Phishing season: Don't get hooked

By Jo Rafferty, Staff Writer
Tuesday, December 09, 2008 | 7 comment(s)

Banks warns of online, e-mail scams

Font Size: Shrink Font Enlarge Font | Submit your news
COOS BAY — Elizabeth Krambeal of North Bend was lucky. She received a fraudulent e-mail this week bearing the Wells Fargo bank red-and-gold logo, but decided not to open a link that said “click here.”

“That was the signal,” Krambeal said. “We thought it just didn’t sound right.”

Krambeal reported it to her bank branch in Coos Bay on Friday.

That click would have sent Krambeal to a spoof Web site, Coos Bay Wells Fargo Branch Manager Debbie Williams said. After that, any personal information she might have entered the criminals would have seen, too.

“If you open up that link, they can see everything that’s in your computer,” Williams said.

Others have not been so fortunate.

Williams says complaints about phishing e-mails come in cycles. Phishing is the act in which a scammer sends fraudulent e-mails that use clever and compelling language to entice people into giving out personal information. Williams receives five or six customer complaints a month, then she won’t hear anything for a couple months. Although the bank reimburses money lost through fraud, an investigation can take a couple weeks to a month.

“We’ve had to do loans because people have gone into the hole,” Williams said.

Krambeal’s e-mail said the bank had been receiving complaints about unauthorized use of accounts and has been making extra security checks to protect customers from theft and fraud.

In other scams, phishers have sent people e-mails indicating an e-mail address has changed and the bank needs to verify a customer’s address, or maybe an account was locked and personal information is needed to unlock it. Another e-mail tells people there are insufficient funds in their accounts, so “click here to access your account.”

These e-mails are sent to a wide audience, according to Wells Fargo.

Scammers obtain the e-mails through the Internet or sometimes they buy them. Sometimes phishers guess e-mail addresses, in hopes that some of the e-mails go to actual bank customers.

When someone does enter information, the phisher takes that account number, or Social Security number, pin number, address or any other personal information, and uses it to access or transfer money from one  account to another.

Williams said it’s important to remember that your bank would never ask for personal information by phone or e-mail. A customer would be notified about any account problems in messages accessed through their online bank account.

The bank Web site is protected by fire walls that don’t allow hackers in. Home computers have to have fire walls to set up online banking, too.

Williams recommends customers sign up for their bank’s online bill pay, which is protected unlike general business Web sites on which customers can pay bills.

“If you have to give out your account number and debit number, you’re giving them control,” she said.

Fraudsters use other methods, too. They approach unsuspecting people and offer them money for personal checks, Williams said. They steal mail. Once they have an account number they can print out checks with a computer program that can be purchased at a computer supply store.

“It’s scary,” Williams said.

People should only keep what they need to pay their bills in their checking accounts, Williams said. The rest should be deposited into a savings account.

Williams said she believes in customers getting to know their bankers too. She has made calls on suspicious banking transactions before, just to check and make sure everything is legitimate.

“Just about the time you think, this is Coos Bay, it’s not going to happen, it happens,” Williams said.
Tags » e-mail scams, jo rafferty, phishing, wells fargo bank
Don’t get scammed


Where to call: Wells Fargo customers who have provided personal information through an e-mail or suspicious Web site should call the fraud prevention hotline, (866) 867-5568, to report it.


Where to send reports: Forward suspicious e-mails and Web sites that say they’re from Wells Fargo to reportphish@wellsfargo.com.
Previous
Next

Ads by Yahoo!


Have you checked out The World Link Forums?

Comments

The comments below are from users of theworldlink.com and do not necessarily represent the views of The World or Lee Enterprises. Participation Guidelines

Note: There is a maximum of 200 words per comment. If you wish to post more, please visit our forum.
Comment Policy

The World welcomes your comments about stories, and we encourage a robust dialogue on this site. All comments must meet reasonable standards of decency and civility.

Please follow these basic rules:

  • No defamatory comments about individuals or businesses.
  • No deliberately false information.
  • No obscenity or racially offensive language.
  • No harassment, verbal abuse, threats or personal attacks.
  • No information that invades another person's privacy.
  • No business solicitations or charitable solicitations.
Comments that violate these standards will not be posted. Users with repeated violations may be banned from future posting.

