Fraud Alerts

Identity Theft - IDT911

Scam Of The Week Blends CEO Fraud And W-2 Phishing

[ALERT] The bad guys are starting their tax scams early this season! They are now combining two scams-in-one. First, they ask you to send them the W-2 forms of all employees, with the email looking like it comes from the CEO or a C-level executive. Next, they follow up with an urgent request to transfer a large sum of money to a bank account controlled by these cyber criminals.

Remember that when you receive sudden requests like this, they may be spoofed emails and that you should double check by picking up the phone and verify that this is a legit request coming from that executive. In these cases, it's "OK to say NO to the CEO".

This tax season, stay alert for scams like this, and Think Before You Click!

Gas Pump Fraud

With more than 35 million people expected to hit the roads this weekend across the US, the upcoming Labor Day holiday is unfortunately also prime time for card scammers. During times of increased travel, a popular method is often at gas station pumps where many members will be using their credit or debit cards. Firstmark would like to encourage all members to be diligent about checking their account activity and recognizing signs of potential fraud.

In recent years, fraud has been popular among gas pumps given that many have universal key locks, which makes them vulnerable to tampering, and a lack of compliance regulations. All it takes is a skimming device, which the fraudsters install, and then all user data is captured for fraudsters to start manufacturing counterfeit activity.

So, how can you avoid being scammed? Always trust your instincts. If a gas pump appears to be altered or damaged, move to another pump. Other tips for spotting a potential risk include:

  • Look for security tape over gas pump cabinets to ensure it hasn’t been tampered with by unauthorized parties. If the security tape is removed, cut or the gas pump appears tampered with, do no use it and report it to the manager.
  • We encourage members to use gas pumps located closer to the front of the gas station as fraudsters will typically place skimming devices at gas pumps away from the store to go unnoticed.
  • We encourage members to use a credit card instead of a debit card. While there is member liability protection for both, most find dealing with a credit card compromise less intrusive.
  • We suggest running debit cards as a credit card instead of entering a PIN number. This can prevent PIN compromises when a member uses a debit card at the pump.
  • Members should check accounts regularly to spot any unauthorized charges.
  • We encourage members who suspect debit or credit card numbers may have been compromised to report it immediately to authorities and to their financial institution and/or credit card company.

Watch Out for Credit Card Interest Rate Telephone Scam

Members have received several calls that state that Firstmark Credit Union will reduce the interest rate on their credit card. Firstmark is not making these calls that are coming from (601) 909-9052. This is called phishing — or “vishing” — callers impersonate legitimate companies to steal money and personal and financial information. And These scams are on the rise. Firstmark Credit Union values your identity and as such we will NEVER ask you via phone or e-mail for your account number or password. If you ever receive a call where this information is requested, do not provide or surrender account information.

IRS Urges Public to Stay Alert for Scam Phone Calls

The IRS continues to warn consumers to guard against scam phone calls from thieves intent on stealing their money or their identity. Criminals pose as the IRS to trick victims out of their money or personal information. Here are several tips to help you avoid being a victim of these scams:

  • Scammers make unsolicited calls.  Thieves call taxpayers claiming to be IRS officials. They demand that the victim pay a bogus tax bill. They con the victim into sending cash, usually through a prepaid debit card or wire transfer. They may also leave “urgent” callback requests through phone “robo-calls,” or via phishing email.
  • Callers try to scare their victims.  Many phone scams use threats to intimidate and bully a victim into paying. They may even threaten to arrest, deport or revoke the license of their victim if they don’t get the money.
  • Scams use caller ID spoofing.  Scammers often alter caller ID to make it look like the IRS or another agency is calling. The callers use IRS titles and fake badge numbers to appear legitimate. They may use the victim’s name, address and other personal information to make the call sound official.
  • Cons try new tricks all the time.  Some schemes provide an actual IRS address where they tell the victim to mail a receipt for the payment they make. Others use emails that contain a fake IRS document with a phone number or an email address for a reply. These scams often use official IRS letterhead in emails or regular mail that they send to their victims. They try these ploys to make the ruse look official.
  • Scams cost victims over $23 million.  The Treasury Inspector General for Tax Administration, or TIGTA, has received reports of about 736,000 scam contacts since October 2013. Nearly 4,550 victims have collectively paid over $23 million as a result of the scam.

