until the thief comes back to claim it and download the data. "This type of theft is more common with computers that are available to the public, like in a cyber café," said Reger. How can you avoid keystroke catchers? Check for suspicious devices connected to your keyboard and try not to enter sensitive data on shared computers.
6. International skimming - Skimming occurs when a thief captures your credit data by running your credit card through a small reader similar to the one you use at the grocery store. This type of credit card fraud is becoming increasingly common internationally as travelers use their credit cards around the world. How can you keep your credit cards safe? "Try to use only one credit card when you are traveling so that you can easily identify and report fraudulent charges if they occur," said Reger.
7. Database theft - Identity thieves who want to steal more than one identity at a time are now looking to databases. "In the past, stealing 30,000 records from a college would have meant carting away thousands of file cabinets. It would have been virtually impossible," said Reger. "Now all that data can be on one hard drive that's much easier to steal and use." How can you guard against database theft? Make sure that the people who keep records on you are being responsible about protecting and encrypting your files.

Steps to avoid becoming an identity theft victim:

• If you get a phone call and someone asks you to give or confirm credit card or personal information, hang up. Then call your credit union or the financial institution that issued the card by using the phone number on the back of the card or on your statement and report the attempt. If the call was legitimate, the provider will know it.
• If you get a call from someone who claims to be from a financial institution you do business with, and who knows your credit card account number but wants the three-digit code on the back of the card, immediately hang up.
• If you get an email message asking you to call a toll-free number to verify account information, delete the email. Never provide personal information or account information based on an email request.
• Don't be fooled by the fact that the caller's phone number appears to be a regional telephone number - it could be spoofed, which is easy to do using VoIP.
• Be suspicious of any phone or email contact that doesn't use your first name or surname.
• Never dial a call return number or reply to an email - regarding any financial matter.
• Trust your instinct. If something doesn't seem right, it probably isn't.

Source for methods to steal © 2005 TrueCredit. All rights reserved. Source for steps to prevent © 2005 Credit Union National Association, Inc.