[ALERT] The bad guys are starting their tax scams early this season! They are now combining two scams-in-one. First, they ask you to send them the W-2 forms of all employees, with the email looking like it comes from the CEO or a C-level executive. Next, they follow up with an urgent request to transfer a large sum of money to a bank account controlled by these cyber criminals.
Remember that when you receive sudden requests like this, they may be spoofed emails and that you should double check by picking up the phone and verify that this is a legit request coming from that executive. In these cases, it's "OK to say NO to the CEO".
This tax season, stay alert for scams like this, and Think Before You Click!
With more than 35 million people expected to hit the roads this weekend across the US, the upcoming Labor Day holiday is unfortunately also prime time for card scammers. During times of increased travel, a popular method is often at gas station pumps where many members will be using their credit or debit cards. Firstmark would like to encourage all members to be diligent about checking their account activity and recognizing signs of potential fraud.
In recent years, fraud has been popular among gas pumps given that many have universal key locks, which makes them vulnerable to tampering, and a lack of compliance regulations. All it takes is a skimming device, which the fraudsters install, and then all user data is captured for fraudsters to start manufacturing counterfeit activity.
So, how can you avoid being scammed? Always trust your instincts. If a gas pump appears to be altered or damaged, move to another pump. Other tips for spotting a potential risk include:
Members have received several calls that state that Firstmark Credit Union will reduce the interest rate on their credit card. Firstmark is not making these calls that are coming from (601) 909-9052. This is called phishing — or “vishing” — callers impersonate legitimate companies to steal money and personal and financial information. And These scams are on the rise. Firstmark Credit Union values your identity and as such we will NEVER ask you via phone or e-mail for your account number or password. If you ever receive a call where this information is requested, do not provide or surrender account information.
The IRS will not:
If you don’t owe taxes, or have no reason to think that you do:
If you know you owe, or think you may owe tax:
Phone scams first tried to sting older people, new immigrants to the U.S. and those who speak English as a second language. Now the crooks try to swindle just about anyone. And they’ve ripped-off people in every state in the nation.
Stay alert to scams that use the IRS as a lure. Tax scams can happen any time of year, not just at tax time. For more, visit “Tax Scams and Consumer Alerts” on IRS.gov.
Each and every taxpayer has a set of fundamental rights they should be aware of when dealing with the IRS. These are your Taxpayer Bill of Rights. Explore your rights and our obligations to protect them on IRS.gov.
After reviewing complaints submitted by consumers, we have discovered a financial scam targeting older consumers who had previously been victims of fraudulent money-making schemes, such as bogus timeshare investments and in-home business opportunities. So-called asset recovery companies are contacting these past victims, promising to get refunds for a substantial fee, failing to deliver promised services, and leaving consumers financially worse off than before. Learn More
We have learned that some members may be receiving calls concerning their credit cards. Firstmark Credit Union values your identity and as such will NEVER ask you via phone or e-mail for your account number, share account number or password. If you ever receive a call where this information is requested, do not give this information out. If you feel that your account has been compromised, please contact us at (210) 442-0100.
ALEXANDRIA, Va. (March 17, 2015) – The National Credit Union Administration has received reports of an online phishing scam that uses a website with a logo and a design similar to the agency’s own site in an attempt to convince unwary customers to provide information or send money.
Consumers have received emails from the National Credit Union website, which apparently originates in Australia and claims to offer services in the United States, Europe and the Commonwealth of Independent States. This website is not affiliated in any way with the National Credit Union Administration, a federal agency, and the emails are not from NCUA.
Consumers receiving such emails should call NCUA’s Fraud Hotline toll-free at 800-827-9650 or 703-518-6550 in the Washington, D.C., area. Consumers should also contact the Internet Crime Complaint Center, a partnership between the FBI and the National White Collar Crime Center. NCUA also offers information about avoiding frauds and scams on its MyCreditUnion.gov website.
Consumers who suspect they may have become victims of identity theft should immediately contact their financial institutions and, if necessary, close existing accounts and open new ones. NCUA urges consumers also contact the three major credit bureaus—Equifax (800-525-6285), Experian (888-397-3742) and TransUnion (800-680-7289)—to request a fraud alert be placed on their credit reports.
Voice phishing is the criminal practice of using social engineering over the telephone system to gain access to private personal and financial information from the public for the purpose of financial reward. Sometimes referred to as 'vishing' the word is a combination of "voice" and phishing. Voice phishing exploits the public's trust in landline telephone services, which have traditionally terminated in physical locations known to the telephone company, and associated with a bill-payer. Voice phishing is typically used to steal credit card numbers or other information used in identity theft schemes from individuals.
Some fraudsters use features facilitated by Voice over IP (VoIP). Features such as caller ID spoofing (to display a number of their choosing on the recipients phone line), and automated systems (IVR).
