Protecting Yourself from Fraud and Identity Theft

Account fraud is one of the fastest growing crimes in the nation. Each year, millions of Americans have their identities stolen by criminals who use a victim's identifying information to commit financial fraud.

Notre Dame Federal Credit Union has multiple safeguards in place to prevent and detect account fraud before it happens, but it is your knowledge, awareness, and alertness that are important to defending yourself. Understanding how identity thieves operate is also a key to avoiding account fraud.

Careful and diligent safeguarding of your account information, though, is the most important step in preventing account fraud. Never treat your confidential information casually or provide it to any unknown party. Account numbers, credit and/or debit card numbers, receipts, personal identification numbers (PINs), computer passwords, Social Security Numbers (SSNs), as well as any other personal information such as IDs, are some of the most valuable commodities you own. Protecting them will protect you.

It is important to keep in mind that because you are a member of Notre Dame Federal Credit Union, we already have all of your personal information. We will never contact you to obtain that information via any means, including e-mail, telephone, mail, instant or text messaging, etc.

Identity thieves use virtually any method they can to trick you into revealing private information. Some of the more popular types of account fraud are:

• Phishing
• Vishing
• SmiShing
• Pharming
• ATM tampering

Below you will also find useful information on how to safeguard yourself, and about how we protect you. Plus, you will be able to read about the USA Patriot Act, and learn what to do if you do fall victim. You will also find many valuable resources below.

TYPES OF ACCOUNT FRAUD

Phishing
Phishing is a type of Internet piracy. Pronounced "fishing," that is exactly what thieves are doing: fishing for your financial information.

How phishing works
In a typical case, you'll receive an e-mail that appears to come from a reputable company that you recognize and do business with, such as your financial institution.

The e-mail will likely warn you of a serious problem that requires your immediate attention or it may indicate that your personal records need to be updated.

You will then be encouraged to click a link within the e-mail to go to the institution's website. In a phishing scam, you could be redirected to a phony website that will appear nearly identical to the authentic company's website. It may even be the company's actual website. In this case, a pop-up window will quickly appear for the purpose of harvesting your financial information.

In either case, you may be asked to update your account information or to provide various information, such as your Social Security number, your account number, or your password.

If you provide the requested information, you may find yourself the victim of identity theft. Always remember that Notre Dame Federal Credit Union will NEVER contact you requesting personal/private information.

Vishing
Vishing is a type of account fraud, whereby thieves use a computer technology known as Voice over Internet Protocol (VoIP). VoIP allows them to make anonymous calls to your phone for the same purpose as phishing.

How vishing works
A common example of vishing involves you receiving a phone call from an identity thief who insists that your credit card or checking account has been compromised, deactivated, or used illegally. Typically, you will then be given a fraudulent toll-free or long distance number to call to "confirm" your account details or credit card number.

Some telephone numbers can be "spoofed" using VoIP. Oftentimes, your Caller ID will show that the person is calling you from a local number or from your very own financial institution. This makes it very difficult for legal authorities to monitor or trace such calls.

Therefore, it is important to be highly suspicious when receiving messages directing you to call and provide credit card or account numbers. If you do receive such a call asking you to "confirm," "update," or "verify" any personal or financial information, hang up immediately.

SMiShing
SMiShing, formed from the terms "phishing" and Short Message Service (the technology used to send text messages), is a newer type of account fraud that is becoming increasingly popular as cell phone usage grows.

How SMiShing works
As a victim of SMiShing, you receive a text message from what appears to be your financial institution. In the message, a phone number or website is given, and you are asked to call or visit the site where you are prompted to enter personal information or download dangerous software. Always remember that Notre Dame Federal Credit Union will NEVER contact you requesting personal/private information.

Pharming
Pharming is used to describe the use of computer software, such as crimeware, malware, or spyware, to collect personal information from your computer and deliver it back to identity thieves.

How pharming works
Malicious software can unknowingly be installed on your computer simply by opening an e-mail attachment or clicking on a pop-up advertisement. While attempting to log onto a legitimate website, such as that of your financial institution, you would be redirected by the fraudulent software on your computer to an authentic-looking, but bogus, site. Upon entering your personal log-in information, the criminals would capture it and use it for a variety of violations, including accessing your accounts and making online purchases. For this reason, always be vigilant in all of your online activities.

ATM Tampering
ATM tampering is one way thieves may attempt to capture your ATM card number and PIN. By attaching high-tech devices to ATMs, they may try to obtain the information stored on the magnetic strip or trap your actual card within the machine.