The IRS will not:

  • Call you to demand immediate payment. The IRS will not call you if you owe taxes without first sending you a bill in the mail.
  • Demand that you pay taxes and not allow you to question or appeal the amount you owe.
  • Require that you pay your taxes a certain way. For instance, require that you pay with a prepaid debit card.
  • Ask for your credit or debit card numbers over the phone.
  • Threaten to bring in police or other agencies to arrest you for not paying.

If you don’t owe taxes, or have no reason to think that you do:

  • Do not give out any information. Hang up immediately.
  • Contact TIGTA to report the call. Use their “IRS Impersonation Scam Reporting” web page. You can also call 800-366-4484.
  • Report it to the Federal Trade Commission. Use the “FTC Complaint Assistant” on Please add "IRS Telephone Scam" in the notes.

If you know you owe, or think you may owe tax:

  • Call the IRS at 800-829-1040. IRS workers can help you.

Phone scams first tried to sting older people, new immigrants to the U.S. and those who speak English as a second language. Now the crooks try to swindle just about anyone. And they’ve ripped-off people in every state in the nation.
Stay alert to scams that use the IRS as a lure. Tax scams can happen any time of year, not just at tax time. For more, visit “Tax Scams and Consumer Alerts” on
Each and every taxpayer has a set of fundamental rights they should be aware of when dealing with the IRS. These are your Taxpayer Bill of Rights. Explore your rights and our obligations to protect them on

Older Consumers Targeted By Fraudsters Not Once, But Twice!

After reviewing complaints submitted by consumers, we have discovered a financial scam targeting older consumers who had previously been victims of fraudulent money-making schemes, such as bogus timeshare investments and in-home business opportunities. So-called asset recovery companies are contacting these past victims, promising to get refunds for a substantial fee, failing to deliver promised services, and leaving consumers financially worse off than before. Learn More

Credit Card Fraud Alert

We have learned that some members may be receiving calls concerning their credit cards. Firstmark Credit Union values your identity and as such will NEVER ask you via phone or e-mail for your account number, share account number or password. If you ever receive a call where this information is requested, do not give this information out. If you feel that your account has been compromised, please contact us at (210) 442-0100.

Consumer Cyber Safety Tips

  • Only access the Internet over a secure network. Maintain the same vigilance you would on your computer with your mobile device.
  • Be suspicious of unknown links or requests sent through email or text message. Do not click on unknown links or answer strange questions sent to your mobile device, regardless of who the sender appears to be.
  • Download only trusted applications from reputable sources or marketplaces.
  • Securely delete all contents before discarding, exchanging, selling or donating the device.

NCUA Warns Consumers about “National Credit Union” Phishing Scam. Website Uses Logo Similar to NCUA’s, Mimics Website Design and Language

ALEXANDRIA, Va. (March 17, 2015) – The National Credit Union Administration has received reports of an online phishing scam that uses a website with a logo and a design similar to the agency’s own site in an attempt to convince unwary customers to provide information or send money.

Consumers have received emails from the National Credit Union website, which apparently originates in Australia and claims to offer services in the United States, Europe and the Commonwealth of Independent States. This website is not affiliated in any way with the National Credit Union Administration, a federal agency, and the emails are not from NCUA.

The emails attempt to persuade individuals to provide personal information, such as Social Security numbers, account numbers and login information, or transfer large amounts of money. Consumers should neither provide information to this website nor attempt to conduct any financial transactions through it. NCUA would not request personal or financial information in this manner. See NCUA’s Privacy Policy for more information.

Consumers receiving such emails should call NCUA’s Fraud Hotline toll-free at 800-827-9650 or 703-518-6550 in the Washington, D.C., area. Consumers should also contact the Internet Crime Complaint Center, a partnership between the FBI and the National White Collar Crime Center. NCUA also offers information about avoiding frauds and scams on its website.

