"Navy Federal Online Banking Alert" Phishing Scams

Navy Federal Online Banking Alert Phishing Scams

Navy Federal Credit Union Member customers who have received the "Online Banking Alert" emails like the one below, which claim they need to update their account profile, are asked to delete and not follow the instructions in them. This is because the emails area a phishing scam that is being sent by cybercriminals to frighten their potential victims into clicking on a link within the same email messages, which go to phishing websites that steal Navy Federal Credit Union Member(NFCU) account credentials (usernames and passwords).

Navy Federal Credit Union Member customers who have already been tricked by the phishing email messages are asked to change their passwords and contact Navy Federal Credit Union Member (NFCU) immediately before their money is stolen, online accounts hijacked and used fraudulently by cybercriminals.

The "Navy Federal Online Banking Alert" Scam

From: NAVY FEDERAL <safepass@lsu.edu>

Sent: Sun, Jul 15, 2018 1:16 pm

Subject: Online Banking Alert

Dear Navy Federal Member,

Today July 15th 2018, Your Account has been flagged as one of numerous accounts that need to be reviewed

The main reason for this action are:

Unauthorized Debit Card Use & Payment Issues

Billing & Payment Issues

Abuse & Terms of Use Issues

We strongly suggest that you follow the link below in order to rectify the issue

Click Here To Confirm

Once you've done this your account will be removed from the flagged accounts automatically.

Thank You,

Navy Online Team.

Navy Federal Credit Union customers should never click on a link to sign into their online accounts. They should always go directly to https://www.navyfederal.org/ and sign into their accounts from there. Once they have signed in, they will be notified of changes, verification or updates that need to be done to their accounts.

Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search Search engine.

Note: Some of the information in samples on this website may have been impersonated or spoofed.

Bookmark articleSave

Was this article helpful?

Comments, Questions, Answers, or Reviews

To protect your privacy, please remove sensitive or identifiable information from your comments, questions, or reviews. We will use your IP address to display your approximate location to other users when you make a post. That location is not enough to find you.

Your post will be set as anonymous because you are not signed in. An anonymous post cannot be edited or deleted, therefore, review it carefully before posting. Sign-in.

Comments(Total: 14)

May 26, 2020 at 9:54 PM by
"Navy Federal Online Banking Alert" Phishing Scams
an anonymous user from: Arlington, Virginia, United States

You do not make it easy to report attempts. How about an online address to which attempts can be forwarded by people who are NOT Navy Credit Union Members, but have received a fishing email? Is this not exactly the type of information you are interested in?

Richard g...

Delete

April 29, 2020 at 1:06 PM by
"Navy Federal Online Banking Alert" Phishing Scams
an anonymous user from: Rincon, Georgia, United States

Received this fraudulent email today:

"navy.feds@lon.net

Important Information

https://www.navyfederal.org/images/structure/nfculogo.png

Dear Member,

Your Stimulus Payment has been sent to your account

Pending Payment will be processed after Verification.

Logon below to confirm Deposits

www.navyfederal.org

Customer Advisory

Copyright 2020 NFCU"

Delete

February 15, 2020 at 4:22 PM by
"Navy Federal Online Banking Alert" Phishing Scams
info

"From: "Navy Federal Credit Union" <noreply@customer.com>

Subject: Important Information Regarding Your Navy Federal

Date: February 15, 2020 at 9:22:48 AM EST

To: Recipients <noreply@customer.com>

Navy Federal Credit Union

Navy Federal Security Zone

Access XXXXXXX0

Email for Member

Dear Member,

We noticed unusual transaction attempts from your debit card and as a result, we have temporarily suspended your card and limited access to your online account as part of our security system to keep your information safe.

You need to sign on to our Security Centre and verify your identity in other to recover your account and continue using your card.

Note: Your account will be secured once you verify your information.

Safeguarding your information is a priority for Navy Federal. We value your business and the opportunity to serve all your financial needs.

sincerely,

Navy Federal Protection Team"

Here is another scam.

