Phishing is defined as "the practice of luring Internet users to a fake website by using authentic-looking email in an attempt to steal passwords, personal information, or introduce a virus attack."
Further, it generally utilizes a website made to look similar, if not identical, to that of a legitimate financial institution or other service providers, such as a Visa credit card provider or the Federal Deposit Insurance Corporation (FDIC).
There are numerous methods employed to compel an Internet user to divulge personal information. Some such techniques include but are not limited to the following:
Avoid account closure/service interruption
Suspicion of fraud/phishing
Requests for charitable donations
Get rich quick schemes
Why It Is Important To Protect Yourself
Identity Theft is the fastest growing act of fraud in the United States. With the right information an identity thief can open financial accounts and credit lines in your name. Cash can be withdrawn or checks can be written against your existing accounts. Apartments can be rented and utility services can be established.
However, phishing scams are not limited to identity theft. For example, Visa has reported a rise in fraudulent PIN-based transactions believed to be the result of online phishing scams. The cardholder responds to a phishing email and in the response the cardholder provides personal information, such as account and PIN numbers. The criminal encodes the account number and PIN on either a counterfeit card or "white plastic" - any plastic card with a magnetic stripe. These cards are then used for withdrawals at ATM's around the world. Additional information about phishing can be found at www.visa.com/phishing.
National Bank's Email Policy
From time to time National Bank may contact you by email, however we do not send emails requesting members to update their account information.
National Bank does not request personal information via email unless the communication was first initiated by a member request.
National Bank highly recommends that the provision of any personal information be made by contacting us directly at 1-800-717-3991.
Tips To Avoid A Phishing Scam
Be suspicious of any emails requesting personal information.
Do not reply to suspicious emails and do not click on a link within suspicious email messages.
Contact the business/organization that is claimed to have sent the email directly. Use a published phone number or manually type the web site address into your web browser.
Never send personal information (e.g. credit or debit card number, Social Security number, or PIN) in response to an email request from anyone or any entity.
Report any suspicious emails to the business/organization claimed to have sent the email.
What To Do If You Suspect You Have Been A Victim Of A Phishing Scam
If you suspect that you may have given personal information in a phishing scam, you should assume that you have in fact done so.
Contact the business/organization relevant to the information provided (e.g. contact National Bank if you provided information regarding your National Bank credit card).
Take steps to closely monitor or close any account in question.
Monitor your credit accounts for signs of Identity Theft such as fraudulent transactions or unauthorized new accounts.
National Bank customers suspecting they are victims of a phishing scam should contact us at 1-800-717-3991.
Electronic thieves have a new method of attack. Because Internet users are learning not to click links in unsolicited emails in order to prevent phishing attempts, these thieves are now "vishing," which is short for "voice phishing."
A vishing attack often starts as an email appearing to be from a financial institution or legitimate online merchant. The individual is instructed to call a phone number to verify account information or because his or her account information has been breached. When a victim calls the number the person asks for personal and/or financial account data. In some instances they may even provide the victim's personal information, such as a credit card number, and ask for confirmation of the number or the three-digit security code on the back.
In other cases, rather than a person, an electronic phone banking application that imitates a real financial institution's phone banking has been known to be used. This application can prompt the caller to key-enter information, which is then captured. Vishers may also impersonate the Caller ID information on a person's home phone.
It's important to be aware of this new technique thieves are using to obtain your confidential information.
What To Do If You Suspect A Vishing Attack
Suspect Email: Do not call the number provided in the email. Call the company directly at a phone number obtained from a reliable source and advise them of the content of the email.
Suspect Phone Call: Do not verbally provide or enter any information via your touch-tone phone. Hang up the phone and dial the company directly at a phone number obtained from a reliable source and advise them of the phone call. If your credit card number was provided to you for verification, call your financial institution directly and ask to have a new card number issued.
If you suspect any of your National Bank accounts have had a vishing attack, contact us at 1-800-717-3991, Monday through Friday.
