A new twist to an old scam known as "card cracking" is currently making the rounds targeting college students. The scam unfolds as follows:
Students are contacted through social media or email promising $1,000 to $3,000 for a small amount of work.
The students are then asked to provide their bank account details or in some cases encouraged to open a new account.
The students are then told to deposit the checks they receive into the account and later make large withdrawals before the bank determines the checks are worthless.
Please note that no contest, social media promotion, or job opportunity requires that people hand over their bank cards, PIN numbers, or online banking credentials. Never give anyone a crack at your account.
A cyberattack known as “Dyre Wolf” installs malware by tricking users into clicking on a malicious email. The malware monitors activity and waits for users to log into a bank website. Dyre Wolf then produces a pop-up warning indicating the website is having technical problems and to call a help center at a number the criminals provide. Attackers answer the phone pretending to be bank representatives and attempt to get the customer’s password. Once they have the password, they transfer money out of the account. This is yet another reminder to employ sound security practices.
In addition to using e-mails to obtain personal information, perpetrators also use phones to collect personal information like your account number, social security number, or your debit and credit card information. You may receive an automated call stating that your account or card number has been compromised and a request is made to contact a specific number to resolve the issue.
The bank would NEVER contact you and ask for your debit or credit card numbers. If you receive a message like this simply ignore or delete it. This serves as further reinforcement to never respond to unsolicited messages requesting account information. If this occurs, immediately hang up and contact us to report the details of the scam, as this phishing scam is trying to get your account number.
Pharming scams use e-mail solicitations to lure victims to a bogus site. When the customer clicks on the link provided in the e-mail, malicious software is installed to re-direct the user to a fraudulent site where personal information can be requested by the scammer. To verify you are visiting a valid website, check for a certificate from a service like VeriSign®. You can locate this information by clicking on the padlock icon that appears in the URL address to view the sites security certificate. Be sure to verify the name on the certificate matches the name on the site. Be sure to run anti-virus and anti-spyware software and update your computer with the latest security patches and firewalls.
A visitor to the Bank’s website may be presented with bogus solicitations to receive a copy of your credit report. This solicitation is caused by malware, spyware, or adware on the visitor’s computer. The solicitation is in no way sponsored or endorsed by the Bank. It is recommended that anyone receiving this solicitation run a full scan with their antivirus and or antispyware program.
Another scam often used is key logging. Key logging software is installed on your machine without your knowledge through an unsolicited e-mail or download of software that infects your machine. The unwanted software is often referred to as “spyware”, “adware” or “key logging software” and records everything you type on your computer, including passwords. Some symptoms that your machine may be infected by unwanted software include:
Slowing of your computer
Increase in unsolicited e-mails
Strange browser behavior including increased pop-ups and unexplained changes to your home page settings and favorites
To minimize the risk of key logging, make sure you have up-to-date virus software installed and updated and avoid downloading information from sites or sources that are unfamiliar.