How ATM tampering works
One of the most common devices a thief may use is one that blocks the cash slot. Using such a device, a thief hopes that in your frustration from not getting your money, you will cancel your transaction and leave. However, with the cash already dispensed, the thief may simply approach the machine, remove the device, and take the money. Other devices such as miniature cameras near the keypad, fake keypads, or false fronts may also be used to capture your card number and PIN.

Inspecting an ATM and its surroundings before using it is the key to avoiding this form of identity theft. If an ATM doesn't look right, don't use it. Beware of people willing to offer their "assistance" or who are standing too close. And always alert the credit union immediately in the event that your card is not returned at the conclusion or cancellation of your transaction, or if your cash is not dispensed.

HOW TO SAFEGUARD YOURSELF

Stop fraud and identity theft before it starts by safeguarding your information.

• Shred all financial documents and paperwork with personal information before you discard them.
• Guard your Social Security Number (SSN). Never carry your Social Security card in your wallet or write the number on your check. Give it out only when absolutely necessary and only when a different form of identification cannot be used.
• Do not click on links sent in unsolicited e-mails. Always type in a web address you know. Always use firewalls, anti-spyware, and anti-virus software to protect your computer; keep them up-to-date.
• Never use an obvious password like your birth date or the last four digits of your Social Security Number.
• Keep your personal and financial information in a secure place at all times.
• Never provide your personal information in response to an unsolicited request, whether it is over the phone or on the Internet. If you did not initiate the communication, you should not provide any information.
• Always use a single credit card, with a low credit limit, for all Internet purchases. Make certain that your Internet shopping sites are secure. Never send any credit card information via e-mail or instant messenger, as those methods are NOT secure.
• Place all outgoing mail, especially if it contains checks, deposits, or sensitive information, directly into post office mailboxes (not in your own mailbox). Also, place a delivery hold on your mail in the event of a vacation or sudden trip.
• Report any lost or stolen credit cards or debit cards to the credit union immediately. Also, report any lost or stolen checks.
• Destroy all unused credit, ATM, and debit cards.

Routinely monitor your financial accounts and billing statements - it may help to alert you to suspicious activity.

• Inspect your credit report at least once a year. Credit reports contain valuable information about you, including what accounts you have and your bill payment history.
     - You are entitled to a FREE copy of your credit report once every 12 months from each of the three nationwide consumer credit reporting companies. Simply visit https://www.annualcreditreport.com to obtain your FREE credit report.
  -   You may also request your report over the telephone by calling 877/322-8228. Hearing-impaired members may access the TDD service at 877/730-4104.
• Review your financial accounts and billing statements regularly, looking for charges you did not make.
• Be alert to signs that require your immediate attention, such as bills that do not arrive as expected, denials of credit for no apparent reason, calls or letters regarding purchases you did not make, or unexpected credit cards or account statements.

HOW WE PROTECT YOU

At Notre Dame Federal Credit Union, we are committed to protecting you, the member, as well as your account and personal information. We employ a large number of safety and security measures to safeguard your money and your identity, including:

• Home Banking Protection - In addition to multi-factor authentication for login security, our Home Banking website also features Enhanced Login Security, which identifies you as the true "owner" of your accounts.
• Verified by Visa® - Although your Visa® Credit Card already offers comprehensive fraud protection, Verified by Visa® takes that protection one step further. This FREE service adds an extra layer of security at the point where you enter your credit card information online by confirming your identity with an additional password.
• Encrypted ATM Transactions - You can feel secure whenever you use a Notre Dame Federal Credit Union ATM. Every transaction made is encrypted to keep your card number and PIN safe from intrusion.
• Cyveillance - Our partnership with Cyveillance, a world leader in cyber intelligence, allows us to identify and eliminate online threats before they cause significant harm. In addition, when a threat is found, the phone number or website of origin will be shut down quickly.
• Fraud Detection Technology - Each teller line is equipped with special detection technology to identify fraudulent checks, protecting you in the process.
• Intrusion Detection Technology - Our computer networks are all equipped with intrusion detection technology to prevent unwanted and unauthorized access to your personal and financial information.
• Regular Security Training - Each year, employees of Notre Dame Federal Credit Union undergo mandatory security training to reinforce the credit union's safeguarding policies, as well as to educate employees of new threats, scams, and criminal activities.

THE USA PATRIOT ACT

The USA Patriot Act requires all financial institutions to help prevent the funding of terrorism and money laundering activities. Federal Law requires all financial institutions to obtain, verify, and record information that identifies each person or legal entity when opening a new account or term share certificate, or requesting a loan.

As a result, members may be asked questions to establish and confirm their identities. They may also be required to provide one or more forms of identification. By asking these questions and requiring these forms of identification, we not only meet the requirements of the USA Patriot Act, but we more effectively protect our members against identity theft and other forms of fraud.