Comments will be approved throughout the day during business hours. After hours and weekend comments may not appear until the following business day. It may take a couple of hours before comments are approved.

The World generally does not edit comments, but we reserve the right to edit any comment that does not meet our standards.

Close Guidelines

Linda wrote on Dec 9, 2008 8:47 AM:

I can't believe people could be so stupid as to let themselves get sucked in on something like this. Duh? Big red truck!

Report Abuse

Mr E wrote on Dec 8, 2008 7:14 PM:

I'm glad to know that there are still people that provide a means for this spam.

Here's a hint: if you're wholly ignorant to the methods used by cyber-criminals, you should probably not do anything on the internet until you become more aware.

Really, there are EASY ways to determine if a company is sending you legitimate email, or if you're being sent a fake by some spammer or scammer. It is not difficult, if you spend a few hours doing your research. One suggestion: if someone ever calls asking for your bank account information, find out who they are, and if it "sounds" like your bank, hang up and call a legitimate support number for that bank (provided by bank branches themselves), or just visit the branch in-person.

Maybe newspapers should cover how to fix this problem for people who are not intelligent enough to not give away all of their private information to anonymous sources... instead of covering people who did do that, or who at least gave a second thought to doing that.

Report Abuse

TheMom wrote on Dec 8, 2008 4:20 PM:

This article says: "Williams recommends customers sign up for their bank’s online bill pay, which is protected unlike general business Web sites on which customers can pay bills." but everyone should be aware that the company that owns and operates BillPay for banks was hacked on December 2nd. http://voices.washingtonpost.com/securityfix/2008/12/digging_deeper_into_the_checkf.html?nav=rss_blog

Report Abuse

Rebecca Anderson wrote on Dec 8, 2008 1:01 PM:

Yes, it's the season all right, I received a call from "Washington Mutual" offering $25 gas card, they just needed to verify my information & I must talk to their insurance agent, when the agent didn't know anything about the gas card I hung up & called e my bank, they said it was a scam! so now I have to change my accounts!

Report Abuse

Rebecca Anderson wrote on Dec 8, 2008 12:56 PM:

Also, I received 2 emails supposedly from Capital One, they use their logo effectively, saying missuse of my internet banking has occurred and I should log on, since I don't bank internet with them I called Capital One, it's gotten really bad they say & gave me Abuse@Capitalone.com to forward the email.

Report Abuse

check this out wrote on Dec 8, 2008 12:41 PM:

One interesting note about these emails....on the bottom half of page, it appears blank (after their signature). However, if you highlight that area, you will find a computer code. It's there, but the font color is white so you don't see it unless it's highlighted. I've received several of these emails, and I don't bank at those banks, but I've checked every one and they have all had that hidden computer code. Check it out sometime. I found it by accident. It's just the bottom half of the page (that appears blank).

Report Abuse

Charyse wrote on Dec 8, 2008 12:06 PM:

They are also targeting Bank of America
They ask you to confirm your acct or it will be closed.

Report Abuse


*Member ID:
*Password:
 

Not already registered?

Do not use usernames or passwords from your financial accounts!

Note: Fields marked with an asterisk (*) are required!



*Create a Member ID:
*Choose a password:
*Re-enter password:
*E-mail Address:
*Year of Birth:
 

(children under 13 cannot register)

*First Name:
*Last Name:
Would you like to be added to our mailing lists?
Daily Headlines
Breaking News
Special Offers
 
Advanced Search
Web Search powered by YAHOO! SEARCH

Blogroll

Most Popular

Polls

» View Past Poll Results
» Suggest a Poll

Marketplace

Special Sections

More Special Sections
 


Copyright © 2009 Southwestern Oregon Publishing Company. Contents of this web site labeled as being from the Associated Press (AP) are Copyright © 2009 Associated Press. Reproduction or redistribution of content is expressly forbidden without the express written consent of theworldlink.com
To opt-out of a third parties' use of web beacons please click here.