Scams... Scams... And more scams. Alerts from consumers notifying various agencies of marketplace scams are noted below:

January 15th, 2013 - Malicious Banking Spam Campaigns Reported – We have been made aware that a group of hackers is sending out millions of bogus messages made to look like services messages from many of the top US banks. This attempt to steal banking credentials and credit card numbers prompts the recipient to download an attachment and register with an encrypted messaging system. Clicking this link installs a Trojan. This email was not sent by Webster, and customers should not follow the instructions included in the email. As a reminder, Webster Bank will never ask for your PIN or account information in any email or via the internet. Please see the fraudulent email information below.
Subject: You have received a new encrypted message or a secure message from [XYZ] Bank
Message:
The bank is concerned about your privacy and has come up with a system so their customers can securely exchange emails containing personal information.
December 19th, 2012 - Email Phishing Attempt – We have been made aware of an email in circulation, alerting the recipient that a wire transfer was made. This email was not sent by Webster, and customers should not follow the instructions included in the email. As a reminder, Webster Bank will never ask for your PIN or account information in any email or via the internet. Please see the fraudulent email information below.
From: WebsterWeb-LinkNotifications@WebsterBank.com
Subject: Wire Released
October 25th, 2012 - Email Phishing Attempt – We have been made aware of an email in circulation, alerting the recipient to a problem with Direct Deposit, and asking the recipient to click on the link provided in the body of the email. This email was not sent by Webster, and customers should not follow the instructions included in the email. As a reminder, Webster Bank will never ask for your PIN or account information in any email or via the internet. Please see the fraudulent email information below.
From: noreply@direct.nacha.org
Subject: Rejected Direct Deposit No. XXXXXXXXXXXX
Tax Refund Fraud and Related Identity Theft Advisory

March 2, 2012  – Fictitious correspondence is circulating, allegedly issued by the Office of the Comptroller of the Currency (OCC) regarding funds purportedly under the control of the OCC. Correspondence may be distributed via e-mail, fax, or postal mail. Any document claiming that the OCC is involved in holding any funds for the benefit of any individual or entity is fraudulent. The letters may indicate that funds are being held by the OCC, the U.S. Department of Homeland Security, or the U.S. Department of Justice.
Malicious emails
The CFPB Blog included a consumer advisory that some businesses have received emails that appear to have been sent from the CFPB indicating that a “consumer complaint regarding your company” had been received. The agency indicates that it did not send the emails.
January 30, 2012  – Email Phishing Attempt – We have been made aware that the email below has been sent to Webster customers. These emails are not from Webster Bank and are fraudulent. Customers should not respond by clicking on any of the links.
From: 571031075Businessq Paymentsc Department <butlerbenjamin38@yahoo.com>
Subject: Re:Websterbank Business Account Canceled 1c9818bfd31ea40f
62C2A26F12C6.TicketтDDEAB53C9D18ур
From: Apurva Trusha <trushacapurva1969@yahoo.com>
Subject: Websterbank Transaction was Updated #43c954d25b1cf7a7
Report#482605591294
Nov 21, 2011 – Email Phishing Attempt – We have been made aware that the email below has been sent to Webster customers.. These emails are not from Webster Bank and are fraudulent. Customers should not respond by clicking on any of the links.
From: Emery Harrington [nancijo.atkinson@sygmanetwork.com]
Subject: ACH rejection due to system malfunctioning
This report is mailed to you concerning the ACH payment (ID:
128671971688) that was recently sent from your account.

The current status of the above mentioned transfer is: failed due to the techincal error. Please view the report below for details:

Click Here

Yours faithfully,
Emery Harrington
2011 NACHA - The Electronic Payments Association 13450 Sunrise Valley Drive, Suite 100 Herndon, VA 20171
From: Clara Roth [deirdre.mcinerney@cocosorb.com]
Subject: ACH payment error notifiaction
This message applies to the ACH transfer (ID: 87155428408) that was recently sent from your account.

The current status of the referred transaction is: failed due to the techincal fault. Please view the more information in the report below:

Click here

Sincerely yours,
Clara Roth
2011 NACHA - The Electronic Payments Association 13450 Sunrise Valley Drive, Suite 100 Herndon, VA 20171

Nov 2, 2011 – Email Phishing Attempt – We have been made aware that the email below has been sent to Webster customers. This mailing was not sent by The Federal Deposit Insurance Corporation (FDIC) and customers should not respond by clicking on any of the links.