Delete

September 18, 2019 at 12:41 PM by
"Navy Federal Online Banking Alert" Phishing Scams
info

Here is another scam:

"From: nfcu.org [mailto:universityevents@brown.edu]

Sent: Tuesday, September 17, 2019 11:35 AM

Subject: Confirm Account Information

Importance: High

Attention from Sullivan County Information Technology Services: This email came from an external source. Do not open attachments or click on links from unknown senders or unexpected emails.

Image removed by sender.

Dear Member,

Due to numerous unauthorized transactions on your card account, your account has been

frozen. We could not verify your recent card activities. Navy Federal Credit Union requires

your immediate response about this before we are forced to take legal actions. Kindly verify your

information with us by accessing your account below.

Image removed by sender. vgqeGm.png

You will be asked some questions that you registered with us to help us better

verify you.

Thank you

NavyFederal Online Team."

Delete

July 25, 2019 at 11:17 AM by
"Navy Federal Online Banking Alert" Phishing Scams
info

"From: Navy Federal <messenger@webex.com>

Sent: Wednesday, June 26, 2019, 9:36:57 AM MST

Subject: An Issue Regarding Your Account.

Access to your Navy Federal Mobile and Online banking account has been temporarily suspended.

This was for a verification purpose to keep your account secured.

To regain access, please click on the button mentioned below and follow the instruction.

Here's what to do next:

Sign in to your online banking following this link mentioned below.

Once you've signed in with your account, You will be required to enter specific information.

Sign in to Navy Federal"

Another scam.

Delete

April 8, 2019 at 9:43 PM by
"Navy Federal Online Banking Alert" Phishing Scams
an anonymous user from: Troutdale, Oregon, United States

I got this in my email. I don't have a Navy Federal Credit Union account.

"Navy Federal <no-replxnfcu098@hawaii.edu>

Mon 4/8/2019 6:00 PM

You

Important Account Information

Navy Federal Security Zone

Email for member

Dear Member,

In an effort to safeguard your information. Navy federal helps to protect and monitor your account in multiple ways. Your access to our internet banking needs to be updated to help us improve our bank and other security measures associated with your account(s).

Signon to Update

Please kindly take a minute or two to confirm your account information as a precaution against future problems with online banking.

© 2019 Navy Federal Credit Union.

Products & Services • FAQs • Mobile Banking • Contact Us

Please do not reply to this email. This email is being sent from Navy Federal Credit Union at PO Box 3000, Merrifield, VA 22119-3000. For contact information, or if you have any questions about this email, please click here

Equal Housing Lender APY= Annual Percentage Yield APR= Annual Percentage Rate. © 2019 Navy Federal Credit Union. All rights reserved. Message and data rates may apply. Terms and Conditions are available. NFCU 37859 (9-14) Federally insured by NCUA.

Privacy Policy

Follow Us:"

Delete

March 26, 2019 at 11:16 PM by
"Navy Federal Online Banking Alert" Phishing Scams
info

Got the an email from:

"From: Navy Federal [mailto:norenfcu@nfcu.net]

Sent: Tuesday, March 26, 2019 4:50 PM

To: Recipients

Subject: ACTION REQUIRED

Importance: High"

Delete

March 19, 2019 at 11:33 AM by
"Navy Federal Online Banking Alert" Phishing Scams
an anonymous user from: El Centro, California, United States

Thank you for letting us know its a bogus/malicious notice. Thought it was suspicious when I received an email from Navy Federal; "Fraud Alert: Card declined, on March 10, 2019."

Then, on March 15, 2019, received another email from Navy Federal Credit Union; "Card Declined: Fraudulent Activity Detected...I, nor my husband, have an account with Navy Federal."

Thank you,

S Dunn

Delete

February 27, 2019 at 8:43 AM by
"Navy Federal Online Banking Alert" Phishing Scams
info

Here is another scam:

-Original Message-

From: Navy Federal <onlineservice@banking.com>

Sent: Wed, Feb 27, 2019 8:22 am

Subject: Account Security Measure

Navy Federal Credit Union Account Access Notification Navy Federal Security Zone

Email for Member

Access XXXXXXXXXXXX

Dear Member,

We're writing to let you know that your Navy Federal Online® Account requires full profile update.