Consumers who suspect they may have become victims of identity theft should immediately contact their financial institutions and, if necessary, close existing accounts and open new ones. NCUA urges consumers also contact the three major credit bureaus—Equifax (800-525-6285), Experian (888-397-3742) and TransUnion (800-680-7289)—to request a fraud alert be placed on their credit reports.

Voice Phishing

Voice phishing is the criminal practice of using social engineering over the telephone system to gain access to private personal and financial information from the public for the purpose of financial reward. Sometimes referred to as 'vishing' the word is a combination of "voice" and phishing. Voice phishing exploits the public's trust in landline telephone services, which have traditionally terminated in physical locations known to the telephone company, and associated with a bill-payer. Voice phishing is typically used to steal credit card numbers or other information used in identity theft schemes from individuals.

Some fraudsters use features facilitated by Voice over IP (VoIP). Features such as caller ID spoofing (to display a number of their choosing on the recipients phone line), and automated systems (IVR).
Voice phishing is difficult for legal authorities to monitor or trace. To protect themselves, consumers are advised to be highly suspicious when receiving messages directing them to call and provide credit card or bank numbers — vishers can in some circumstances intercept calls that consumers make when trying to confirm such messages.

  1. The criminal either configures a war dialer to call phone numbers in a given region or list of phone numbers stolen from an institution.
  2. Typically, when the victim answers the call, an automated recording, often generated with a text to speech synthesizer, is played to alert the consumer that their credit card has had fraudulent activity or that their bank account has had unusual activity. The message instructs the consumer to call the following phone number immediately. The same phone number is often shown in the spoofed caller ID and given the same name as the financial company they are pretending to represent.
  3. When the victim calls the number, it is answered by automated instructions to enter their credit card number or bank account number on the key pad.
  4. Once the consumer enters their credit card number or bank account number, the visher has the information necessary to make fraudulent use of the card or to access the account.
  5. The call is often used to harvest additional details such as security PIN, expiration date, date of birth, etc.

Although the use of automated responders and war dialers is preferred by the vishers, there have been reported cases where human operators play an active role in these scams, in an attempt to persuade their victims.
Another simple trick used by the fraudsters is to ask the called party to hang up and dial their bank - when the caller hangs up, the fraudster does not, keeping the line open and remaining connected when the victim picks up the phone to dial. When in doubt, calling a company's telephone number listed on billing statements or other official sources is recommended as opposed to calling numbers received from messages or callers of dubious authenticity. However, sometimes hanging up and redialing is insufficient: if the caller has not hung up, the victim might still be connected and the fraudster spoofs a dial tone down the phone line when the victim dials and a fraudster's accomplice answers and impersonates whoever the victim is trying to call. Hence consumers are advised to use a different phone when dialing a company's number to confirm.

Browser Security Warning

Microsoft has reported to everyone that there is a potential security flaw in Internet Explorer. The security flaw resides in an Adobe Flash file. Users can avoid it by turning off Adobe Flash.

  • Apple and Mac products are not impacted by this bug.
  • Members should go out to the Adobe website to learn more.
  • Alternative browsers would be Firefox and Chrome, with preference being Firefox.
  • Microsoft is working to mitigate the problem within Internet Explorer and more information will be coming.

Read More Details

Heartbleed Update

You have probably heard of the Heartbleed bug sweeping the internet. Firstmark Credit Union is OK and has been in contact with 3rd party vendors who provide support to Firstmark Credit Union to verify that they have also taken the appropriate actions to ensure that their networks are secure. To ensure that your computer and other internet service providers are safe, it is always a good suggestion to change your password on a regular basis, for example every three to six months, especially on social media and market-place websites.

FTC Warns Small Businesses: Don't Open Email Falsely Claiming to be From FTC

The Federal Trade Commission is warning small businesses that an email with a subject line “Pending consumer complaint” is not from the FTC. The email falsely states that a complaint has been filed with the agency against their company. The FTC advises recipients not to click on any of the links or attachments with the email. Clicking on the links may install a virus or other spyware on the computer.

