Current Phishing Scams
Recently, there have been multiple e-mail fraud attempts, known as "Phishing", that were initiated via e-mail sent to both the general public and to some credit union members that appeared to be from NCUA. This false e-mail asked for the recipient to click on a link to verify their credit union account registration. If the recipient proceeded to do so, the link directed them to a false website and asked for their credit union account number and PIN, along with other personal information.
NCUA does not ask credit unions members for such personal information. Anyone who receives an e-mail that purports to be from NCUA and asks for account information should consider it to be a fraudulent attempt to obtain their personal account data for an illegal purpose and should not follow the instructions in the e-mail.
If you responded to such an e-mail and provided any confidential account information, please notify your credit union immediately of the scheme. You should also change your account's PIN, and take any additional action recommended by your credit union to protect your account.
If you feel that you have received a fraudulent phishing e-mail purportedly from NCUA please forward the entire e-mail message to Phishing@ncua.gov.
Additionally, you can file formal complaints concerning any suspected fraudulent e-mail with the Internet Fraud Complaint Center (IFCC) at www.ic3.gov. The IFCC is a partnership between the Federal Bureau of Investigation, and the National White Collar Crime Center.
If you receive an e-mail that appears to be from NAFCU and instructs you to go online to provide or verify or confirm financial or sensitive personal information, don't believe it: NAFCU will never send you an e-mail asking for your credit or debit card, credit union or bank account information, Social Security number, login information (such as a PIN) or similarly sensitive data.
NAFCU's name, logo, and other graphics have been used fraudulently in numerous "phishing" e-mails aimed at tricking people into providing sensitive financial and personal data on replicated Web sites. Giving these phishers your account and other sensitive information may expose you to identity theft and other types of fraud. If you have already complied with a phishing e-mail, you should contact the institution where you maintain your account and have the information changed immediately.
NAFCU has reported the phishing e-mail activity to the Internet Crime Complaint Center run by the FBI and the National White Collar Crime Center.
If you want to verify that the e-mail you've received is fraudulent dial 703-522-4775, ext. 263. To report the incident to law enforcement, visit the Internet Crime Complaint Center at www.ic3.gov.
CUNA is aware of new phishing emails in the form of surveys asking for feedback on your financial institution. These messages are scams and should be deleted. The messages offer awards up to $500, but there is no monetary award for filling out the form -- this is an identity theft scam. CUNA would never ask individuals to submit personal information via e-mail.