We recently discovered that different Computer users could gain access to your Online® Account, and several password was attempted with your Navy Federal Credit Union Online® Account. It is now necessary for you to verify your account information to confirm your Identity. Kindly click on Update, to verify your profile immediately.

Click Here To Verify

Delete

December 17, 2018 at 6:05 AM by
"Navy Federal Online Banking Alert" Phishing Scams
info

Here is another scam:

-Original Message-

From: Navy Federal Credit Union <panasonic@uh.edu>

Sent: Sun, Dec 16, 2018 11:11 pm

Subject: Banking security validation

Navy Federal Credit Union

Navy Federal Security Zone

Dear Member.

NavyFederal Banking security validation.

Our system has detected incomplete update on your account.

Update required to help ensure your safety and security. Follow secure update below.

Secure Update

Thank you,

Navy Online Team

Delete

November 19, 2018 at 12:59 PM by
"Navy Federal Online Banking Alert" Phishing Scams
info

Here is another scam:

"From: Navy Federal <secure@a5.net>

Sent: Saturday, November 17, 2018 10:46 AM

To: Recipients

Subject: Pending E-payment: Action Required

Navy Federal Credit Union

This Email is to notify you that there is a pending incoming E-Payment on your NavyFederal account.

Click Here To Confirm

Pending payment will be credited into your account within 24 to 48 hours after your approval.

Thank You,

Navy Online Team."

Delete

Write Your Comment, Question, Answer, or Review

Online Threat Alerts Security Tips

Pay the safest way

Credit cards are the safest way to pay for online purchases because you can dispute the charges if you never get the goods or services or if the offer was misrepresented. Federal law limits your liability to $50 if someone makes unauthorized charges to your account, and most credit card issuers will remove them completely if you report the problem promptly.

Guard your personal information

In any transaction you conduct, make sure to check with your state or local consumer protection agency and the Better Business Bureau (BBB) to see if the seller, charity, company, or organization is credible. Be especially wary if the entity is unfamiliar to you. Always call the number found on a website’s contact information to make sure the number legitimately belongs to the entity you are dealing with.

Be careful of the information you share

Never give out your codes, passwords or personal information, unless you are sure of who you're dealing with

Know who you’re dealing with

Crooks pretending to be from companies you do business with may call or send an email, claiming they need to verify your personal information. Don’t provide your credit card or bank account number unless you are actually paying for something and know who you are sending payment to. Your social security number should not be necessary unless you are applying for credit. Be especially suspicious if someone claiming to be from a company with whom you have an account asks for information that the business already has.

Check your accounts

Regularly check your account transactions and report any suspicious or unauthorised transactions.

Don’t believe promises of easy money

If someone claims that you can earn money with little or no work, get a loan or credit card even if you have bad credit, or make money on an investment with little or no risk, it’s probably a scam. Oftentimes, offers that seem too good to be true, actually are too good to be true.

Do not open email from people you don’t know

If you are unsure whether an email you received is legitimate, try contacting the sender directly via other means. Do not click on any links in an email unless you are sure it is safe.

Think before you click

If an email or text message looks suspicious, don’t open any attachments or click on the links.

Verify urgent requests or unsolicited emails, messages or phone calls before you respond

If you receive a message or a phone call asking for immediate action and don't know the sender, it could be a phishing message.

Be careful with links and new website addresses

Malicious website addresses may appear almost identical to legitimate sites. Scammers often use a slight variation in spelling or logo to lure you. Malicious links can also come from friends whose email has unknowingly been compromised, so be careful.

Secure your personal information

Before providing any personal information, such as your date of birth, Social Security number, account numbers, and passwords, be sure the website is secure.

Stay informed on the latest cyber threats

Keep yourself up to date on current scams by visiting this website daily.

Use Strong Passwords

Strong passwords are critical to online security.

Keep your software up to date and maintain preventative software programs

Keep all of your software applications up to date on your computers and mobile devices. Install software that provides antivirus, firewall, and email filter services.

