A new scam involves a text message sent to cell phones and smartphones warning bank customers that their debit or credit card had been blocked for security reasons. The message urges users to call a hotline to unblock their card, but instead they reach an automated response system asking for their card number, personal identification number (PIN) and other information.
"Unfortunately, this is enough information for thieves to create counterfeit cards and commit fraud," says Michael Benardo, Chief of the FDIC’s Cyber-Fraud and Financial Crimes Section.
Smartphone users are now being targeted by scammers because these users almost always have their phone handy and tend to respond to calls and e-mails quickly, so that many may not realize a message is fake until it’s too late. Not only that, but fake Web sites are also harder to spot on a small screen.
If after you’re logged onto your bank’s Web site—or on any Web site, for that matter—and you get an unexpected pop-up window asking for your name, account numbers and other personal information, that is likely a sign that a hacker has infected your computer with spyware and is trolling for enough information to commit identity theft and gain access to your bank account.
It’s normal for your bank to ask for your login ID and password when you first log in and to ask you to answer a ‘challenge question’ if you want to reset your password or start using a new computer. But your bank will not ask you—through a pop-up window—to type your name and information such as your date of birth, mother’s maiden name, bank account and cell phone numbers. Banks only need that type of detailed personal information when the account is initially opened.
Those "deals" could contain malicious software directing you to fake Web sites or install spyware used to steal information that can lead to theft. "You should consider using anti-virus software specifically designed for smartphones and other mobile devices," advises David M. Nelson, an FDIC fraud specialist.
|