Scam artists are nothing new - they've been trying to fleece us out of our money since the beginning of time. What is new, however, is the increasing use of sophisticated techniques and technology. Each year the number of people victimized increases. It's up to each of us to educate ourselves on how to avoid being taken.
Free e-Book "Twists of Fake"
Download this 90-page e-book that covers a wide range of scams and ID theft schemes.
Recently it has been discovered that malware, called Svpeng, is beginning to target Android-based mobile applications in the United States. The malware looks for specific applications on the user's phone, then locks the phone and demands money to unlock it. Newer versions of the malware may contain a phishing component that substitutes the users banking application with a mirrored phishing window, deceiving the user into submitting their credentials for collection by the attackers.
Svpeng currently uses social engineering to infect the phone, specifically via text messaging. It is critical that you download content only from trusted sources. Below are examples of messaging you might consider as part of your consumer education and awareness campaigns.
- Users should download apps only from "official" App stores (e.g., Android GooglePlay, Apple App Store)
- For websites that request sensitive data, you should check to make sure the website address and content are valid
Additional suggested consumer predictions are referenced here: http://www2.fismobile.com/e/4972/2014-06-18/d24vz/677126533ransomware-outbreak/
We have been made aware of fraudulent checks in circulation, appearing to be made out by Destinations Credit Union. These appear to be payments for things like mystery shopping. These checks are not issued by Destinations and we ask that if you are presented with one, that you provide the check and all documentation to:
firstname.lastname@example.org or mail to Fraud Department, Destinations Credit Union, 8767 Satyr Hill Rd., Baltimore, MD 21234.
Monitor Your Credit
Each member is entitled to get a free credit report annually from each of the three major credit bureaus. Just go to annualcreditreport.com to get yours.
Credit Bureau Contact Information
888 397 3742
How to Protect Your Identity When Shopping Online
Useful information on how to shop online safely: Article by Camilla Taylor
Two Loan Scams Claim MD Addresses
Better Business Bureau | Greater Maryland warns consumers that two entities, Certified Lending Group and Wesley Financial Group are targeting persons with poor credit scores. More>>
E-Mail Spoofing Alert!
It has come to our attention that spammers have launched e-mail campaigns that look like messages sent by Destinations Credit Union. We have nothing to do with such spam, we do not send, and have never sent spam email of any sort, and strongly oppose the act of spamming or sending unsolicited commercial email. If you have received such spam email we apologize, but we must emphasize that it is totally beyond our control, and we regret very much that we cannot stop it. We send only legitimate credit union news to those who have signed up to receive it.
What is E-mail Spoofing? (Faking or Forging)
"Email Spoofing" is the latest abhorrent trend in spam. Spammers falsify the header information in their emails to make the email appear to come from whoever they choose. Spammers are now routinely using the e-mail or web site identities of people and organizations on the internet, and using them to send millions of pieces of junk or offending e-mails. Unfortunately most people who receive these emails don't understand what's happening, which is the whole purpose of the spoof.
What To Do
- You have several options of what to do if you receive a spoofed email:
- Report it to your ISP. Redirect the email on as an attachment to your ISP, ensuring that the entire message is included, or cut and paste the header information from the email. This contains the information (originating IP numbers etc) required for anti-spam systems to filter out this junk mail.
- Do not simply 'forward' the message as the essential header information will be lost.
- Do not respond to the message in any way.
- Please do not do anything that might result in Destinations Credit Union being added to spam lists. We are as much a victim of this activity as you.
Email spoofing information
How to combat email spoofing?
Deciphering fake email or posting? The information provided here, describes how to find out where a fake post or e-mail originated from, decipher which machine it came from and who (generally or specifically) you should contact.
- Phishing - A criminally fraudulent process of attempting to acquire sensitive information by masquerading as a trustworthy entity in an electronic communication; typically carried out by e-mail or instant messaging, and often directs users to enter details at a fake website whose look and feel are almost identical to a legitimate one.
- Smishing - A form of criminal activity using social engineering techniques similar to phishing; typically carried out by SMS/text message, and often directs users to download a program/file which turns out to be a virus.
- Vishing - The criminal practice of using social engineering over the telephone, the term is a combination of "voice" and "phishing"; typically used to steal credit card numbers or other information.
Identity Theft: Deter, Detect, Defend
The Federal Trade Commission offers good information on detecting identity theft, defending yourself against ID theft, and helps victims through the process of recovering when their identity has been stolen. This site offers streaming video demonstrating how identities are stolen and the devastating effects it can have on individuals.
Should You Purchase ID Theft Protection? See what the FTC has to say on the subject.
Visit this site to learn about a wide range of mail fraud scams.