Community CPS Home
Site Map  |  FAQ  |  Security  |  Contact
IB Tour
Internet Banking
 Search the site
  Security Section
Fri, July 4, 2008  |  BSB No 805-022  |  Phone 13 25 85
 
s
Latest Warnings
What Is Fraud
What Is Fraud
Online Banking Security
Protect Yourself
Downloads
Links

Current Warnings
Latest Warning

Warning: Beware of recent spam emails using as their subject the recent disasters in Burma and China 28/05/08
Community CPS reminds members of the importance of not opening, or clicking on any attachments to or links in any unsolicited emails, no matter how tempting the subject line or content. Some recent spam emails are circulating about the disasters in China and Burma and like many other types of unsolicited emails their attachments contain a dangerous Trojan Horse code. If the attachment is opened the malicious code may download onto the user's computer without warning and this code can then be used to steal sensitive and confidential information for financial gain and to commit identity theft. Members are advised to read the various items provided under our Fraud and Security section for further information on computer security and protection of your personal information.

  
Warning: Phishers use MasterCard securecode and financial discounts to trick unwary users 16/04/2008
 
Experts at SophosLabs are warning MasterCard users to be on their guard against any emails which claim to come from the company following the discovery of a phishing campaign which attempts to entice victims with the promise of money off future purchases.
 
The content of this phishing email is unusual since it attempts to lure users to sign up to SecureCode and receive extra security protection for their MasterCard accounts, by offering a 16 percent discount on future purchases made with thecard. In contrast, typical phishing campaigns ask users to confirm details for maintenance purposes or due to database corruption.

In reality, users that click on the link contained within the email are redirected to a phishing site, set up to look almost identical to the genuine MasterCard website. Visitors are then asked to supply confidential information including credit card expiration date, date of birth and the three digit security code located on the back of the card - ample information for the cybercriminals to then access and use the account in question to steal money.

"MasterCard has been very successful in positioning SecureCode as the answer to online fraud, and with so many computer users growing increasingly worried about the risks of shopping online, the prospect of greater security and money off can be too much to resist," said Carole Theriault, senior security consultant, Sophos. "What's more, phishers are putting a lot more effort into their scams these days and to the undiscerning eye, it's almost impossible to tell this isn't the real MasterCard site. Computer users must be wary of simply clicking on links in unsolicited emails and should take time to verify the site address first - it may take a little longer, but will protect your money and identity from preying cybercriminals in the long run. Also, everyone needs to use a little common sense - if it seems too good to be true, it probably is."

Sophos recommends companies protect themselves with a consolidated solution which can control network access and defend against the threats of spam, hackers, spyware and viruses.
 
  
Warning: Scam phishing email from 'Credit Union' titled 'Please reactivate your card' 8/11/07

Community CPS would like to warn members of a fradulent email currently in circulation which asks you to reactivate your card. Please see a copy of the email below.

It is important that you delete this email immediately and do not click on any of the links.
Community CPS advises all members to be wary of any emails from unknown senders. If you have any queries, please contact us on 13 25 85.
 
Dear Credit Union customer,

We regret to inform you that we have received numerous fraudulent emails which ask for personal account information. The emails contained links to fraudulent pages that looked legit.

Please remember that we will never ask for personal account information via email or web pages. Because of this we are launching a new security system to make Credit Union accounts more secure and safe. To take advatage of our new consumer Identity Theft Protection Program we had to deactivate access to your card account.

To activate it please call us immediately at (641) 665-5660. Activation is free of charge and will take place as soon as you finish the activation process.

  
Warning: Trojan viruses targeting debit and credit cards 5/10/07

Community CPS would like to warn members of new Trojans detected that are specifically designed to detect and record debit and credit card details.

Advanced Verification

Once loaded on a computer this Trojan will lie dormant until the user makes an online purchase using their debit/credit card and if it detects a likely card number a pop-up box will appear on the screen indicating that For security reasons please provide the following information and requesting card number, expiry date, the CVV2 number on the reverse of the card plus your ATM PIN. Members should be wary of any requests via a pop-up message requesting entry of security details. ATM PIN details should never be provided to anyone or entered online and card details should only be provided online in relation to a legitimate transaction you are conducting and you are satisfied the request is genuine and operating through a secure site.

Windows Activation

If this Trojan is present it will present screens that appear to be from Microsoft to re-activate Windows©

This is a Trojan that follows the pattern of many others and attempts to impersonate another organisation or entity and does not originate from Microsoft.  Do not respond.

