Protecting yourself from the "CATS" of the world

PUEBLO HORIZONS FCU

CA.T.S

CON ARTISTS, THIEVES AND SCAMMERS!

Don’t let yourself become a victim. Here are a few tips to protect you from Con Artists, Thieves, and Scams of all types.

Review Credit Report annually.
Shred confidential documents.
Review all account statements promptly.
Use secure mailboxes to send and receive mail.
Use caution when asked for personal information over the phone or Internet.
Be aware of current scam tactics such as “phishing” and spoofing.

If you are a victim of ID Theft you should:

Place fraud alerts with credit bureaus.
Check credit reports.

Review accounts, use standard affidavit to report disputes.
Close accounts that have been tampered with or opened fraudulently.
File a police report (and keep a copy of the report for yourself).
File a complaint with the FTC. Federal Trade Commission. www.ftc.gov

You will only need to notify one of the bureaus, which then notifies the other two credit bureaus. In addition you are able to place a victim statement on your credit profile, requiring creditors to contact the victim at a specific phone number prior to granting new credit. After you have placed a fraud alert with the credit bureau, you will receive a free copy of your credit report to review for signs of unauthorized activity.

A good source of information to help you is the FTC brochure "When Bad Things Happen To Your Good Name". FTC's consumer site: http:/www.consumer.gov/idtheft/. is a great site for information.

Free Credit Report

Check your credit report for errors by ordering a free credit report from each of the major credit bureaus once each year. Request a copy: annualcreditreport.com,

1-877-322-8228

MAJOR CREDIT BUREAUS

Experian experian.com

Get you credit report: 888-397-3742

Fraud Unit: 888-397-3742

EQUIFAX equifax.com

Get your credit report: 800-685-1111

Fraud Unit: 800-525-6285

TransUnion: transunion.com

Get your credit report: 800-888-4213

Fraud Unit: 800-680-7289

PROTECT YOURSELF FROM

PHISHING AND VISHING

Storm Worm virus

Around holidays, such as Valentine's Day, look out for spam e-mails spreading Storm Worm malicious software (malware). An e-mail directs the recipient to click a link to retrieve an electronic greeting card (e-card). Once the user clicks the link, malware is downloaded to the computer, which becomes infected as part of the Storm Worm botnet. A botnet is a network of compromised machines under the control of a single user. Botnets are typically set up to facilitate criminal activity such as spam e-mail, identity theft, denial of service attacks, and spreading malware to other machines through the Internet.

The Storm Worm virus has capitalized on various holidays in the last year by sending millions of spam e-mails with an e-card link included. Valentine's Day has been identified as another target.

FBI identifies recurring fraudulent e-mail scams

The FBI reports that cyber-criminals are sending fraudulent e-mails to unsuspecting recipients about a complaint that has been filed with the Department of Justice, the Internal Revenue Service, the Social Security Administration, or the Better Business Bureau. They claim that the complaint names the recipient or their company.

The e-mails appear to be legitimate messages from the above departments. They address the recipients by name, and other personal information may be contained within the e-mail. The scam appears to be an effort to secure Personally Identifiable Information (PII), such as Social Security numbers and birthdates. The nature of these scams is to create a sense of urgency for the recipient to provide a response by clicking on a hyperlink, opening an attachment, or initiating a telephone call.

The FBI suspects this e-mail refers to a complaint that is in the form of an attachment, which actually contains virus software designed to steal passwords from the recipient. The virus is wrapped in a screensaver file, which most anti-virus programs are unable to detect as malicious in intent. Once downloaded, the virus is designed to monitor user name and password logins, and record the activity, as well as other password-type information, entered on the compromised machine.

Vishing attacks increase

Many people have received an e-mail, text message, or telephone call, supposedly from their credit card or debit card company directing them to call a telephone number to re-activate their card due to a “security issue.” The IC3 has received multiple reports of variations of this scheme known as "vishing."

Vishing operates like phishing with scammers trying to persuade consumers to divulge their Personally Identifiable Information (PII), claiming that their account was suspended, deactivated, or terminated. Recipients are directed to contact their financial institution via a telephone number provided in the e-mail or by an automated recording. Upon calling the telephone number, the recipient is greeted with "Welcome to the (name of bank or credit union) …" and asked to enter their card number in order to resolve the pending security issue.

For authenticity, some fraudulent e-mails claim the bank or credit union would never contact customers to obtain their PII by any means, including e-mail, mail, or instant messenger (but not by telephone). These e-mails further warn recipients not to provide sensitive information when requested in an e-mail and not to click on embedded links, claiming they could contain "malicious software aimed at capturing login credentials."

A new version recently reported involves sending text messages to cell phones, claiming the recipients' online banking account has expired. The message instructs the recipients to renew their online banking account by using the link provided.

To Protect Yourself::

If you have a question concerning your account or credit/debit card, contact your financial institution using a telephone number obtained independently, such as from your statement, a telephone book, or other independent means.
Be wary of any e-mail received from an unknown sender.

Do not open unsolicited e-mail.
Do not click on any links provided in unsolicited e-mails.

If you are a victim of phishing or vishing, take appropriate steps:

Block and reissue the compromised credit/debit cards.
Report the incident to the credit bureau.
Order a credit report.

If you have been victimized by a spoofed e-mail or Web site, you should contact your local law enforcement, U.S. Postal Inspector, or the FBI.