The FTC’s advice: Delete the email. For more information on malicious software (malware), visit

Fake German Email - 1-8-14

Ignore loans FirstMark Credit Union
Fraud at the Helpdesk are several reports received a fake email from FirstMark Credit Union . The mail is about loans. This scam is also called loan scam . If you indicate that you want to take out a loan you will be asked to pay a deposit for an insurance to cover the loan. This also occurs in advance fee fraud . Once you have paid this amount, you will hear nothing from the company. The loan will never receive . Always be alert when you are asked to do a foreign bank or money transfers via Western Union or MoneyGram money transfer. These agencies are there namely known for scams to be used. example :

From : First Mark Credit Union
Date : January 6, 2014 00:16:17 CET
To: undisclosed recipients:
Subject: First Mark Credit Union
Reply to: First Mark Credit Union
Hello . my name is Louise Lancaster , I come from FirstMark Credit Union , you Happy New Year , a year of greatness , just rest asure that your financial problems is taken by elected First Mark Credit Union. I would like to inform you that this noble Company , give out loan to families , individuals, business men and women, including cooperative bodies. Our loan types are :
1 : Auto Loan
2 : Mortgage
3 : Home Equity Loan
4: Home Improvement Loan
5 : Personal Unsecured Loan
6: Line of credit loan
7 : Boat and Jet Ski Loan
8: Educator Loan
9 : Motorcycle Loan
10 : unimproved Property Loan
11 : Overdraft Protection Loan
12: Share and CD Secure Loan.

We offer all kinds of loans at an interest rate of 3 % . our range is from € 5,000 to €50,000.000 The information which is necessary for the processing of loans :
name :
country :
Sex :
amount :
time :
all information should be sent We hope your answer for the better , Meeting customers is our goal job.

Regard :
Louise Lancaster

Target Corp. Data Breach - 12/19/13

Target announced on December 19, 2013, that it has been the victim of a large-scale payment card data breach. Debit and credit card payments in their US stores between Nov. 27th and Dec. 15th may have been affected.

Firstmark Credit Union is closely monitoring the situation for potential fraud. Members who used their debit or credit card at Target during this timeframe are encouraged to monitor their transactions through online banking and their monthly statements for possible suspicious activity.

Certain card account data may have been exposed in the incident, it does not necessarily mean that data related to your card number was taken, or that fraud has occurred, or will occur with your card. However, if you encounter any suspicious transactions, please inform us immediately.

In the event that your debit card has been compromised, you may obtain a new one instantly at any Firstmark branch location except for the Potranco and Southwest Military Branches. If you have any questions, please feel free to contact us directly at (800)-683-1211 or email us via secure email at

For more information about the incident, please go to the Target website.

Local CU Phishing Scam

Some members are receiving text messages that appear to be from another local credit union. These are phishing scams. Please do not respond. Remember that FirstmarkCU will never contact you via text or email that your account/debit card/credit card has been deactivated.

Grandparent Scams

In these types of scams, the perpetrator often calls a grandparent or other relative pretending to be his/her grandchild/niece/nephew, etc. The caller sounds upset and typically states there are only a few moments to talk. Callers may say that they have a cold if you don't quite recognize their voice, or cue-in on feedback from the call to sound even more convincing (scam victims often report being sure they were talking to their actual relative, but it's a clever trick!). Their story generally follows a familiar line: they were traveling in another country with a friend, and after a car accident or legal infraction, they are in jail and need bail money wired to a Western Union account as soon as possible for their quick release.

Sums can vary from several hundred to several thousand dollars, sometimes over the course of two or three calls. In some instances, a second scammer calls back later pretending to be a law enforcement official or attorney, to confirm the story or ask for additional money. They may even claim to be employees of a U.S. embassy or consulate overseas!

Should you be targeted in this type of scam, there are actions you can take to protect yourself. Although the supposed grandchild may plead with you not to tell his/her family, you should immediately reach out to parents or other relatives to verify the information you receive. In the vast majority of cases, the real relative is safely where (s)he should be - at work, school or home.