As with all personal and financial information, Notre Dame Federal Credit Union maintains rigorous security programs and policies to protect it. All confidential information is treated with the utmost care, and its access is limited to employees whose knowledge of this specific information is imperative to provide our members with quality products and services.

WHAT TO DO IF YOU FALL VICTIM

No matter how vigilant or how dedicated you are in preventing identity theft, it is still possible to fall victim. If you suspect fraud or identity theft, protect yourself immediately! Below are steps you should take to limit or eliminate the amount of damage.

• Contact Any of the Three Major Credit Bureaus & Place a "Fraud Alert" on your credit reports. An alert will tell creditors to follow certain procedures before they open new accounts in your name or make changes to your existing accounts. A phone call to one of the three nationwide consumer credit reporting companies will initiate a 90-day fraud alert on all three credit reports. You will also be entitled to free copies of your credit reports for further review during that 90-day period. Be sure and ask to add a "victim's statement" on each report.
  
  Equifax 800/525-6285
  Experian 888/397-3742
  TransUnion 800/680-7289
  
• Review Your Credit Report - Check your credit report to ensure that no fraudulent accounts have been opened in your name, and that no changes have been made to your existing accounts without your consent. Also, make sure that any inquiries from companies that opened fraudulent accounts be permanently removed.
• Contact Notre Dame Federal Credit Union - It is important to alert us to the situation immediately. We can close out any compromised accounts and open new ones for you, issue new credit or debit cards, or change your PIN right away.
• Close accounts - Close any and all accounts that have been tampered with or established fraudulently. Call the security or fraud departments of each company where an account was opened or changed without your consent. Follow up in writing, with copies of supporting documents. Always ask for verification that the disputed account was closed and the fraudulent debts discharged. In addition, keep copies of all documents and records of your conversations about the theft.
• File a Police Report - A report filed with your local law enforcement will help you with creditors seeking proof of the identity theft or fraud. In many cases, a police report is required to resolve any identity theft dispute. In fact, consumer credit reporting companies will not block the fraudulent accounts and bad debts from appearing on your credit report without one.
• Call the Federal Trade Commission - Reporting your situation to the Federal Trade Commission (FTC) helps law enforcement officials across the country in their investigations. The FTC's Identity Theft Hotline also offers trained identity theft counselors to assist you with any questions or concerns you have about your legal rights and options. The hotline number is 877/IDTHEFT (877/438-4338). You may also visit their website at www.ftc.gov/idtheft for helpful tips and information, as well as sample forms and letters to help you in your reporting process.
• Call the Social Security Administration - If you suspect that an identity thief has used or has had access to your Social Security Number, it is important to contact the Social Security Administration at 800/772-1213. One call may not only help you to verify the accuracy of your reported earnings, it may also help you to check whether your name is on file correctly.
• Notify the U.S. Postal Inspector - If you suspect that U.S. Mail was used as part of an identity theft scheme, notify the U.S. Postal Inspector by calling 313/226-8184. Because mail fraud is a felony crime, the post office may be able to prosecute the perpetrator.
• Make Notes and Copies - Always be sure to keep a list of contacts you've made. Record names, titles, telephone numbers, and dates. Take detailed notes during your conversations, and make copies of any documents that you send. This will help tremendously if you should need to contact these people again, and it will help in compiling information to prosecute the identity thief.

RESOURCES

Be sure to report lost or stolen cards/checks immediately.
Lost or Stolen Cards/Checks
Credit Cards 800/556-5678
ATM Cards/Checks 800/522-6611
Debit Cards 800/682-6075

Forward any suspicious e-mails to us, so we may investigate.
fraud@ndfcu.org

Reduce the number of mail and telephone solicitations you receive.
Telephone Preference Service
www.dmaconsumers.org/cgi/offmailinglist

Remove your name from lists of pre-approved financing or credit offers.
Credit Bureau Opt Out Service
888/5OPTOUT (567-8688)

Verify the accuracy of your reported earnings and that your name is on file correctly.
Social Security Administration
800/772-1213

Report if U.S. Mail was used as part of an identity theft scheme.
United States Postal Inspector
313/226-8184

Place a "Fraud Alert" on your credit report.
Credit Bureaus
Equifax 800/525-6285
Experian 888/397-3742
TransUnion 800/680-7289

Discuss your legal rights and options with trained identity theft counselors.
Federal Trade Commission
877/IDTHEFT (438-4338)

Sign up for additional online purchase protection from Visa®.
Verified by Visa®
www.visa.com/verified
Check the strength of your online passwords.
Password Security Tips
www.securitystats.com/tools/password.php

Use computer software to ensure your online safety.
Protect Your Computer and Your Kids
www.OnGuardOnline.gov