Update the operating systems on your electronic devices

Make sure your operating systems (OSs) and applications are up to date on all of your electronic devices. Older and unpatched versions of OSs and software are the target of many hacks. Read the CISA security tip on Understanding Patches and Software Updates for more information.

What if You Got Scammed?

Stop Contact With The Scammer

Hang up the phone. Do not reply to emails, messages, or letters that the scammer sends. Do not make any more payments to the scammer. Beware of additional scammers who may contact you claiming they can help you get your lost money back.

Secure Your Finances

  • Report potentially compromised bank account, credit or debit card information to your financial institution(s) immediately. They may be able to cancel or reverse fraudulent transactions.
  • Notify the three major credit bureaus. They can add a fraud alert to warn potential credit grantors that you may be a victim of identity theft. You may also want to consider placing a free security freeze on your credit report. Doing so prevents lenders and others from accessing your credit report entirely, which will prevent them from extending credit:

Check Your Computer

If your computer was accessed or otherwise affected by a scam, check to make sure that your anti-virus is up-to-date and running and that your system is free of malware and keylogging software. You may also need to seek the help of a computer repair company. Consider utilizing the Better Business Bureau’s website to find a reputable company.

Change Your Account Passwords

Update your bank, credit card, social media, and email account passwords to try to limit further unauthorized access. Make sure to choose strong passwords when changing account passwords.

Report The Scam

Reporting helps protect others. While agencies can’t always track down perpetrators of crimes against scammers, they can utilize the information gathered to record patterns of abuse which may lead to action being taken against a company or industry.

Report your issue to the following agencies based on the nature of the scam:

  • Local Law Enforcement: Consumers are encouraged to report scams to their local police department or sheriff’s office, especially if you lost money or property or had your identity compromised.
  • Federal Trade Commission: Contact the Federal Trade Commission (FTC) at 1-877-FTC-HELP (1-877-382-4357) or use the Online Complaint Assistant to report various types of fraud, including counterfeit checks, lottery or sweepstakes scams, and more.
  • Identitytheft.gov: If someone is using your personal information, like your Social Security, credit card, or bank account number, to open new accounts, make purchases, or get a tax refund, report it at www.identitytheft.gov. This federal government site will also help you create your Identity Theft Report and a personal recovery plan based on your situation. Questions can be directed to 877-ID THEFT.

How To Recognize a Phishing Scam

Scammers use email or text messages to try to steal your passwords, account numbers, or Social Security numbers. If they get that information, they could get access to your email, bank, or other accounts. Or they could sell your information to other scammers. Scammers launch thousands of phishing attacks like these every day — and they’re often successful.

Scammers often update their tactics to keep up with the latest news or trends, but here are some common tactics used in phishing emails or text messages:

Phishing emails and text messages often tell a story to trick you into clicking on a link or opening an attachment. You might get an unexpected email or text message that looks like it’s from a company you know or trust, like a bank or a credit card or utility company. Or maybe it’s from an online payment website or app. The message could be from a scammer, who might

  • say they’ve noticed some suspicious activity or log-in attempts — they haven’t
  • claim there’s a problem with your account or your payment information — there isn’t
  • say you need to confirm some personal or financial information — you don’t
  • include an invoice you don’t recognize — it’s fake
  • want you to click on a link to make a payment — but the link has malware
  • say you’re eligible to register for a government refund — it’s a scam
  • offer a coupon for free stuff — it’s not real

About Online Threat Alerts (OTA)

Online Threat Alerts or OTA is an anti-cybercrime community that started in 2012. OTA alerts the public to cyber crimes and other web threats.

By alerting the public, we have prevented a lot of online users from getting scammed or becoming victims of cybercrimes.

With the ever-increasing number of people going online, it important to have a community like OTA that continuously alerts or protects those same people from cyber-criminals, scammers and hackers, who are every day finding new ways of carrying out their malicious activities.

Online users can help by reporting suspicious or malicious messages or websites to OTA. And, if they want to determine if a message or website is a threat or scam, they can use OTA's search engine to search for the website or parts of the message for information.

Help maintain Online Threat Alerts (OTA).

"Navy Federal Online Banking Alert" Phishing Scams