Voice phishing is difficult for legal authorities to monitor or trace. To protect themselves, consumers are advised to be highly suspicious when receiving messages directing them to call and provide credit card or bank numbers — vishers can in some circumstances intercept calls that consumers make when trying to confirm such messages.
Although the use of automated responders and war dialers is preferred by the vishers, there have been reported cases where human operators play an active role in these scams, in an attempt to persuade their victims.
Another simple trick used by the fraudsters is to ask the called party to hang up and dial their bank - when the caller hangs up, the fraudster does not, keeping the line open and remaining connected when the victim picks up the phone to dial. When in doubt, calling a company's telephone number listed on billing statements or other official sources is recommended as opposed to calling numbers received from messages or callers of dubious authenticity. However, sometimes hanging up and redialing is insufficient: if the caller has not hung up, the victim might still be connected and the fraudster spoofs a dial tone down the phone line when the victim dials and a fraudster's accomplice answers and impersonates whoever the victim is trying to call. Hence consumers are advised to use a different phone when dialing a company's number to confirm.
Microsoft has reported to everyone that there is a potential security flaw in Internet Explorer. The security flaw resides in an Adobe Flash file. Users can avoid it by turning off Adobe Flash.
You have probably heard of the Heartbleed bug sweeping the internet. Firstmark Credit Union is OK and has been in contact with 3rd party vendors who provide support to Firstmark Credit Union to verify that they have also taken the appropriate actions to ensure that their networks are secure. To ensure that your computer and other internet service providers are safe, it is always a good suggestion to change your password on a regular basis, for example every three to six months, especially on social media and market-place websites.
The Federal Trade Commission is warning small businesses that an email with a subject line “Pending consumer complaint” is not from the FTC. The email falsely states that a complaint has been filed with the agency against their company. The FTC advises recipients not to click on any of the links or attachments with the email. Clicking on the links may install a virus or other spyware on the computer.
The FTC’s advice: Delete the email. For more information on malicious software (malware), visit www.OnGuardOnline.gov/malware.
Ignore loans FirstMark Credit Union
Fraud at the Helpdesk are several reports received a fake email from FirstMark Credit Union . The mail is about loans. This scam is also called loan scam . If you indicate that you want to take out a loan you will be asked to pay a deposit for an insurance to cover the loan. This also occurs in advance fee fraud . Once you have paid this amount, you will hear nothing from the company. The loan will never receive . Always be alert when you are asked to do a foreign bank or money transfers via Western Union or MoneyGram money transfer. These agencies are there namely known for scams to be used. example :
From : First Mark Credit Union
Date : January 6, 2014 00:16:17 CET
To: undisclosed recipients:
Subject: First Mark Credit Union
Reply to: First Mark Credit Union
Hello . my name is Louise Lancaster , I come from FirstMark Credit Union , you Happy New Year , a year of greatness , just rest asure that your financial problems is taken by elected First Mark Credit Union. I would like to inform you that this noble Company , give out loan to families , individuals, business men and women, including cooperative bodies. Our loan types are :
1 : Auto Loan
2 : Mortgage
3 : Home Equity Loan
4: Home Improvement Loan
5 : Personal Unsecured Loan
6: Line of credit loan
7 : Boat and Jet Ski Loan
8: Educator Loan
9 : Motorcycle Loan
10 : unimproved Property Loan
11 : Overdraft Protection Loan
12: Share and CD Secure Loan.
We offer all kinds of loans at an interest rate of 3 % . our range is from € 5,000 to €50,000.000 The information which is necessary for the processing of loans :
all information should be sent firstname.lastname@example.org We hope your answer for the better , Meeting customers is our goal job.
Target announced on December 19, 2013, that it has been the victim of a large-scale payment card data breach. Debit and credit card payments in their US stores between Nov. 27th and Dec. 15th may have been affected.
Firstmark Credit Union is closely monitoring the situation for potential fraud. Members who used their debit or credit card at Target during this timeframe are encouraged to monitor their transactions through online banking and their monthly statements for possible suspicious activity.
Certain card account data may have been exposed in the incident, it does not necessarily mean that data related to your card number was taken, or that fraud has occurred, or will occur with your card. However, if you encounter any suspicious transactions, please inform us immediately.
In the event that your debit card has been compromised, you may obtain a new one instantly at any Firstmark branch location except for the Potranco and Southwest Military Branches. If you have any questions, please feel free to contact us directly at (800)-683-1211 or email us via secure email at https://www.firstmarkcu.org/contact-us/contact-us.php
For more information about the incident, please go to the Target website.
In these types of scams, the perpetrator often calls a grandparent or other relative pretending to be his/her grandchild/niece/nephew, etc. The caller sounds upset and typically states there are only a few moments to talk. Callers may say that they have a cold if you don't quite recognize their voice, or cue-in on feedback from the call to sound even more convincing (scam victims often report being sure they were talking to their actual relative, but it's a clever trick!). Their story generally follows a familiar line: they were traveling in another country with a friend, and after a car accident or legal infraction, they are in jail and need bail money wired to a Western Union account as soon as possible for their quick release.
