To help reduce the risk and protect credit union members, we offer a list of potential scams along with tips for a safer and smarter holiday shopping season.

Holiday Scams and Tips
• Watch for mobile malware – especially deals for black Friday and cyber Monday.
• Be cautious when looking for free mobile apps - may be an attempt to steal information.
• Watch for malicious screensavers, ring tones and e-cards.
• Watch for purchase offers of fake anti-virus software – this scam may trick you into purchasing the software.
• Secure your computer – at a minimum, have anti-virus, anti-spyware and a firewall.
• Remember to turn off your computer when you’re done shopping.
• Watch for social media scams – phony Facebook and Twitter sites or other online promotions and contests.
• Beware of scammers advertising popular holiday items.
• Check out the seller of items – research before you buy.
• Don’t fall for the mystery shopping scam asking you to shop for $XX dollars (ex: $100).
• Online coupon scams may ask for your personal or financial information using email.
• Holiday phishing scams – Don’t fall for emails, text messages or phone calls asking for personal or financial information.
• Monitor credit, debit and account numbers used for your holiday shopping to help identify any unauthorized usage.
• Vacation scams – don’t post holiday pictures until you are back home.
• Lighted parking lots – survey the parking lot surroundings. Make sure you have your car keys in your hands before entering the parking lot.
• If an offer or item sounds too good to be true, it’s probably a scam.
• Report scams to the Federal Trade Commission at www.ftc.gov or call toll-free 1.877.ftc.help (1.877.382.4357)

Information provided by CUNA Mutual Insurance Group

***Debit Card Phishing Scam ***

Northumberland County Schools FCU has been alerted by several members that they are receiving automated telephone calls indicating that their credit union debit card will be blocked for security reasons. The automated system prompts them to enter their PIN to stop their card from being blocked. This system is not part of the credit union's monitoring system. Please do not enter any personal identification information. If you have any questions as to whether or not the credit union has contacted you about your debit or credit card, please call us immediately at the number shown above.

The Northeast has been plagued by debit card fraudsters, mostly in Ohio. Typically, the fraud involves account data duplicated on fake cards and used in person with a forged signature--not a personal identification number (PIN)--or for online or telephone purchases. Most appeared to be in person and the victims' cards have not been out of their possession. (Updated 6/16/2011)

NCUA Phishing Scam

The National Credit Union Administration (NCUA) has informed credit unions about a recent phishing attempt to obtain member credit card account numbers, expiration dates and electronic signatures. In cases reported to NCUA, the perpetrator(s) sent fraudulent e-mails, representing to be from the NCUA, to credit union members and the general public. The emails state the NCUA will add $50.00 to the member's account for taking part in a survey. The link embedded in the message directs members to a counterfeit version of the NCUA's website with an illicit survey that solicits credit card account numbers and confidential personal information. NCUA and Northumberland County Schools FCU will never ask credit union members or the general public for personal account or personally identifiable information as part of a survey. Any email that alleges to be from NCUA or NCSFCU and asks for account information is fraudulent and should be treated as suspicious. NCUA has taken steps to shut this site down, but credit union members should remain alert to possible variations of this fraudulent e-mail.

If you have clicked on any of the e-mail links, consult with a computer security or anti-virus specialist to assess the need to re-install a clean image of your computer system. Please remember to take these additional precautions:

• Scan affected computers using updated anti-virus software.
• Enable automatic updates for anti-virus software and computer operating systems.
• Install security patches for common software applications promptly.
• Be aware that phishing emails frequently have links to Web pages that host malicious code and software.
• Do not open unsolicited or unexpected e-mail attachments.
• Do not follow Web links in unsolicited e-mails from apparent federal banking agencies, instead, bookmark or type the agency's Web address.
• Call the agency using a known and appropriate telephone number to verify the legitimacy of the message and attached file.

Members affected by this scam, and variants of this scam, should be advised to forward the entire email message to Phishing@ncua.gov. Additionally, formal complaints concerning any suspected fraudulent e-mail can be filed with the Internet Fraud Complaint Center (IFCC) at www.ic3.gov. The IFCC is a partnership between the Federal Bureau of Investigation and the National White Collar Crime Center.