Cal Poly Federal Credit Union Warns Consumers of Card-Activity Phish Attempt


A new phishing e-mail started making the rounds on Tuesday, Oct. 30, prompting the Cal Poly Federal Credit Union to issue a warning to all credit union members. The e-mail claims to need account information. Recipients of this e-mail are advised not to click on the link to the fake credit union Web page, and to just delete the message.

The Credit Union National Association (CUNA), is being used as the subject of a phishing message targeting all credit union members in order to collect personal account information, plastic card numbers and passwords, according to a CUNA news release.

Additionally, there is a phony e-mail circulating that claims it is from the Internal Revenue Services. Delete that one as well.

“It is never recommended to respond to any e-mail requesting your financial data,” warns Joy Tafarella, vice president of Cal Poly Federal Credit Union. “There are numerous phishing ploys to obtain personal and financial data circulating. Usually these phishing attempts appear to be official including the financial institution's logo. They often require your immediate action to remove a block on your account, or verify your account data. If you are ever in question of the legitimacy of an e-mail or phone call, you should contact your financial institution before replying.”

This new phishing-scam attempt using the Credit Union National Association's name, informs recipients about “irregular check card activity” and advises them to call a toll-free number to get any restrictions removed. The call is a ploy to get personal account information, possibly for identity theft purposes, the news release stated.

Many recipients received this fake message:

CUNA Alert: Irregular Check Card Activity

We detected irregular activity on check card on Oct. 25/2007. For your protection, you must reactivate your card. Call us immediately at 1.866.840.2863. We will review the activity on your account with you and upon verification, we will remove any restrictions placed on your account.

Please disregard this notice if you have already accessed the website or spoken with one of our representatives.

As a trade association for U.S. credit unions, “CUNA does not maintain any type of customer/member financial information,” emphasized Dorothy Steffens, CUNA's vice president of Web services in the news release, adding that “your financial institution would never request personal identification information over the phone.”

Anyone who may have responded to an e-mail of this nature should contact their credit union directly.