Phishing Attack in Progress - Please Read
A fraudulent e-mail message has been distributed, purporting to be from eNFACT and linking to a mock-FISERV* website, regarding debit card transactions. This e-mail is NOT legitimate. Please do not respond to the e-mail or follow the links within the message. The mock site may install malicious software or malware. This may be a serious threat.
Should you receive this phishing attack via e-mail:
- Do not open the e-mail;
- Do not click on the link(s) contained within the e-mail; clicking on any of the links contained within the e-mail may install mailicious software on your computer or network;
- Delete the e-mail from your "Inbox".
If you receive any e-mail message asking you to click on a link in order to report, verify, or submit information, DO NOT follow the link, use the web address, or provide any information. You could be exposing your computer to dangerous malware and providing your sensitive financial information to cyber criminals.
More Information on Phishing E-mail
Phishing e-mail messages like the one shown above may look official, but they are an attempt to lure you into giving out your personal financial information, such as Social Security numbers, account numbers, passwords, credit or debit card numbers and personal identification numbers (PINs).
Scammers obtain lists of names and contact information and begin sending hundreds or even thousands of messages to would-be victims, playing the odds that they'll get someone to take the bait. Fraudsters use the names, logos and information of legitimate businesses or organizations, but close examination will often reveal some tell-tale signs of fraud:
Look for errors. E-mails that contain frequent spelling mistakes or poor grammar usually signal a scam. There may also be missing or out-of-place information.
Close, but not close enough. Look closely at the links or e-mail addresses within the message. Crooks will often change or leave out a letter or two, or add a word at the beginning or end of a legitimate address. In the e-mail mentioned above, "eNFACT" was changed to "eFACT" and the word "notify" was added to the address. The fraudsters used "eFACTnotify.com", a bogus web page.
Multiple Addresses. You may notice that the link or links within the message differ from the email address sending the message. The message above was sent from firstname.lastname@example.org, but the links go to efactnotify.com.
What is eNFACT?
eNFACT is a sophisticated software program that helps protect your debit card against fraudulent transactions. Debit card processors use the program to flag any suspicious or unusual activity on your account and report them to your financial institution for investigation.
- If you receive a call from the eNFACT Fraud Division, they will ask you if you have authorized the flagged activity; they will provide you with the information on the transaction. They will NOT email you.
- If you confirm the transaction was authorized, no further steps are required.
- If the transaction was not authorized, eNFACT will block the card for you and ask that you contact your financial institution to file a dispute.
If you receive a call and are unsure of the origin -- or suspicous of fraud -- hang up and call your local financial institution branch at the phone number you know. Do NOT rely on caller ID or the number given to you by the caller.
*FISERV is a provider of technology solutions to the financial services industry.
Back to Fraud Protection