Phishing

Phishing

Identity thieves have broadened their illegal phish e-mail attacks to target credit unions.  Please don't take the bait. Phishing e-mails and websites look like they are legitimate, but they are a trap to steal your identity - and your money!

How it works

Phishing Tactics using VoIP phone
(Voice Over Internet Protocol).

NEW Phishing Tactics using Fake Login Screens and Malware /Trojans
(Fake Login Trojan).

Identity thieves copy the names, logos, and hyperlinks from legitimate websites to make their e-mails and web pages appear to be authentic.  The illusion of authenticity  tricks some people into responding.  A phish e-mail often will  include a hyperlink that the crooks are hoping you will click on to "confirm" or to "verify" information about your account.

Don't do it! Never answer a phish e-mail or provide information that could be used to open accounts in your name, make purchases, or commit a crime.

Guidelines for avoiding phish e-mails

  • Be suspicious of any e-mail with urgent requests for personal financial information.
  • Don't use the links in an e-mail to get to any web page, if you suspect the message might not be authentic.
  • Avoid filling out forms in e-mail messages that ask for personal financial information.
  • Always double check to see if you're using a secure website when submitting credit card or other sensitive information via your web browser.
  • Consider installing a web browser tool bar to help protect you from known Phishing fraud websites.
  • Regularly check your bank, credit, and debit card statements to ensure that all transactions are legitimate.
  • Ensure that your browser is up to date and security patches applied.
  • Notify your financial institution immediately if you suspect you have disclosed personal account information to an unauthorized recipient.

E-mail is not a secure communication.  Receiving a surprise e-mail from anyone who wants you to reply with personal information should be your first clue that a crook is baiting your hook.  Achieva and other legitimate organizations would NEVER send you an unsolicited e-mail, seeking personal information.

You should never feel compelled to open an e-mail from a stranger.  If it's that important, the sender will call you.