Security update
Fake Web Banker Account emails
CUA is aware that there are several hoax emails in circulation which seek to get you to disclose your confidential banking information.
It is important to note that CUA will NEVER ask you to update, confirm or disclose your personal banking or credit card details via email or by telephone. Nor would CUA ask for this information for any competition. Any contact of this nature is a hoax.
If you receive an email which you believe is a hoax, please forward it to fraud.prevention@cua.com.au, irrespective of whether you bank with CUA or not. If you have responded to a hoax email please immediately report the matter to CUA Direct on 133 cua (133 282).
Examples of recent hoax emails are shown below:
Tuesday 16 February 2010
----- Original Message -----
From: Credit Union Australia
To: undisclosed-recipients
Sent: Tuesday, February 16, 2010 5:52 AM
Subject: Security Program
Dear member,
Credit Union Australia is aware of a number of text messages and emails that are circulating under subjects like:
- Account De-activation
- Account Status Alert
- Changes to Terms and Conditions
- Irregular Activity
Verify your account and make it safe. Join our new security program now. It's simple and safe.
If you will not join the security program, in order to avoid fraudulent attempts your account will be locked within 24 hours.
Use the link below and join our security program.
[LINK REMOVED FOR SECURITY PURPOSES]
Regards, Credit Union Australia
Monday 8 February 2010
EXAMPLE #1
From: "CUA"<quiz@cua.com.au>
To:
Subject: Complete our quiz for a chance at 1000AUD
Date: Mon, 8 Feb 2010 13:27:06 -0800
Complete our quiz for a chance at 1000AUD
We will randomly draw 50 winners from those that respond with all correct responses and deposit 1000AUD in the member's account. You may only enter once and must be a member to enter.
Please follow the link below to proceed:
(Link removed for security purposes)
Winners will be notified by phone and/or mail.
You must complete this quiz within 24 hours to win.
Regards,
CUA
EXAMPLE #2
| CUA Security Notice |
|---|
|
As a mutual financial, CUA’s vision is to become the leading member owned banking alternative in Australia. In this quest, we have the support of over 600 dedicated and passionate staff whose primary focus is serving our 400,000 plus members through three state offices and over 70 branches and regional centres down the eastern seaboard and in Perth. Our terms and conditions you agreed to state that your service must always be under your control or those you designate all times. We have noticed some unusual activity related to your service that indicates other parties may have access and or control of your informations in your service. We apologize for any inconvenience this may cause, and appreciate your assistance in helping us maintain the integrity of the entire system. Thank you for your prompt attention to this matter. Please do not reply to this e-mail. Mail sent to this address cannot be answered. The link below will direct you to the Online Banking Log On screen. Link: [LINK REMOVED FOR SECURITY PURPOSES] Member ID 926839 |
EXAMPLE #3
----- Original Message -----
From: Credit Union Australia
Sent: Saturday, February 06, 2010 10:06 AM
Subject: Dear Valued Customer, please confirm your identity
Dear member:
Your account appear to be involved in activities that violate our policies.
Account 3081xxxx Freedom Plus Account
This account has been restricted.To avoid further collections please confirm that you are the right owner of this account by following these steps:
1. Log on to [LINK REMOVED FOR SECURITY PURPOSES]
2. Click 'Continue' button at the end of the page
3. Confirm that the details on file with us are correct
If you do not have access to your account , please [LINK REMOVED] Immediately.
If we do not have your confirmed details, your account may be suspended and additional collections remedies may be used to bring this account to current.
We appreciate your support and thank you for your prompt attention to this matter.
Thank you,
Sincerely CUA Member, Member FDIC.
Friday 5 February 2010
From: CUA Security [mailto:update@cua-australia-members.com]
Sent: Friday, 5 February 2010 7:18 AM
To: email@address.removed
Subject: Last Warning
Dear member:
We have recently updated our Online system to include new layer secure authentication. This is intended to provide you with the best security possible when accessing your account.
You will need to update your account in order to continue using your card.
[LINK REMOVED FOR SECURITY PURPOSES]
Your ticket code is L404943X.
We apologize for any inconvenience this may cause and appreciate your patience and understanding.
Member ID 404943
Tuesday 2 February 2010
CUA Web Banker
Message: a260e2ad2ed5613c485b6a69fd206d7e
Credit Union Australia Emergency Notice
Dear Credit Union Australia account holder,
During the last 48 hours we have noticed one or more attempts to log in to your web banker account from a foreign IP address associated with multiple password failures and we suspect that your CUA online banking account may have been accessed by an unauthorized third party.
To help fight the funding of terrorism and money laundering activities, Australian Federal law requires all financial institutions to obtain, verify and record information that identifies each person who owns an account, including joint owners.
What you have to do as the rightful account owner is to take the following two easy steps required to verify your identity. After the CUA identity verification is complete your account access will be automatically restored and this will ensure us that your account has not been compromised:
Step 1: First, use the link provided in this message to automatically login to Credit Union Australia Identity Verification. You will be asked to add at least one CUA Credit or Debit card and you will use the PIN (Personal Identification Number) associated with the card. For better online and offline security you can always add more than one card.
Step 2: Review your recent account history for any unauthorized withdrawals or deposits, and check you account profile to make sure no changes have been made. If any unauthorized activity has taken place on your account, report this to CUA online security staff immediately.
To get started, please click the link below:
[LINK REMOVED FOR SECURITY PURPOSES]
Thank you for your attention to this matter !
Electronic Signature: 37154a3913261484a0d150f824323d7465770f4b3ca1d40f0990ad3b586d5003d1dccd6afcf
4f968fc671189080be8f6e496ec9812235d4921f81b060fcd499f
Monday 25 January 2010
From: Credit Union Australia
Sent: Sunday, January 24, 2010 7:31 PM
To: email@address.removed
Subject: CUA Web Banker Alert [ email@address.removed ]
Dear email@address.removed,
This e-mail has been sent to you by Credit Union Australia to inform you that we were unable to verify your account details.
This might be due to either of the following reasons:
1. Submitting incorrect information during register process.
2. A recent change in your personal information. (eg: address, phone)
Due to this, to ensure that your Web Banker service is not interrupted, we request you to confirm and update your information today by following the link below
[Link Removed For Security Reasons]
If you have already confirmed your information then please disregard this message.
Regards,
Credit Union Australia member services
Thanks for your cooperation.
© Credit Union Australia Limited. ABN: 44 087 650 959 AFSL: 238317 BSB: 804050
Stay Smart Online
There are many more important safeguards that you can take to protect you and your family against fraud.
The Australian Government has an excellent website that provides detailed information on the latest fraud prevention methods. Go to www.staysmartonline.gov.au or refer to our fight against fraud section for more information.
If you have any other queries, please contact us on 133 cua (133 282).
