Don't Get Hooked
Protect Yourself Against Phishing Attempts

As part of our ongoing effort to protect you from unauthorized emails that request confidential account information -- so called "phishing"attempts -- we've identified several email scams that targets USE Credit Union Members and Non-Members. The fraudulent email will most likely look like it is coming from USE, using an email such as 'notice@usecu.org' or 'AccountsUpdate@usecu.org', and the email will contain a link that they are requesting you to follow. This link will take you to a site that may LOOK like the USE site, but in fact is a "phishing site", with the only purpose of gathering your personal information.

 Here are some recent examples of phishing emails:

• Verify Credit Card Info
• Verify your account information online
• Requesting to call a TOLL FREE number to inquire about account activity
• Requesting to fill out a survey for $20

USE Credit Union, or any legitimate financial institution, will never ask you to provide or verify your account information over the Internet or via email. No matter how real or legitimate an email request might appear, NEVER respond by giving out confidential information about your financial accounts.

If you ever receive an email in the future that appears to come from USE Credit Union or any other financial institution that asks you to verify personal identity or account information, DO NOT respond. Instead, notify your financial institution immediately.

If you have provided your account information from any other financial institution, call that institution immediately. Never release confidential information unless you initiated the contact and are 100% sure you know the parties you're dealing with.

Phishing by Text Message (SMS-ishing)

SMS-based phishing, or SMS-ishing, convinces a user to click on a link in a SMS message leading them to a fake website from where their personal details can be phished, or to call a phone number in order to gain access to private personal and financial information for the purpose of illegal financial reward.

How to protect yourself against smishers and vishersHere are some tips to help you thwart criminals who may be targeting your mobile device:

• Don’t respond to a text message or voicemail from blocked or unknown numbers. If you don’t know who’s on the other end of the line, there’s a good chance you don’t want to become acquainted.
• Don’t download anything unless you are sure it comes from a trustworthy source. This is especially true of downloads and attachments from blocked or unknown numbers.
• Don’t respond to unsolicited emails, texts or phone calls that request personal information.
• Never click on links or attachments contained within unsolicited emails.
• If you want to go to a merchant or financial institution’s web site, type their URL directly into your browser’s address bar.
• Check out apps before downloading them. Never download an app from a link sent in a text message.
• Some cell phone providers do allow users to forward questionable texts to them so that they can be investigated. Users will want to check with their provider if they have received texts that concern them.
   

Example fraudulent text message:

MSG:  Your account has been blocked. Contact 866-XXX-XXXX to verify your information.

When the number is called, an automated service answers requesting your debit/credit card, or other personal information. Please remember that we will never contact you by text message asking you to verify any of you personal account information.

Read more about protecting yourself from phishing attempts.