Fraud Alerts Archive

Phishing Alert! -November 12
Falsified email purporting to be from NACHA is currently circulating

Random individuals and/or companies may have received a falsified e-mail with the subject title “Rejected ACH Transaction.” This e-mail appears to be from NACHA – The Electronic Payments Association telling them that there is a problem with an ACH transaction they have originated. The e-mail includes a link which redirects the individual to a fake web page which appears like the NACHA website and contains a link which is almost certainly executable virus with malware. See sample below.

IF YOU GET ONE OF THESE EMAILS DO NOT CLICK ON THE LINK! The e-mail did not originate from NACHA and the website does not belong to NACHA. A sample of the phishing email follows:

= = = = = Sample E-mail = = = = = =
From: nacha.org [mailto:report@nacha.org]
Sent: Thursday, November 12, 2009 10:25 AM
To: Doe, John
Subject: Rejected ACH transaction, please review the transaction report
Dear bank account holder,
The ACH transaction, recently initiated from your bank account, was rejected by the Electronic Payments Association. Please review the transaction report by clicking the link below:
Unauthorized ACH Transaction Report (this is the how the link is presented in the phishing email)

Again, if you receive one of these emails, do not click on the link in the email! NACHA has put an alert about this phishing attempt on their legitimate website, which can be found at nacha.org. Please also feel free to contact EastPay at 1-800-681-4224 if you have any questions.

For more information, call EastPay at 1-800-681-4224.
www.eastpay.org

"Virus" Alert - October 29

There is another new virus/malware email going around the internet.

The subject line of the email states: “check your Bank Deposit Insurance Coverage” or “FDIC has officially named your bank a failed bank”.

The message contains instructions to click a link that if clicked will take the user to a spoofed FDIC web site with further instructions to download a file to check their Deposit Insurance Coverage. If the file is downloaded malware is installed on the computer presumably to collect sensitive personal information.

The FDIC has posted this alert on their WEBSITE warning consumers about this fraudulent email:

E-mail Claiming to Be From the FDIC – October 26, 2009

The Federal Deposit Insurance Corporation (FDIC) has received numerous reports of a fraudulent e-mail that has the appearance of being sent from the FDIC.

The subject line of the e-mail states: “check your Bank Deposit Insurance Coverage.” The e-mail tells recipients that, "You have received this message because you are a holder of a FDIC-insured bank account. Recently FDIC has officially named the bank you have opened your account with as a failed bank, thus, taking control of its assets.”

The e-mail then asks recipients to “visit the official FDIC website and perform the following steps to check your Deposit Insurance Coverage” (a fraudulent link is provided). It then instructs recipients to “download and open your personal FDIC Insurance File to check your Deposit Insurance Coverage.”

This e-mail and associated Web site are fraudulent. Recipients should consider the intent of this e-mail as an attempt to collect personal or confidential information, some of which may be used to gain unauthorized access to on-line banking services or to conduct identity theft.

The FDIC does not issue unsolicited e-mails to consumers. Financial institutions and consumers should NOT follow the link in the fraudulent e-mail.

August 26, 2009

This is an alert from the American Bankers Association of a scam using their name.

ABA WARNS OF FRAUDULENT LETTERS, FAKE CHECKS

The American Bankers Association has been alerted that someone or a group of individuals sending cash prize letters purporting to be from ABA are actually part of fake check scam. These con artists are sending letters asking people to call a phone number to find out how to collect the prize it - a popular technique to get personal financial information from the letter recipient. Many of the letters contain one or more fraudulent checks, and a number of individuals have attempted to cash or deposit these fraudulent checks.

The fraudulent checks are listed as from ABA and ABD Federal Credit Union, however ABA believes other financial institutions may be targeted. The amount of the checks is typically between $1,000 and $5,000.

ABA is working with law enforcement to identify the source of the letters and to disrupt them. ABA offers the following advice to consumers:

• If you think someone is trying to pull a fake check scam, don't deposit the check - report it - because you are responsible for the money you withdrew if the check or money order bounces. To report a fake check or find out more information on how you can avoid them, go to fakecheck.org.
• Never give out your personal financial information in response to an unsolicited phone call, fax or email, no matter how official it may seem. If you are uncertain, call your financial institution yourself using a phone number you know is safe.
• If you have already responded to this type of call or email by providing your personal financial information, contact your financial institution immediately to protect your account;
• Inform the ABA about fraudulent phone calls and emails that use ABA's name by sending an email to alert@aba.com.

August 28, 2009

A fraudulent text message was sent regarding suspended Citizens & Farmers Bank ATM cards. The message was not from Citizens & Farmers Bank. It was a mass message sent to mobile telephones regardless of the owner's banking relationships.

Back to Security Center