From: information@federalreserve.gov [information@federalreserve.gov]
Subject: Your Wire Transfer, ID01643469211741
Webster Bank
The Outgoing Wire transaction , recently sent from your bank account , was cancelled by an intermediary or beneficiary bank.
Please click here to view details
--------------------------------------------------------------------------------
This service is provided to you by the Federal Reserve Board. Visit us on the web at http://www.federalreserve.gov.

Oct 21, 2011 – Email Phishing Attempt – We have been made aware that the email below has been sent to Webster customers. This mailing was not sent by Webster and customers should not respond by clicking on any of the links.

From: Webster Bank [onlinebanking@websteronline.com]
Subject: Important information regarding your Webster Bank Online account
Webster Bank
Our Valued Customer,
We have recently discovered that different computer have logged into your online Banking account and multiple failure in security question and answer during the log-on. We now need you to re-confirm your online Banking Identity. If this is not completed by 26th October, 2011, We will be forced to suspend your account indefinitely, as it may have been used for fraudulent purposes.
Click here to Verify MyAccounts
Thank you for your understanding as we work together to protect your account.

July 19, 2011 – Email Phishing Attempt – The Federal Deposit Insurance Corporation (FDIC) has received numerous reports of fraudulent e-mails that have the appearance of being from the FDIC.

The e-mails appear to be sent from various "@fdic.gov" e-mail addresses, such as "protection@fdic.gov," "admin@administration.fdic.gov," or "service@admin.fdic.gov."

They have various subject lines such as "Update for your banking account," "ACH and Wire transfers disabled," and "Banking security update."

The fraudulent messages state:

"Dear clients,
Your account ACH and Wire transactions have been temporarily suspended for your Security, due to the expiration of your security version. To download and install the newest Updates, follow this link. As soon as it is set up, your transaction abilities will be fully restored. Best regards, Online security department, Federal Deposit Insurance Corporation."

These e-mails and links are fraudulent and were not sent by the FDIC. Recipients should consider these e-mails an attempt to collect personal or confidential information, or to load malicious software onto end users' computers. Recipients should NOT access the link provided within the body of the e-mails and should NOT install any related files.

March 28, 2011 – Email Phishing Attempt – Some customers have reported receiving the e-mails shown below. These emails are not from the Federal Reserve Board or NACHA, both are fraudulent. Customers should not respond by clicking on any of the links.

Please refer to the Please provide the following information to the customer section below for assistance in addressing this with affected customers.

From: risk@nacha.org
Subject: Your Wire fund transfer
The Outgoing Wire transaction , recently initiated from your checking account , was not processed by an intermediary or beneficiary bank.

Please click here to view further information


--------------------------------------------------------------------------------

This service is provided to you by the Federal Reserve Board. Visit us on the web at http://www.federalreserve.gov.

From: information@federalreserve.gov
Subject: Your Wire fund transfer
The ACH transfer (ID: 3724252564288), recently initiated from your checking account (by you or any other person), was rejected by the Electronic Payments Association.

Please click here to view details

If you have any questions or comments, contact us at info@nacha.org. Thank you for using http://www.nacha.org.

This message is intended for use by addressee only and may contain privileged and confidential information. If you are not the intended recipient, dissemination of this communication is prohibited. If you have received this communication in error, please delete all copies of the message and attachments and notify the sender immediately.

March 10, 2011 – Fraudulent Letter Scam – We have been made aware that the letter below has been sent to Webster customers. This mailing was not sent by Webster and customers should not respond by calling the toll-free number provided in the letter. The information appears to have been obtained from public records and our customer’s private information has not been compromised.

February 22, 2011 – Email Phishing Attempt – We have been made aware of two emails being sent to Webster customers. The emails, which reference online transfers, ask customers confirm account information by clicking on the link provided in the body of the email. Please view the fraudulent communication below.

These emails were not sent by Webster, and customers should not follow the instructions included in the email. Webster Bank will never ask for your PIN or account information in any email or via the internet.

