FDIC reports fraudulent e-mails

FDIC reports fraudulent emails

E-mails fraudulently claiming to be from the FDIC are attempting to trick recipients into installing unknown software on personal computers. These e-mails falsely indicate that the recipients should install software that was developed by the FDIC and other agencies. The software may be a form of spyware or malicious code and may collect personal or confidential information.

The subject line of the e-mail included the phrase, "Urgent Notification - Security Reminder." The e-mail requests that recipients click on a hyperlink that appears to be related to the FDIC, which directs recipients to an unknown executable file to be downloaded. While the FDIC is working with he united States Computer Emergency Readiness Team to determine the exact effects of the executable file, recipients should consider the intent of the software as a malicious attempt to collect personal or confidential information, some of which may be used to gain unauthorized access to on-line banking services or to conduct identity theft.

The e-mail also asks financial institutions to "advertise and market the ProBank's existence to employees, suppliers, third-party service providers and customers. "Financial institutions should NOT advertise the existence of the software. The FDIC is attempting to identify the source of the e-mails and disrupt the transmission. Until this achieved, consumers and financial institutions are asked to report any similar attempts to obtain this information to the FDIC by sending information to alert@fdic.gov 

 FDIC phishing alert - beware of malicious code         

The FDIC has received reports by businesses and consumers of a phishing e-mail that has the appearance of being sent from the FDIC. This phishing e-mail appears to be from the FDIC and ask recipients to click on a hyperlink titled "Take the Corrective Action – Implement the LinkBank System." The fraudulent e-mails, which are purportedly from "Russell A. Rau, Assistant Inspector General for Audits," typically include a "Subject" line that states: "Compliance Examination for [recipient's name inserted]." 

Similar Phishing e-mail scams using the FDIC (Federal Deposit Insurance Corporation) and NCUA (National Credit Union Adminstration), have been circulating since the 1^st quarter 2006.

However, this is a new variation that includes a new and more dangerous hyperlink. When accessed, the hyperlink downloads an executable file to your computer. FDIC is currently analyzing the executable file; however, it is likely installing a keylogger or similar piece of malicious software. DO NOT click on the link provided in the phishing e-mail.

Once on the page, users are asked to "certify" that they "will provide correct information in order to implement the LinkBank System." The "LinkBank System" is described as:

"…a protocol developed by the FDIC and other federal agencies as a way to ensure that the standards for Online Banking security are met. This protocol is based on a client utility, safeConnect, that was developed to be installed on business computers which are used to open Online Banking sessions. This utility only interacts when an online session with a Financial Institution insured by the FDIC is opened, thus it will never interfere with any other applications."

After clicking on the certification radio button, another page is opened that asks for bank name, username, and password.

This e-mail is a fraudulent attempt to obtain personal information from consumers. Consumers should NOT to access the link provided within the body of the e-mail and, under any circumstances, not to provide any personal information through this media.

The FDIC is attempting to identify the source of the e-mails and disrupt the transmission. Until this is achieved, consumers and financial institutions are asked to report any similar attempts to obtain this information to the FDIC by sending information to alert@fdic.gov.       

Loss  Prevention Recommendations:

• Do not click on the link in the suspect e-mail.

• Keep your operating system and web browser patched along with running an anti virus system with up-to-date definitions.

• Never click on the link provided in an e-mail you believe is fraudulent.

• Do not open attachment to an unsolicited e-mail unless you have verified the source. If you believe the contact is legitimate, go to the company's web site by typing in the site address directly or using a page you have previously book marked, instead of a link provided in the e-mail.

• Report the incident to the Internet Fraud Complaint Center at http://www.ifccfbi.gov/cf1.asp

• Use tools provided by a reputable Internet brand protection service to conduct regular comprehensive internet monitoring.

• If you can determine the ISP hosting the imposter/spoofed web site, contact the internet service provider to request that the web site be immediately disabled and all information pertaining to it be preserved for law enforcement.

•    A good resource for this topic is Anti-Phishing Work Group at http://www.antiphishing.org/report_phishing.html .

• If you have been victimized by a spoofed e-mail or web site, you should contact your local law enforcement, U.S. Postal Inspector of FBI.   

Copyright © 2008 CAMC Federal Credit Union. All rights reserved.