Scam Alerts
Equifax Announces Cybersecurity Incident Involving Consumer Information
No Evidence of Unauthorized Access to Core Consumer or Commercial Credit Reporting Databases
Company to Offer Free Identity Theft Protection and Credit File Monitoring to All U.S. Consumers
September 7, 2017 — Equifax Inc. (NYSE: EFX) today announced a cybersecurity incident potentially impacting approximately 143 million U.S. consumers. Criminals exploited a U.S. website application vulnerability to gain access to certain files. Based on the company’s investigation, the unauthorized access occurred from mid-May through July 2017. The company has found no evidence of unauthorized activity on Equifax’s core consumer or commercial credit reporting databases.
The information accessed primarily includes names, Social Security numbers, birth dates, addresses and, in some instances, driver’s license numbers. In addition, credit card numbers for approximately 209,000 U.S. consumers, and certain dispute documents with personal identifying information for approximately 182,000 U.S. consumers, were accessed. As part of its investigation of this application vulnerability, Equifax also identified unauthorized access to limited personal information for certain UK and Canadian residents. Equifax will work with UK and Canadian regulators to determine appropriate next steps. The company has found no evidence that personal information of consumers in any other country has been impacted.
Find additional information at https://www.equifaxsecurity2017.com/
CARD PROCESSING SOLUTIONS FRAUD TODAY ALERT - 10.26.16
JHA Card Processing Solutions (CPS) is dedicated to providing our customers with the most current and up to date fraud information. The following information should be used in conjunction with your fraud prevention strategies to help identify, reduce and/or prevent fraudulent activity.
Current Fraud Trends: JHA Fraud Center has seen a large increase in phishing scams across the nation. This is a result of the numerous data breaches, many unrelated to card data. Phishing is the act of using the telephone, sms or email communications in an attempt to scam the user into surrendering additional private information that will be used for identity or card theft. The scammers are posing as the fraud center and/or Financial Institution’s in effort to fool the victim into providing information including but is not limited to PIN number, card number, Expiration Date, Security Code, etc.
The JHA Fraud Center will only contact your cardholders using the following communication channels:
- Phone number: 800-417-4592
- SMS Short Code: 32874
- Email – Includes our Fraud Center phone number
Record number of reports of card skimmers being placed on gas pumps, grocery stores and other retailers. They even now come equipped with Bluetooth technology. This is resulting in an increase in ATM and PIN POS fraud. Two rules specific to this ATM fraud trend have been deployed on Falcon. JHA will continue to adjust these rules as well as evaluate and test additional rules to address the fraud trend. Below are some links to recent Krebs articles.
https://krebsonsecurity.com/2016/10/self-checkout-skimmers-go-bluetooth/
https://krebsonsecurity.com/2016/09/inside-arizonas-pump-skimmer-scourge/
Merchant breaches continue, the networks have been received in relation to the below breaches.
- Vera Bradley http://www.verabradley.com/custserv/custserv.jsp?pageName=notification
- Eddie Bauer https://krebsonsecurity.com/2016/08/malware-infected-all-eddie-bauer-stores-in-u-s-canada/
Recommended Actions and Precautions:
- Review your daily limits, including ATM withdrawal limits
- Daily reviewing of Fraud Center alerts.
- Review your current authorization restrictions and be proactive
- Fraud Center will be monitoring the trends closely
VISA AND MASTERCARD SCAM ALERT - 10.11.16
HOW THE SCAM WORKS: Person calls asking if you purchased an Anti-Telemarketing Device for $497.99 from a marketing company based in Arizona?' When you say NO, they will try to verify that you have the card in your possession by asking you to read the last 3 digits from the back of the card. After the fraudster has that number in their possession they will make a new purchase of $497.99 on your card.
WHAT SHOULD I DO? If you have already received a call like this, call our office at 740.522.8311 as soon as possible. If you receive a call like this, give them NO information. Hang up and call VISA or Master Card using the number on the back of your card.
QUESTIONS: Call our Credit Card Services Representative, Julie Sanders at 740.522.8311.
Scam information found on Mount Vernon Police Station Facebook Page.
IRS SCAM - CP 2000 FORM - 10.11.16
There is a new IRS scam doing the rounds. They send you a phony IRS CP 2000 form and claim the income reported on your tax return does not match the income reported by your employer. This is meant to get you worried. To confuse you further, the bad guys claim this has something to do with the Affordable Care Act. You might receive emails with attached phony forms, text messages and even live calls to your phone about this! You need to know that the IRS will never initiate contact with you to collect overdue taxes by an email, text message or phone call.
If you get any emails, text messages, old-time snail mail or even live calls about this, do not respond and/or hang up the phone. If you receive a "CP 2000" form in the mail and doubt this is legit, you can always call the IRS at 1-800-366-4484 to confirm it is a scam. If you receive and email please do not open it, let myself or one of the managers know.
WENDY’S SECURITY BREACH INFORMATION – 3.8.16
Wendy’s is investigating reports of potential fraudulent activity at some of its restaurant locations. This breach occurred from October 2015 – February 14, 2016 and could impact those who paid with a debit or credit card. As always, we take your security very seriously. If you have been impacted, please remember to monitor accounts for peculiar activity.
Additional articles and information you may find helpful.
National Association of Federal Credit Unions Update
Wendy’s data breach among worst, chief of credit-union group says - Columbus Dispatch Article