Sums can vary from several hundred to several thousand dollars, sometimes over the course of two or three calls. In some instances, a second scammer calls back later pretending to be a law enforcement official or attorney, to confirm the story or ask for additional money. They may even claim to be employees of a U.S. embassy or consulate overseas!
Should you be targeted in this type of scam, there are actions you can take to protect yourself. Although the supposed grandchild may plead with you not to tell his/her family, you should immediately reach out to parents or other relatives to verify the information you receive. In the vast majority of cases, the real relative is safely where (s)he should be - at work, school or home.
Another way to determine whether the story is true is to look at the country code or area code of the number the scammers are calling from. A quick check online can confirm if the country or area code is appropriate to the story. For example, we have noticed many of these sophisticated scams originate in Quebec, Canada, which has the area code "914". If your caller has a number beginning with 914, there is a good chance the call is a scam.
When in doubt, and BEFORE YOU SEND ANY MONEY, contact the State Department's Office of Overseas Citizens Services (OCS) at 1-888-407-4747. We will help you verify whether the situation is legitimate or a scam!
You can also report the incident to the Internet Crime Complaint Center (IC3) - a partnership between the Federal Bureau of Investigation (FBI) and the National White Collar Crime Center (NW3C). IC3 was established to receive internet related criminal complaints and to research, develop, and refer complaints to federal, state, local, or international law enforcement if appropriate.
With the holiday season fast approaching, credit unions should be aware of holiday scams that may impact members. Credit unions should alert members of common holiday scams.
Consumers around the country are gearing up for the holiday shopping season. Fraudsters are also preparing for the holiday season to prey upon unsuspecting consumers. Ongoing awareness of these scams is critical to help members protect their personal and financial information this holiday season.
Secure home computers and mobile devices: Members should ensure their home computers with a firewall and antivirus software performing any online transactions. Operating system patches should be downloaded when made available by sofware vendors. Members should also protect mobile devices used to conduct online transactions by installing antivirus software.
Phishing scams: Member should not respond to emails, tex messages and phone calls that advertise the sale of gift cards, holiday gifts, promotions, contest and jobs.
Be wary of holiday offers for free items: Members should avoid tempting holiday offers, such as free downloadable applications for smartphones, antivirus software, screen savers, ring-tones and electronic greeting cards, which may be infected with viruses and/or malware.
Be wary of shopping online at Craiglist and public auction sites: Members might purchase merchandise that is never delivered. Members should follow the best practices published by Craiglist and other public auction websites to avoid scams.
Be wary of social media scams: Fraudsters often place bogus advertisements for free prizes on social media sites. Members should be instructed to not respond to the advertisements.
Bogus charity scams: Members should confirm the legitimacy of the charity through the Better Business Bureau.
Monitor accounts: Members should periodically monitor their deposits and credit card accounts to identify any unauthorized transactions. Members should be instructed to immediately report unauthorized transactions to the credit union.
I used to be excited when I came home to six messages on my answering machine. But that was before a fake Windows telephone scam started calling five times a day, trying to convince me to give them my money.
The caller will claim to be either a member of the “Windows Technical Care Department”, “Windows Service Department” or a “Windows-certified support agent”. It changes every time, but the word “Windows” will almost certainly be in there.
The thick-accented man will then explain that your version of Windows is sending them error reports, and they are phoning to help fix it.
For anyone who isn’t already suspicious: Microsoft has never had a policy of phoning customers because their computers are reporting errors. In fact, Windows (as yet) has no facility for reporting non-anonymous computer errors to Microsoft without your explicit say so.
If you continue with the call, the scammer will talk your through various Windows-based commands which are supposed to highlight security errors in your system. In actual fact, these are normal Windows information boxes, and have nothing to do with any security breech. Every Windows system has them, the caller is just pretending they’re malicious errors, trying to destroy your PC.
Finally, the scammer will ask you to install LogMeIn – a software that lets the caller access your computer – or go to their website and buy a fake virus scanner. Doing either of those things is a bad idea.
Of course, LogMeIn isn’t a virus in itself – it’s actually a useful business tool – but allowing these guys access to your computer with it would be silly.
The scam itself has been widely reported to both the police and scam-watchers, but if you fancy some vigilante justice, there is one thing you can do: waste the callers time. The more time you spend on the call, the less time they can go around scamming less technically-savvy users.
In fact, it’s becoming a bit of a hobby for some people, many of whom have submitted recorded versions of their phone calls to this website. The record appears to be 1 hour and 20 minutes – but be warned, some of the employees of Windows Technical Care have not have adequate customer-relations training and swear. A lot.