Phishing

Fraudsters may send you an email that looks like it has come from Arizona State Credit Union. These emails ask you to go to a website through a link within the email. The website may also look like Arizona State Credit Union's website, and there you will be asked to provide your confidential information.

This is called "Phishing" or "Spoofing" and it is the most common type of online fraud. Fraudsters send these Phishing messages to a large list of random email addresses, hoping to reach a few members with the email. The Spoof websites are designed to steal personal and financial information.

It is very important to remember that Arizona State Credit Union never asks for personal information through text message, email or by phone. Emails may contain links to our website or other sites related to our industry. If you prefer not to use the link in the email, please visit our website by typing our web address into your web browser. Please contact us immediately if you ever have questions or concerns about suspicious emails you may have received from us.

How to Identify a Phishing Email Scam

  • Fraudulent Emails Ask For Your Personal Information. They often ask you to follow a link where you are asked to provide personal account information such as your account number, password, Social Security Number, ATM/Debit or Credit Card number, PIN or other information that only you need to know.
  • Link to a Website. The link usually takes you to a website that looks legitimate and the website or login page asks for your confidential information. Remember, Arizona State Credit Union never asks you through email to follow a link to enter confidential information.
  • Urgency. A typical fraudulent email wants you to take immediate action. Often these emails threaten to close accounts or claim that your information has been compromised. The fraudsters' goal is to make you act quickly without thinking about what you're doing.
  • Too Good To Be True. Sometimes fraudulent emails claim that you have won money, a prize, or a gift. Just like the threatening emails, they are trying to get you to act without thinking. They claim to be able to deposit funds into your account if you provide your account number, password, Social Security Number, ATM/Debit or Credit Card number, PIN or other information that only you need to know.

Phishing Scam emails are sometimes very difficult to identify as fraudulent because fraudsters are able to make their emails and websites look legitimate. If you ever have a question or doubt, stop and call the Credit Union

View Recent Fraud Alerts

What to do if you have responded to a phishing scam email


How Fraudsters Find Email Addresses

Fraudsters use email addresses from publicly available sources or through randomly generated lists. If you receive a fraudulent email that appears to come from Arizona State Credit Union, this does not mean that your email address, name, or any other information has been taken from Arizona State Credit Union. These emails are randomly sent to both members and non-members with the hope that some of the emails will actually reach a member. This is why the scam is called "Phishing"-just like fishing, the fraudsters are hoping to "catch" a few numbers from a large group of people.
 

How to Protect Yourself

  1. Never provide your personal information in response to an unsolicited request, whether it is over the phone or over the Internet. Emails and Internet pages created by fraudsters may look exactly like the real thing. They may even have a fake padlock icon that ordinarily is used to represent a secure site. If you did not initiate the communication, you should not provide any information.
  2. If you believe the contact may be legitimate, contact the Credit Union. The key is that you should be the one to initiate the contact, using contact information that you have verified yourself.
  3. Never provide your password over the phone or in response to an unsolicited Internet request. Arizona State Credit Union will never ask you to verify your account information through a link in an email.

You Can Help Report Fraud

Common Types of Phishing Scam Emails

Security Threat
These emails often threaten that your account has been "compromised," "locked," "frozen," etc., and that you need to take immediate action. Sometimes they take a more friendly tone and claim that you simply need to "update" information. The common trait is that they give you a link to follow to enter confidential information.

Security Update
Sometimes the fraudsters will take wording directly from our website that appears to be part of our online security improvements. However, just like other Phishing Scams, the email contains a link for you to follow to a spoof website. If you follow the link to the spoof website, you will be asked for confidential account information.

Survey
Sometimes an email claims that you will receive money for completing a survey. Like most other phishing emails, they ask you to follow a link to their spoof website. They even contain a full survey for you to complete. At the end, they claim to deposit funds into the account if you provide your account information or your card number.

There is also a common phone scam that uses the same techniques as Phishing, called Vishing, or Voice Phishing. Click here to learn more about Vishing.

If you have not responded to the Phishing Scam Email, your account and personal information remain secure.