Members are reminded to take extreme care in relation to the security of the computer they use for Internet access.  Please read the advice contained in the various tabs under our Fraud and Security section of our website and take appropriate action to protect yourself from downloading viruses and spyware and ensuring you have the tools to detect and remove viruses and spyware if they are present on your computer.   

  
Warning:  Australian Taxation Office alert of scam email 15/10/07

The Tax Office is warning people about a fraudulent email being circulated that claims to offer a refund from the Tax Office.

The email is similar to a recent scam in June and fraudulently uses the Tax Office logo and the words ‘Australian Taxation Office – Notification’ or ‘Australian Taxation Office – Please Read This’ in the subject line (there may also be variations to these titles).

Acting Tax Commissioner Greg Farr said anyone who receives the email should delete it immediately.

The email asks people to click on a link which redirects them to a bogus website that looks similar to the Tax Office website and asks for credit card and personal details in order to receive a refund.

The email and website are not affiliated with the Tax Office in any way.

“With the 31 October deadline for tax returns approaching, people should be particularly wary of any unsolicited emails claiming to be from the Tax Office,” Mr Farr said.

“The Tax Office will never send an email to people asking them to provide personal information or credit card details.”

The Tax Office has notified relevant authorities who are investigating.

As an extra precaution people should type internet addresses directly into their internet browser rather than clicking on hyperlinks embedded in emails.

People who have entered their credit card information through this email should contact their credit card provider immediately and report a possible compromise.

Warning: Scam Job Offers and “Mule” Recruitment 3/10/07

Community CPS would like to warn members of a recent increase in the distribution of unsolicited scam job offers, predominantly via email, but also evident on popular employment and job-seeking websites, or through online chat rooms.

The sole purpose of these scam job offers is to attempt to recruit you to receive stolen funds through your account and then transfer those funds to criminals overseas, often using a money transfer service. Members need to be aware that participating in this activity may constitute dealing in the proceeds of crime and the Australian High Tech Crime Centre advises that it is possible that people who agree to participate in such “jobs” may face criminal prosecution.

These job offers often look genuine and in some cases may even make reference in the offer to a legitimate business somewhere in the world but clearly without authority from that business. The offers may include a requirement to sign an employment agreement but they are all characterised by common themes including requiring you to provide your bank or credit union account details and requiring you to receive funds to your account and then transmit those funds overseas after possibly deducting a commission.

If you receive such an offer in an unsolicited email delete it immediately, do not respond to these offers from other sources and do not refer them to your friends.  Refer to other links and downloads in this section of the Community CPS website which provide more information on this type of fraud.

If you have already accepted or participated in such an offer you should ensure you do not deal in any way with the funds received and immediately contact us and the nearest State or Territory police station.  If we detect this type of activity by members we will suspend the account, return the funds to the rightful owner and in every case report the matter to the Australian High Tech Crime Centre.

 
Public urged to ignore scam email "Badge 12460" 8/5/07

Visa International has advised members of the public to ignore an email about an alleged “scam” known as “Badge 12460”.

The email states that people are calling members of the public saying they’re from Visa and they quote a “Badge 12460”. The email then says that people are asked to provide their card details. There is no evidence to suggest that anyone is undertaking this activity in Australia. It is an urban myth encouraged by the forwarding of the email. The email has done the rounds globally for five years and recirculates every year or two.

Visa requests members of the public to stop forwarding the email to friends, family and colleagues as it is causing undue concern. Forwarding the email can also encourage “copy cat” activity and publicity of such scams can also give the original author some perverse satisfaction knowing the nuisance they’re causing.

In general:

  • Visa will never initiate contact with cardholders by email or phone to seek personal or confidential information.
  • Banks and other financial institutions may at times call their cardholders to check on the validity of purchases.
  • People should never respond to an email request for personal or account information, even if it appears to be from a trusted source.
  • People should never give their credit, debit or prepaid card number over the phone, unless they are dealing with a reputable or known organization, or if the cardholder has initiated the call themselves.
  • People are encouraged to report email fraud to Visa at phishing@visa.com and attach a copy of the email suspected to be fraudulent.

    For further information, please contact Visa International on 1800 450 346.

 
 


 
  Community CPS Australia Ltd  |  AFSL 237856  |  ABN 15 087 651 143  |  BSB No 805-022 Copyright 2007  |  Privacy  |  Disclaimer