August 2007—Phishing and Vishing Scam targets local CU members
Members of several local Credit Unions (including Northwest Community CU, Oregon
Community CU, First Tech CU, and EWEB Employees CU) have recently reported receiving
fraudulent pre-recorded phone calls (known as Vishing) and fraudulent eMail (known as
Phishing). These messages are designed to scare people into entering their personal and
account information at fraudulent websites or telephone numbers.
How the scam is spread:
Over the phone:
The recorded message will tell the victim that their credit card will be cancelled if
they do not update their account information. They are then instructed to dial an 800
number and then enter their 16 digit card number. If you have received this call, DO NOT
call the number they leave. Any information you enter in this fraudulent phone system will
be at risk.
Via eMail: Two kinds of eMails have been seen, though there may be
others variations out there:
- Take a survey and get a reward
There are several variations, each which involve a survey on a fraudulent website.
- Account has been accessed by unauthorized person
This eMail will inform you that you must enter your card or account information (on
their fraudulent website) or else your account will be terminated.
In both eMails the victim is directed to the criminals’ website where he or
she is asked to enter account and personal information. Other questions may be asked,
as well. If you have received this eMail, DO NOT visit the website they list. It may
appear legitimate, but it is not.
What to do:
If you have not received the fraudulent call or eMail, be alert.
If you have received the fraudulent call or eMail, don't respond.
If you have entered your Northwest Community CU information on the fraudulent
website or telephone system, your information is at risk. Call us at 1-800-452-9515.
Remember: Legitimate Financial institutions will
not request confidential account or personal information via voicemail or eMail.