Consumer Awareness    
 
 
 		   Posted: August 23, 2006

Clever Customer Survey Phishing Scam

SCENARIO/METHOD: Customer Survey Phishing Scam

The spam e-mail starts with: "The Online department kindly asks you to take part in our quick and easy 5 question survey. In return we will credit $50.00 to your account - Just for your time!"  The e-mail goes on to describe how it only takes two minutes, your answers will help them.  It is well done and looks authentic. Of course, the spam doesn't really take you to the credit union or bank website. Instead, it takes you to a scammer's site in China, Russia, Romania or ??. The web page itself and the initial questions they ask look quite authentic.

The catch, of course, is that they say that in order to credit your $50 reward, they need your credit union or bank User ID and password, as well as your credit card number, expiration date, three digit security number, Social Security number, ATM PIN Number, zip code, mother's maiden name and email address.

The ploy of using a $50 reward for a customer service survey can be an effective phishing lure.

Be Educated on "Phishing".

  • Old Hickory Credit Union will never solicit personal/private information via e-mail.
     
  • Never click on the link provided in an e-mail you believe is fraudulent.
     
  • Do not open an attachment to an unsolicited e-mail unless you have verified the source.
     
  • Do not be intimidated by an e-mail or caller who suggest dire consequences if you do not immediately provide or verify information.
     
  • If you believe the contact is legitimate, go to the Old Hickory Credit Union's website (www.ohcu.org) by typing in the site address directly or using a page you have previously book marked, instead of a link provided in the e-mail.
     
  • Use the FTC (Federal Trade Commission) website, http://www.onguardonline.gov/. You can take interactive quizzes designed to enlighten them about identity theft, phishing, spam and online-shopping scams. Elsewhere on the site, you can find detailed guidance on how to monitor their credit histories, use effective passwords and recover from identity theft.

If you are a victim of a "phishing e-mail" take appropriate steps to help protect yourself.

  • Block and reissue the compromised credit/debit cards.
     
  • Report to credit bureau.
     
  • Order credit report.
 

.

 

Copyright 2007 Old Hickory Credit Union.
Equal Housing Lender.