‘Phishing’ / fraudulent emails
Recently there have been quite a few fraudulent emails assuming the identity of credit unions, encouraging people to share member numbers and pin numbers. These authentic-looking messages sometimes include the organisations’ logos and are designed to fool people into divulging their personal information. We would like to confirm that Carlow District Credit Union does not send any emails to members requesting their security details or any other confidential information. If you receive an email reporting to be from Carlow District Credit Union asking you to input your details then please let us know. At any time, if you feel at all suspicious about it, then delete it without opening or forward the email to email@example.com.
This is a type of phishing attack where mobile phone users receive text messages containing a Web site hyperlink, which, if clicked would download a Trojan horse to the mobile phone. It is similar to phishing, but refers to fraudulent messages sent over SMS (text messaging) rather than email.
Vishing (voice or VoIP phishing) is an electronic fraud tactic in which individuals are tricked into revealing critical financial or personal information to unauthorized entities. Vishing works like phishing but does not always occur over the Internet and is carried out using voice technology. A vishing attack can be conducted by voice email, VoIP (voice over IP), or landline or cellular telephone.
‘Phishing’ uses links that appear to be legitimate but actually take you somewhere else. ‘Pharming’ hijacks the domain name so that even if you are a ‘phishing’-aware user who specifically types in the web site you want (e.g. http://www.abc.ie); you will still end up at a different web site anyway.
To help defeat ‘pharming’, you need to check the SSL (secure sockets layer), which provides you with a secure and private connection. When you log-in to Carlow District Credit Union, double-click the padlock symbol at the bottom of your browser to ensure the site certificate is valid and belongs to Carlow District Credit Union.
A Trojan is a malicious file, usually disguised as something useful, but when activated, can cause loss, damage or even theft of data. The critical difference between a Trojan and a virus is that a Trojan cannot replicate itself. The only way that it can spread is if you help it, typically by opening. Once you open this file, the Trojan goes to work destroying your computer’s functionality – possibly recording your logging-in details. A good line of defence is not to accept files from someone you don’t know, and if you have any doubts, then do not open the file.
Browsers / Operating system
Always try and keep your operating system (e.g. Windows 10) and web browser (e.g. Edge, Chrome, Firefox, Safari, Internet Explorer) up-to-date. They are not infallible products, which is why the makers often provide patches to correct problems. To stay informed, have a look at the following website: www.microsoft.com (or visit the website of the relevant operating system or browser that you are using).
Firewall / anti-virus software
If you can, use a personal firewall and anti-virus software to prevent unauthorised access and viruses being downloaded onto your PC when you’re on the Internet. Do try and remember to keep them updated with the latest versions.
This is a very important area and one you can ensure is kept hidden. You should never write your personal details down or share them with anyone.
Examine all transactions
Regularly check your transactions by looking at your account balances and view transactions. Also look at the ‘last logged in’ time on the left hand side under the menu and compare this to the last time you logged in. If you find anything suspicious then report it, by clicking on ‘new message’ from your personal homepage.
Whenever you are using a PC in a public place such as a cyber café, be extra careful. Ensure there is nobody behind you when you are entering your passwords.
Never leave your PC logged on to your Carlow District Credit Union account. Once you have finished, always remember to log out and shut down your browser. This is especially important if you have been using a public PC.