FRAUD ALERTS

Scams are on the rise! Make sure you are protecting your money and your personal information.  Read about recent fraud attempts and how to avoid them.

Postcard Scam: Notice Regarding your Mortgage

Online Shopping Scams

Amazon Prime service fraud scam-  A scammer posing as an Amazon employee may contact you to notify you about a problem with your Prime account. The scammer will ask you to download a tool on your computer or mobile device so they can assist you with resolving the problem. You will be instructed to log onto your account so the “scammer” can be compensated for their time. Once you do this, the scammer will have access to your account(s).

Phishing emails scam- You may receive an email allegedly sent from Amazon or other large retailers, asking you to verify or update your account. You might also be asked to confirm your order. If the link is clicked on/opened, this gives the scammer access to all your information.

Delivery issues scam- Delivery scams are generally sent in the form of a message. They appear to be from UPS, FedEx, or other delivery services, informing you of a “delivery issue” with your order. You will be asked to confirm/update your information using a link sent to you by the scammer. If opened or a reply is sent, this provides the scammer with account information and opens the door to identity theft.

If in doubt, DELETE…Don’t fall victim to one of these scams.

Is That Really a Text From My Credit Union?

There has been a significant rise lately in phishing scams. These are text messages or emails that attempt to get your personal information. This rise is due in part to improvements in Artificial Intelligence (AI) software, which becomes more sophisticated with each day.

Businesses are using AI to help improve their customer service wait times, for instance, using Chatbots to answer consumers’ frequently asked questions online. Unfortunately, fraudsters are also using this tool to help their “business.” Their techniques have become so clever that it’s getting harder to tell whether or not the text or email you receive is really from a business you use frequently or even from your credit union.

Before AI, scam emails and texts had common tell-tale traits: mangled sentence structure, poor grammar or spelling, etc. Today, scammers can give the software instruction to generate an email or text in perfectly written English in the format needed, like a legal document, utility bill, or message from your credit union.

To protect yourself from scammers trying to access your credit union account, be suspicious of any text or email that:

• Comes from an unknown number, claiming to be from the credit union, telling you there is a problem with your account.
• Asks you for your personal, confidential information. This includes your online banking username, password, one-time passcodes, Social Security number, account number, debit or credit card number, PIN or CVV.
• Uses scare tactics or claims to be “urgent,” requiring you act immediately to avoid disaster.
• Asks you to transfer money via a link in the message.

If you do receive such a request, do not click or respond to it. Call us immediately at 260-432-3433 to let us know. Then take a screenshot of the message and send it to us. You may also want to report it to law enforcement or the FTC.  Then delete the message and block the sender. If you did click on a link or replied to the message, call us immediately so we can check and secure your account.

New Venmo Scam

I thought everyone should be aware of a new scam that has come to my attention. A member was selling an item on Facebook marketplace and the buyer offered to pay via Venmo. A short while later our member got multiple emails from Venmo stating that the payment couldn’t go through because it exceeded their limit for consumer accounts, and she would have to upgrade to a Venmo business account first.

One of the stated requirements for a Venmo business account was a balance of at least $1000. The buyer offered to send the member more money so that she met the requirements, then just asked that she pay her back as soon as possible. The buyer even asked that the member send them some money to prove they were trustworthy. Venmo sent the member another email after this stating that the member would need to send the buyer $400 back before the original pending payments could be posted, and that there could be a waiting period of up to 21 days.

Finally, the member called Venmo and discovered that the emails were not coming from Venmo. Not only that, but none of the “pending payments” had ever been sent in the first place. The scammer planned to have our member pay them hundreds of dollars and give the scammers the merchandise, and it almost worked.

Make sure that if you hear one of our members mention anything like this, listen for details characteristic of a scam. Remember, if you have to SEND money to get money, it’s probably fraud.

Article by Robbie Boswell, Branch Manger Public Service Credit Union

“Click the Link” Scams

Phones and computers are a huge part of our daily life and are becoming a common target for fraud. Have you ever been browsing online or shopping when, suddenly, you get a pop-up claiming that your device was hacked? Has someone ever called you from a well-known company saying they found a problem with your computer? These may have been part of what is called a “Tech Support Scam”.

Who should be on the lookout for Tech Support Scams?

There is a stereotype out there that these scams focus on the elderly, but in truth anyone with a computer can be targeted. Everyone needs to be familiar with what these look like in order to protect themselves.

So how do these scams usually play out?

Typically, a pop-up will show up on a website you are visiting that will say something like “Your computer is infected with (7) viruses!” The pop-up will include instructions, often telling you not to shut down your computer or close your browser. Sometimes they will include a phone number to call tech support or a link you can click to run a protection software. The pop-up will tell you what information is at risk, such as credit card numbers and other private data.

