Have you received emails asking you to verify your account information or telling you that your account access may be removed if you do not respond? These emails may be thieves trying to capture your personal information in an attempt to steal your identity, otherwise known as "Phishing". The emails may look as if they come from Dover Federal and may include a message that encourages you to link to a fraudulent site that looks similar to Dover Federal's Web site. Sadly, these phishing scams occur often and are aimed at members and customers of all financial institutions, including Dover Federal. It is very important to remember that Dover Federal will never send you an email asking you for confidential information.
These phony emails can appear to come from all kinds of services, such as your Internet Service Provider (ISP), retailers, online auction sites and others. They will often use legitimate "From" email addresses, logos and links. Remember, they are trying to get you to take immediate action without thinking about the consequences.
Currently, there are two basic types of Internet phishing schemes:
- An email asks you to provide personal account information online. The email links to a false website that has been constructed to resemble that of your financial institution, where you are told to verify certain information.
- An email asks you to provide personal account information by calling a fraudulent phone number. When you call, you are asked to provide such things as card numbers and PINs to verify your information.
What kind of information are they looking for?
They may want you to provide your Social Security Number (SSN), bank and credit card account numbers, PINs and date of birth for starters. With that kind of information, they can steal your identity and open new accounts that you might not find out about until you view your credit report.
Remember, you should never reply to an email that:
- Requires you to enter personal and confidential information, including your SSN, account number(s), login ID numbers, etc.
- Threatens to close or suspend your account(s)
- States that your account has been compromised in some way and you need to confirm your information
- Asks you to enter an account access code or personal password in any way
What can you do to protect yourself?
Here are some tips to protect yourself from "phishing":
- Do not click on links or open any attachments that come to you by email. Copy and paste the address into your browser. Save attachments and scan them with your virus software before opening.
- Do not trust a link from an email just because it takes you to a site that looks legitimate. Scammers can copy those easily.
- Verify with the company that the email is legitimate before submitting any personal information online or by phone.
- Try not to fill out forms contained in emails. You can never be sure where the information is going or who sees it along the way.
- Email headers can be forged. Be suspicious until you know for sure.
- If you click on a link from an unsolicited email, make sure there's an "s" after the http in the address and a lock on your browser bar, signifying a secure site that is encrypted. This is no guarantee, however, that the site is legitimate.
Did you ever respond to a fraudulent email?
If you mistakenly answered a fraudulent email, do the following:
- Change your Account Login password from an uninfected PC
- Ensure that you have a current firewall, anti-virus software and spyware detection software installed on your PC
- Run a virus scan on your PC, and clean up any viruses or Trojans that are detected
- Change your Account Login password again
We recommend that you carefully review your Dover Federal account transactions at My Account Online Banking on an on-going basis. Immediately report any fraudulent transactions or activity to Dover Federal.