CABRILLO CREDIT UNION | Sharp Division | Carlsbad City Division

Please keep all your financial and personal information safe! There are many scams out there to cleverly get your personal and financial information. The most recent scam involves using your phone. Several people have contacted the credit union stating they have received automated phone calls informing them that their Cabrillo ATM or Credit Card is no longer valid.

This scam is just like any phishing scheme where the perpetrators systematically call phone numbers in hopes of reaching a valid Cabrillo member who will provide a card number, expiration date, PIN, etc. through the touchtone phone. This information can then be used to make a counterfeit card for ATM withdrawals.

REMEMBER, the credit union will NEVER ask you to send your personal information via email or telephone! If you have been victimized by a spoofed e-mail, website, or phone call, please call the credit union right away at 858-547-7400.

Here is how to protect yourself from future Phishing Scams: Never respond to an unsolicited email that asks for personal financial information. If you think this may be a legitimate message, call the credit union right away to verify them as the sender. Report suspicious emails to the Internet Crime Complaint Center at www.ic3.gov. This is a partnership between the FBI and the National White Collar Crime Center.

Have you made an online purchase recently? Have you been asked for your MasterCard SecureCode? This is a new service to enhance your existing MasterCard account. A private code means added protection against unauthorized use of your card when you shop at participating online merchants.

Once you've registered and created your own private SecureCode (which you may do at this website), you will be automatically prompted at checkout to provide your SecureCode each time you make a purchase with a participating online merchant. Your SecureCode will quickly be confirmed by your financial institution, and then you may complete your purchase. Your SecureCode will never be shared with the merchant. It's just like entering your PIN at an ATM.

When you correctly enter your SecureCode during a purchase at a participating online merchant, you confirm that you are the authorized cardholder and your purchase is then completed. If an incorrect SecureCode is entered, the purchase will not be completed. Even if someone knows your credit or debit card number, the purchase cannot be completed without your SecureCode at a participating merchant.

If you would like further information regarding the MasterCard SecureCode, or if you'd like an online demonstration, please visit MasterCard© SecureCode™.

In an effort to prevent potential fraudulent activity on your card, the credit union implemented a security procedure that will deny transactions that seem potentially fraudulent. To make sure unusual purchases do not get declined, please keep personal information updated, especially phone numbers, and inform the credit union at 858-547-7400 when you will be making larger purchases than normal (such as a big-screen TV or expensive jewelry), or if you'll be making purchases while out of the country. In the event there is unusual activity on your card, our Fraud Department will contact you. This security procedure will help protect you from fraud and help prevent loss.

E-MAIL "PHISHING" - Phishing (pronounced "fishing") is a scam to steal valuable information such as credit card and Social Security numbers, user IDs, and passwords. In phishing, also known as "brand spoofing," an official-looking e-mail is sent to potential victims pretending to be from their ISP, credit union, bank, or retail establishment. E-mails can be sent to people on selected lists or on any list, and the scammers expect some percentage of recipients will actually have an account with the real organization.

LAND LINE TELEPHONE "VISHING" & VoIP (INTERNET PHONES "VISHING") Vishing, (Voice phISHING) also called "VoIP phishing for the Internet phones," is the voice counterpart to phishing. Instead of being directed by e-mail to a Web site, an e-mail message asks the user to make a telephone call. The call triggers a voice response system that asks for the user's card number or other personal or financial information. The initial bait can also be a telephone call with a recording that instructs the user to phone an 800 number or another area code within or outside of the United States. In either case, because people are used to entering card numbers over the phone, this technique can be effective. Voice over IP (VoIP) is used for vishing because caller IDs can be spoofed and the entire operation can be brought up and taken down in a short time, compared to a land line telephone.

TEXT MESSAGE "SMISHING" - Smishing (SMS phISHING) is the mobile phone counterpart to phishing. Instead of being directed by e-mail to a Web site, a text message is sent to the user's cell phone or other mobile device with some ploy to click on a link. The link causes a Trojan to be installed in the cell phone or other mobile device.

New! Mail LETTER "PHISHING" - This new scam occurs where the phisher is creating a letter and sending it through the mail to individuals to respond to the letter by calling a phone number. The phisher outlines in the letter that the individual must respond for their own protection. This scam is used in conjunction with other channels to steal valuable personal and financial information of the individual receiving the letter.

• Report suspicious Internet sites and emails to the government and for additional protection tips visit http://www.ic3.gov or the Federal government's consumer information center at http://www.consumer.gov/Tech.htm.
• A good resource is Anti-Phishing Working Group at http://www.antiphishing.org/index.html.
• If you have been victimized by a spoofed e-mail or web site, you should contact your local law enforcement, US Postal Inspector, or FBI.

For the latest facts and statistics about identity theft, visit http://www.idtheftcenter.org.

If you have been the victim of identity theft, contact:
Federal Trade Commission:
FTC, Consumer Response Center
600 Pennsylvania Avenue
NW, Washington D.C., 20580
1-877-382-4357

Fraud Units at the three principal credit reporting agencies:
Equifax
1-800 525-6285
P O Box 740250
Atlanta, GA 30374-0250

Experian (formerly TRW)
1-888-397-3742
P O Box 1017
Allen, TX 75013

Trans Union
1-800-680-7289
P.O. Box 6790
Fullerton, CA 92634

Contact the major check verification companies if checks were stolen or bank accounts were set up by an identity theft:
a. ChexSystems 1-800-428-9623
b. TeleCheck 1-800-710-9898
c. SCAN 1-800-262-7771