Another way to determine whether the story is true is to look at the country code or area code of the number the scammers are calling from. A quick check online can confirm if the country or area code is appropriate to the story. For example, we have noticed many of these sophisticated scams originate in Quebec, Canada, which has the area code "914". If your caller has a number beginning with 914, there is a good chance the call is a scam.

When in doubt, and BEFORE YOU SEND ANY MONEY, contact the State Department's Office of Overseas Citizens Services (OCS) at 1-888-407-4747. We will help you verify whether the situation is legitimate or a scam!

You can also report the incident to the Internet Crime Complaint Center (IC3) - a partnership between the Federal Bureau of Investigation (FBI) and the National White Collar Crime Center (NW3C). IC3 was established to receive internet related criminal complaints and to research, develop, and refer complaints to federal, state, local, or international law enforcement if appropriate.

Holiday Scams Alert

With the holiday season fast approaching, credit unions should be aware of holiday scams that may impact members. Credit unions should alert members of common holiday scams.

Alert Details

Consumers around the country are gearing up for the holiday shopping season. Fraudsters are also preparing for the holiday season to prey upon unsuspecting consumers. Ongoing awareness of these scams is critical to help members protect their personal and financial information this holiday season.

Risk Prevention Tips

Secure home computers and mobile devices: Members should ensure their home computers with a firewall and antivirus software performing any online transactions. Operating system patches should be downloaded when made available by sofware vendors. Members should also protect mobile devices used to conduct online transactions by installing antivirus software.

Phishing scams: Member should not respond to emails, tex messages and phone calls that advertise the sale of gift cards, holiday gifts, promotions, contest and jobs.

Be wary of holiday offers for free items: Members should avoid tempting holiday offers, such as free downloadable applications for smartphones, antivirus software, screen savers, ring-tones and electronic greeting cards, which may be infected with viruses and/or malware.

Be wary of shopping online at Craiglist and public auction sites: Members might purchase merchandise that is never delivered. Members should follow the best practices published by Craiglist and other public auction websites to avoid scams.

Be wary of social media scams: Fraudsters often place bogus advertisements for free prizes on social media sites. Members should be instructed to not respond to the advertisements.

Bogus charity scams: Members should confirm the legitimacy of the charity through the Better Business Bureau.

Monitor accounts: Members should periodically monitor their deposits and credit card accounts to identify any unauthorized transactions. Members should be instructed to immediately report unauthorized transactions to the credit union.

Watch Out for the Windows Telephone Scam

I used to be excited when I came home to six messages on my answering machine. But that was before a fake Windows telephone scam started calling five times a day, trying to convince me to give them my money.

The caller will claim to be either a member of the “Windows Technical Care Department”, “Windows Service Department” or a “Windows-certified support agent”. It changes every time, but the word “Windows” will almost certainly be in there.

The thick-accented man will then explain that your version of Windows is sending them error reports, and they are phoning to help fix it.

For anyone who isn’t already suspicious: Microsoft has never had a policy of phoning customers because their computers are reporting errors. In fact, Windows (as yet) has no facility for reporting non-anonymous computer errors to Microsoft without your explicit say so.

If you continue with the call, the scammer will talk your through various Windows-based commands which are supposed to highlight security errors in your system. In actual fact, these are normal Windows information boxes, and have nothing to do with any security breech. Every Windows system has them, the caller is just pretending they’re malicious errors, trying to destroy your PC.

Finally, the scammer will ask you to install LogMeIn – a software that lets the caller access your computer – or go to their website and buy a fake virus scanner. Doing either of those things is a bad idea.

Of course, LogMeIn isn’t a virus in itself – it’s actually a useful business tool – but allowing these guys access to your computer with it would be silly.

The scam itself has been widely reported to both the police and scam-watchers, but if you fancy some vigilante justice, there is one thing you can do: waste the callers time. The more time you spend on the call, the less time they can go around scamming less technically-savvy users.

In fact, it’s becoming a bit of a hobby for some people, many of whom have submitted recorded versions of their phone calls to this website. The record appears to be 1 hour and 20 minutes – but be warned, some of the employees of Windows Technical Care have not have adequate customer-relations training and swear. A lot.