Dear Account Holder,
Webster Bank is committed to maintaining a safe environment for its community of our personal and business customers.
To protect the security of your account, Webster Bank Employs some of the best advanced security systems in the world and our anti-fraud teams regularly screen the system for unusual activity.
In accordance with Webster Bank user Agreement and to ensure that your account has not been compromised, access to your account was limited.
Your Account Access will remain limited until this issue has been resolved. In order to secure your account and quickly restore full access, we may require some specific information from you for the following reason:
We encourage you to login and access your full information here with the link below.
www.websteronline.com to continue with the verification process.
Failure to verify your account details may lead to account disconnection
Thank you.
Security Department
Webster

From: payments@nacha.org
The ACH transfer , recently sent from your checking account (by you or any other person), was rejected by the Electronic Payments Association. Please click here to view details
Agustin Simmons,
Fraud Department

December 22, 2010 – Email Phishing Attempt – We have been made aware of an email being sent to Webster customers, asking to confirm account information by clicking on the link provided in the body of the email. Please view the fraudulent communication below.

This email was not sent by Webster, and customers should not follow the instructions included in the email. Webster Bank will never ask for your PIN or account information in any email or via the internet.

Subject: Important Customer Service Warning
Dear Account Holder,
Webster Bank is committed to maintaining a safe environment for its community of our personal and business customers. To protect the security of your account, Webster Bank Employs some of the best advanced security systems in the world and our anti-fraud teams regularly screen the system for unusual activity.
In accordance with Webster Online Banking user Agreement and to ensure that your account has not been compromised, access to your account was limited.
Your Account Access will remain limited until this issue has been resolved. In order to secure your account and quickly restore full access, we may require some specific information from you for the following reason:
We encourage you to login and access your full information here with the link below.
Sign in to Online Banking to continue with the verification process.
Failure to verify your account details may lead to account disconnection
Thank you.
Security Department
Webster Online Banking

December 6, 2010 – Email Phishing Attempt – We have been made aware of an email being sent to Webster customers, asking to confirm account information by clicking on the link provided in the body of the email. Please view the fraudulent communication below.

This email was not sent by Webster, and customers should not follow the instructions included in the email. Webster Bank will never ask for your PIN or account information in any email or via the internet.

Subject: Online Account Suspension
Dear Customer ON-GUARD security Layer to make your Online Access and Transaction Secured. We hereby advise you to follow the Link below to confirm your Account for the Upgrade. To confirm your Account follow the link below to get it Upgraded: Verify Now

November 5, 2010 – Debit Card Phishing Awareness – We have been made aware of phishing attempts over the telephone aimed at obtaining confidential debit card information from Webster customers. These calls are not being initiated by Webster, and customers should not provide any personal information over the telephone related to their accounts. If a Webster customer has a question about the authenticity of a call, please contact one of our branches or the Customer Care Center before giving out any sensitive information.

June 29, 2010 – Email Phishing Attempt – We have been made aware of an email being sent to Webster customers, asking them to verify their email address by clicking on links provided in the body of the email. Please view the fraudulent communication below.

This email was not sent by Webster, and customers should not follow the instructions included in the email. Webster will not ask you to provide or verify complete personal information via the internet.

April 19, 2010 – Phone Fraud Warning – The use of phishing and phone fraud for identity theft is increasing at an alarming rate. Recently reported phishing, vishing (Voice over Internet Protocol) and conventional phone scams have been increasingly exploiting the unease felt by bank customers in the midst of the current economic downturn.

Vishing is the criminal practice of information gathering under false pretenses for fraudulent purposes through the use of Voice over IP. Voice over IP also allows caller ID spoofing, which means that the telephone number displayed on the recipient's caller ID is not the actual originating number. A typical attack involves calling a bank customer, and claiming their account was suspended, deactivated, or terminated. Targeted individuals may be asked to confirm their bank account information, or in most cases, may be directed to contact their bank via a telephone number provided by an automated recording or an email. Upon calling the telephone number, the recipient is greeted with "Welcome to the bank of ..." and then requested to enter their card number in order to resolve a pending security issue.

