Fraud Prevention

Security Alert. A picture of a thief who is lerking to steal you identity.

Knowledge is Power When it Comes to Fraud Prevention.

Be Aware of Phone Number Spoofing Fraud Attempts!

Phone spoofing is when a fraudster makes another person’s or company’s phone number appear on the receiver’s caller ID in an attempt to impersonate that individual or organization.  If you receive a phone call, email or text claiming to be from TFCU, asking for personal identification, member number or account information, DO NOT RESPOND!

Fraudsters may attempt to “spoof” legitimate TopMark phone number(s).  Legitimate calls, emails or text from TFCU would never contain a request for account information or a link to click on. 

________________________________________________________________________

Here are 10 common practices scammers to attempt to fool you and commit fraud. 

  1. Faking an emergency. Scammers pretend to represent an official organization (like the IRS) and call, text or email members to demand immediate money for bogus issues. They use threatening phrases such as, “Your 401k plan will be frozen,” “Your passport will be seized,” or “The maximum sentence for this crime is five years in prison and a $10,000 fine,” to create a sense of urgency.
     
  2. Expressing that resistance is ineffective. Once the scammer has created the emergency and instilled panic, they reinforce there is nothing the member can do to remedy the situation. In the case of an IRS scam, they often tell the member they must cooperate or face arrest or fines.
     
  3. Rewarding cooperation with encouraging comments. Scammers sometimes try to play the part of a trusted friend, offering help and a way out of the emergency that would provide relief to the member. They often tell the member they seem like a good person and offer to help them with the situation at hand.
     
  4. Not allowing victims to hang up until they pay up. Phone scammers say it is a one-time opportunity for the member to take action to avoid further consequences, and if the member hangs up the phone, he or she will not be offered another chance to resolve the problem.
     
  5. Using official sounding titles and names for ordinary things. Scammers try to sound impressive to gain members’ trust. They use official sounding titles and names for merchants and everyday items. Examples include referring to a gift card as an “electronic federal tax payment system,” or instead of using the name of a store, they call it a “government-affiliated payment processor.”
     
  6. Stating they are not asking for personal information upfront. Scammers know asking for personal information could raise alarm bells for the member. Instead, they may say they are not looking to obtain this information, or they are not looking for an exchange of funds over the phone, which may cause members to let down their guard. This is why scammers often use gift cards to extract payment.
     
  7. Signaling to members they are being recorded. In an attempt to sound legitimate, scammers say the call is being recorded and monitored by the IRS.
     
  8. Threatening to alert the media. Scammers go to great lengths to keep suspicious or wary members on the phone, and even go so far as to threaten to contact the media on behalf of the IRS if the member does not comply with what is being asked. This is used as a last resort to salvage a conversation that might not be going well.
     
  9. Exploiting member engagement. Once scammers have members hooked, they may transfer the call to another fake agent in an attempt to further legitimize the call. Often, these scamming “call centers” employ multiple scammers who work together to make the initial call and then close the scam. Scammers are highly organized: some are responsible for getting members hooked, while others focus on closing the deal by extracting payment. They may say, “Please hold on the line, I am transferring the call to my senior treasury specialist,” or “Thanks for waiting, this is senior officer Matthews from the account department. My badge ID is…”|
     
  10. Insisting members keep quiet about special offers. If a scammer offers a special tax break, for instance, they will often demand the member not discuss it with anyone, as it would prevent them from getting the settlement. 

_________________________________________________________________________________

Suspicious Call/Email

Please remember that TopMark Federal Credit Union will never call or email you requesting your personal account information (we already have that).  Beware of calls or emails requesting account numbers, credit or debit card numbers, social security numbers, usernames or PIN numbers.  Typically these emails will claim that you have to respond quickly or your account/cards will be closed or blocked.

______________________________________________________________________________________

Card Compromises:

What is a card compromise?  A compromise is when there is a “potential” or “factual” compromise of your card information.

How does this happen?  Generally it happens when an online vendor, point of sale retailer or even a card swipe machine at a gas station, for example, has been compromised or breached.  Normally there has been no fraudulent activity but due to the card number being breached, there is potential.  If 1, 2 or 10 cards are compromised, that doesn’t mean that all cards have been compromised.

How will you know?  If TopMark is made aware during normal business hours, you will receive a call at your phone number on record with us directly from one of our members service rep’s.  If after hours, our card servicer will call you on your number of record and at NO TIME WILL TOPMARK OR OUR CARD SERVICER ASK YOU FOR YOUR INFORMATION, we have that on file and will not ask you for this information.  At that time we will explain your options and work to restore your card services with the utmost speed and efficiency.

What if I do get a call and they ask for my card number?  Without a doubt, it’s a scam, do not disclose any information and terminate the call.  If you did disclose information, contact TopMark or our card servicer and we will assist you.

_________________________________________________________________________________________

Phishing

Phishing is a form of fraud that is commonly employed via email. Phishing attempts occur when an email is sent and may look legitimate but is not. Phishing scams, as in fishing for information, typically rely on email recipients recognizing familiar products or websites. The messages will attempt to fool the recipient into revealing sensitive information. The mechanisms used may entice the recipient to (a) click on a link leading to a fraudulent website (although it may appear legitimate), (b) reply to a specific offer or request in the email, or (c) download an infected attachment.

Here are some tips to help you avoid becoming a victim of these threats:

  • Think before you click. Be cautious with any message you don’t expect or that doesn’t make sense. If you get a message from the New York police about a speeding ticket but you have not been driving in NY recently, it’s bogus. Delete immediately. Even if you had been driving in NY, ask yourself whether it makes sense that the NY police have your e-mail address. Probably not.
     
  • Be wary of offers of something for nothing. These are most likely scams. Won the lottery without entering? A free gift card from a store you don’t patronize? Likely bogus.
     
  • Carefully scrutinize the destination of links in e-mails and text messages. Hover your mouse/finger over the link to see where it really goes. Clever phishers sometimes include valid links among the malicious links in the e-mail in a further attempt to disguise their intent.
     
  • Do not respond to unsolicited requests for sensitive information, whether by e-mail, phone, or text message. If an unsolicited caller starts asking for personal information, it’s time to end the call.|
     
  • Do not submit personal information via website pop-up screens. Legitimate organizations do not ask for personal information via pop-ups.

____________________________________________________________________________________

The Federal Trade Commission, spam@uce.gov

The company that the email reportedly came from, companies may have a “to report abuse” email address.

Just remember to include the entire original email with its original header information when you forward to the FTC or other entity when reporting phishing.

For more information on scams, visit the FBI’s website,

http://www.fbi.gov/scams-safety/fraud/fraud or the NCUA’s website, http://ncua.gov/Resources/FraudAlert/index.aspx.

________________________________________________________________

Debit and Credit Card Fraud

TopMark does use activity monitoring on the Debit and Credit Cards issued through the Credit Union.  However, when the monitoring service contacts you, they will not ask for your card number or PIN, they will simply verify your most recent transactions.

To report your Debit/ATM or Credit Card lost or stolen, you can call any of the branch offices during regular business hours.  If you need to report a card lost or stolen after hours:

To Report a Lost or Stolen MasterCard ATM/Debit Card:
Monday-Friday 9-5pm   419-223-5886
After business hours: 1-888-918-7848

Follow the most recent scams at: http://www.slamtheonlinescam.com/