These are examples of common fraud schemes (not necessarily experienced by NEFCU members).
Many scams involve fees or other payments sent in advance. Here are some common scenarios:
You get an email, phone call or text message informing you that fraud has been detected on your account. This communication may even appear to come from your own financial institution. You are asked to provide information, usually a credit card number or log in credentials, to resolve the supposed fraud or to prevent the account from being closed.
Generally done by phone, the fraudster takes advantage of your desire to be helpful. In a common version, you receive a call telling you that your grandchild needs money, sometimes with further explanation that they have been in an accident or arrested. The fraudster asks you to wire or send money through Western Union, further advising "Don't tell Mom and Dad", so the grandchild won't get in trouble.
You are presented with online offers for protective software (that will supposedly reduce your risk of online fraud). The fraud may involve illegitimately capturing credit card information, or installing malicious software such as a keystroke logging program.
You see a pop-up message on your computer that tells you your computer has a virus. The message may look similar to legitimate anti-virus software messages. In some case, the fraudster is trying to sell you bogus security software that does little or nothing. In other cases, this fraud may involve illegitimately capturing credit card information, or installing malicious software such as a keystroke logging program. If you click to accept a download, you have likely allowed the installation of malicious software and and given control of your computer to the fraudster.
You receive an email or phone call whose purpose is supposedly to confirm your recent online purchase of a cell phone, laptop, TV or other product that you did not buy. The communication instructs you to make a contact if you did not make that purchase. From there your credit card information is requested.
You come across or receive a business proposition or job offer (usually proposing a work-at-home arrangement), where you are asked to be a re-shipper of goods or money orders. You are asked to cash a check (which is fraudulent) or front the money to obtain merchandise, and then to ship it elsewhere. The shipping address may even be a second unwitting victim, who re-ships again (inadvertently committing a crime).
This is also known as “Man-in-the-Browser” attack or Banking Trojan.
Your web browser may be compromised by a malicious software program or malware. When an infected web browser views financial web sites, the malware activates and can perform a number of fraudulent activities such as collecting private information, modifying transactions, and even configuring the way web pages are displayed so that what you see is not what the web site sent. Common names for various types of man-in-the-browser malware include Zeus, URLzone, and SilentBanker.
If something sounds too good to be true, it probably is!
Check out these helpful sites to learn even more about fraud prevention.
Identity Theft Resources
Snopes.com — This site helps to distinguish between truth and urban legend!