Recommendations

  • Be Suspicious of unsolicited phone calls, visits, or email messages from individuals asking about employees, or soliciting sensitive client or confidential company information. If an unknown individual claims to be from a legitimate organization, try to verify his or her identity directly with the company. Ask for a reference number and advise the caller that you will contact them at their publicly identified call center number.
  • Filtering calls. Most experts recommend the same common sense that will keep you from getting into trouble online: Do not reveal personal or financial information over the phone or email to unknown sources. Whenever you need to call someone, such as a banker, who would ask you for verification of personal information, make sure you got that phone number from an official directory, card statement, or Web site.
  • Act immediately if you’ve been hooked by a phisher. If you provided account numbers, PINS, or passwords to a phisher, notify the companies with whom you have the accounts right away.

Report Phishing, whether you’re a victim or not.

Tell the company or agency that the phisher was impersonating. You can contact Webster Bank's Security Hotline at 1 (800) 966-0256 for assistance. Specialists are available 7:00 a.m. to 10:00 p.m., 7 days a week. You can also report the problem to law enforcement agencies through NCL's Fraud Center, www.fraud.org. The information you provide helps to stop identity theft.

For information about how to put a “fraud alert” on your files at the credit reporting bureaus and other advice for ID theft victims, contact the Federal Trade Commission’s ID Theft Clearinghouse, 877-438-4338, TDD 202-326-2502.

Sources

US-CERT: Avoiding Social Engineering and Phishing Attacks http://www.us-cert.gov/cas/tips/ST04-014.html Internet Crime Complaint Center (IC3): Vishing Attacks Increase http://www.ic3.gov/media/2008/080117.aspx

March 10, 2010 – United States Census 2010. Important to participate, but safely – The nationwide effort to count every man, woman and child in the United States will be done by mail, over the telephone and in person – but not by computer. All homes will be mailed a 10 question survey on or about April 1 that asks for basic information, including name, age, gender, race, salary range. People will not be asked to provide their Social Security numbers, bank account numbers, political affiliation or any money. Others who live in cities, will be visited by paid census takers who will attempt to collect missing information. The 2010 Census Workers undergo background checks by the FBI. They will carry a badge, Census Bureau canvas bag and a confidentiality notice. People do not have to let a census worker into their home.

To protect yourself from scams, ask to see the badge and identification before answering any questions. If you're still skeptical, you should get a name, an identification number and your case identification number, and then ask the person to wait while you call the U.S. Census Bureau National Processing Center at (866) 226-2864 to confirm the worker's identity before answering any questions.

Fraudulent Activity and Scams - Phishing. - 'Phishing' is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords, social security numbers, and bank account or credit card details by masquerading as a trustworthy entity in an electronic communication. Phishing is typically carried out by email and it often directs users to enter sensitive information at a fake web site whose look and feel are almost identical to the legitimate one.

Other Scams.

  • The Census Bureau does not send emails about participating in the 2010 Census
  • The Census Bureau does NOT ask for donations or contributions.
  • The Census Bureau never:
    • Asks for your full social security number
    • Sends requests on behalf of a political party
    • Requests PIN codes, passwords or similar access information for credit cards, banks or other financial accounts.

How to report scams and bogus Census web sites - If you believe you have been contacted as part of bogus or fraudulent activity falsely representing the Census Bureau:

  • In Person Scam
    • Check for a valid Census ID badge
    • Call your regional office to verify you are in a survey
    • If you question any phone call, confirm that the caller is a legitimate Census Bureau employee by calling 1-866-226-2864.
  • Email Scams
    • E-mails should be ignored, too, as the government is not using the Web to conduct its survey
    • If you think it is a bogus email, do not reply or click on any links within the email
    • Do not open any attachments. Attachments may contain code that could infect your computer
    • Forward the email or web site URL to the Census Bureau at ITSO.Fraud.Reporting@census.gov. After you forward the email to the Census Bureau, delete the message. You will not receive a confirmation email after forwarding the information to us. The Census Bureau will investigate the information and notify you of its findings.
  • Mail Scams

Is your survey legitimate? - You may further verify if a collection activity is legitimate by calling your regional census office regarding mail surveys, and our National Processing Center for phone surveys. Other questions may be answered through our Are You In a Survey?

  • Locate An ATM/Branch
Report suspicious Webster email.
Legal