If you call the phone number provided, a tech support specialist might ask you to grant remote access of your PC. Once you do so, they will often lock down some of the computer’s functions and claim they need you to pay a service fee for them to reinstate those functions. Victims of these scams often state that this is the point they realized something was wrong, but some don’t notice the red flag and pay the scammers. At this point, the person you are on the phone with has had access to your computer and its sensitive data for several minutes.

These scams use realistic and frightening situations to trick you. Devices can actually be compromised, and that can make it hard to separate the legitimate claims from the fraudulent ones. So how can you protect yourself?

First, slow down. – If you come across a concerning pop-up online, take the time to think before acting. Scammers will try to use fear and urgency to manipulate you into doing what they want, and by rushing you they hope to take away your ability to think critically. If you feel rushed, that’s a good sign that you should slow down. You can always reach out to PSCU for advice if something seems fishy.

Do your own research. – It’s important not to assume that you can tell what’s legitimate at first glance. Scammers get more and more sophisticated every day and can make their handiwork look more professional than ever. Take a moment to look up your own information before trusting what the pop-up says. If the source claims to be Microsoft or Apple, look up those companies’ contact information yourself instead of using what is listed by the pop-up.

Don’t click. Don’t call. Don’t pay. – Most of these scams can’t do anything unless they trick you into taking action. If you see a pop-up or email saying you need to click a link to fix the problem, do not click that link. If it gives you a tech support phone number, do not call that number. The phone number is provided to make you think, “They gave me tech support’s number and tech support answered. This sounds real to me.” Do not fall for this. Above all, do not give anyone access to your computer, do not give them any personal information, and do not pay them anything.

Report it. – Let us know if someone has tried to scam you this way so that we can ask some questions about any information exchanged and assess what kind of risk you might be in. If the scammer succeeded in getting some of your personal information, we may need to take steps with your account to ensure it stays secure. Also, reach out to any other financial institutions you bank with. It is a good idea to consult a real tech specialist after this happens as well to make sure your computer hasn’t been compromised.

Finally, you can report this activity to the Federal Trade Commission to assist them in their investigations of these crimes. https://reportfraud.ftc.gov/#/

The FTC also has a lot of helpful information on their website to help you spot these and other common scams.

Article by Robbie Boswell, Branch Manger Public Service Credit Union

TEXT SMISHING SCAM

Beware of scammers sending texts saying your Visa card has been locked with a phone number to call or link to click. The scammers will attempt to gain your personal information including banking or credit card info. Please call PSCU at 260-432-3433 if you get any suspicious texts, emails or phone calls.

FOR CREDIT & DEBIT CARDS

• PIN CHANGE: 866-762-0558
• DURING BUSINESS HOURS: 260-432-3433 or 888-432-3433 (toll free)
• AFTER BUSINESS HOURS: 888-241-2510 or 909-941-1398 (outside US)

Beware of new scam targeting PSCU members

Please be aware of fraudsters who are spoofing the Public Service Credit Union name and phone number to make calls pretending to be employees from the ‘main office’.  The scammers are claiming that a large charge is trying to clear the account and they ask to verify items such as:

• Card Number or last 4 digits of card
• CVV code
• Expiration Date
• Card Balance
• Card Limit

These scammers are using scare tactics saying the transaction will be charged to the account if you don’t give them the information they’re requesting.  If you receive one of these calls, please hang up immediately.  If you’ve given out any of your information, please contact PSCU at 260-432-3433 or 888-432-3433.

It’s important to always keep your personal information, card numbers, usernames, and passwords safe, secure, and private.  Remember PSCU will NEVER contact you directly and request your personal information including:

• Social Security Number
• Credit or Debit Card numbers
• Security Code or CVV
• PIN – Personal Identification Number
• Online Banking Login Information
• Passwords

If you believe you may be speaking with a scammer, hang up the phone and call us at 260-432-3433 or 888-432-3433.  We’d rather you hang up the phone if you’re suspicious, than give your personal information to someone attempting to steal your identity.   Finally, please share this information with friends and family members who may be more susceptible and vulnerable to fraud… we can out smart the scammers by staying informed.

Text Scams

Watch out for fraudulent texts like these. They are NOT legitimate texts. When people have called the number in the text, they are enrolled in Samsung Pay and gift cards are immediately being purchased at Kroger and Walmart. Remember to verify any number before you call it.  PSCU’s numbers are 260-432-3433 or 888-432-3433. Feel free to contact the credit union if you believe a text or email you received about your account is suspicious.

Common Elder Fraud Schemes

Every year, millions of seniors become victims of scammers.  June 15th is World Elder Abuse Awareness day.  Below are a few scams identified by the FBI that commonly are targeted to seniors.  Take a few minutes and talk to your loved ones about these fraud schemes to help them avoid getting scammed.

• Romance scam: Criminals pose as interested romantic partners on social media or dating websites to capitalize on their elderly victims’ desire to find companions.
• Tech support scam: Criminals pose as technology support representatives and offer to fix non-existent computer issues. The scammers gain remote access to victims’ devices and sensitive information.
• Grandparent scam: Criminals pose as a relative—usually a child or grandchild—claiming to be in immediate financial need.
• Government impersonation scam: Criminals pose as government employees and threaten to arrest or prosecute victims unless they agree to provide funds or other payments.
• Sweepstakes/charity/lottery scam: Criminals claim to work for legitimate charitable organizations to gain victims’ trust. Or they claim their targets have won a foreign lottery or sweepstake, which they can collect for a “fee.”
• Home repair scam: Criminals appear in person and charge homeowners in advance for home improvement services that they never provide.
• TV/radio scam: Criminals target potential victims using illegitimate advertisements about legitimate services, such as reverse mortgages or credit repair.
• Family/caregiver scam: Relatives or acquaintances of the elderly victims take advantage of them or otherwise get their money.

For more info and ways to protect yourself and your loved ones visit https://www.fbi.gov/scams-and-safety/common-scams-and-crimes/elder-fraud

Fraudsters Targeting Cash Transfer Apps

• Only send payments to people you know and trust.
• Verify and double check the recipient before sending money.
• Don’t send money to anyone promising something in the future.
• Protect your login information and use a secure password.

Scam Targeting Indiana Credit Unions:

Two Indiana Credit Unions have reported that their members are the target of a new text and phone call scam.  Both credit unions (located in Indianapolis and Muncie) say that a fraud ring is sending out fake “FREE TEXT” messages that look like they are being sent from the credit union.  The phone number being used is 801-901-2668.  The texts are followed up by a phone call to the member shortly after the text is sent.  The caller claims to be an agent of the credit union and attempts to obtain information.  The fraudsters are then going to stores and appear to be purchasing gift cards or reload-able debit cards.

Best Practices for Avoiding Scams:

• Beware of scams. Be cautious when responding to text messages as well as voice calls, even if they appear to come from the credit union.
• Call the credit union using a reliable phone number (260-432-3433 option 3) to question any text messages or voice calls purportedly from the credit union.
• Never provide personal information in response to text messages and phone calls purportedly from the credit union.
• Do not click on links included in text messages from unknown sources. Legitimate requests to validate card activity will request a simple response of YES or NO. They will not include hyperlinks to other websites or ask for any personal info.

SMishing & Vishing Scams:

Criminals who have credit or debit card details are spoofing credit union phone numbers in an effort to fool credit union members into thinking that text messages are actually from the fraud department of the credit union. Fraudsters are sending text messages under the guise of trying to validate recent card activity and are including hyperlinks within some text messages.

Attacks to obtain personal information from credit union members are known as SMishing (SMS text phishing) and Vishing (Voice phishing). A typical SMishing occurrence can begin with a member receiving a text message inquiring about a suspicious transaction on an account. In reality, the fraudster is looking to obtain other information from members such as debit card numbers, CV2 codes, expiration dates, PINs and other web login credentials.

Suggested Best Practices

· Beware of SMiShing and Vishing scams. Be cautious when responding to SMS text messages as well as voice calls, even if they appear to come from the credit union.

· Call the credit union using a reliable phone number (260-432-3433 option 3) to question any SMS text messages or voice calls purportedly from the credit union.

· Never provide personal information in response to SMS text messages and phone calls purportedly from the credit union.

· Do not click on links included in text messages from unknown sources. Legitimate requests to validate card activity will request a simple response of YES or NO. They will not include hyperlinks to other websites or ask for any personal info.

Phishing Scams:

Amazon customers are being targeted by scammers trying to obtain their account credentials.  The phishing scam sends emails that appear to be from Amazon saying customers need to update their information within 24 hours or their account will be disabled.  When the victim clicks “Update Now” they are re-directed to an imitation page where they are prompted to enter their login credentials, personal information and payment details.   Remember, to protect yourself from scams like these, it’s a good idea to visit the website yourself instead of clicking a link within an email.

Are you a Netflix customer?  Netflix, like Amazon, is a well-known popular brand which makes them an easy company for fraudsters to target.  Watch out for scam emails from Netflix claiming your subscription has been cancelled.  Some fraudulent emails contain a link to re-activate the subscription.  When victims click on this link, they are taken to a fraudulent site that is designed to look very similar to Netflix’s official site.  They are prompted to enter their login credentials and bank account information for payment.  To protect yourself from these types of scams, do not click links within emails.  If you are not expecting to hear from a company, they ask you to click a link, or you notice grammatical errors; these are warning signs that the email may be fraudulent.