How to Protect Yourself from Fraud
Card skimming and merchant data breaches have cost consumers and financial institutions millions of dollars over the past few years. The credit union has implemented several behind-the-scenes fraud prevention and loss mitigation programs that run 24/7. We also have an entire department dedicated solely to fraud and security.
However, it's very important to keep your debit and credit cards safe and secure. Also make sure we have your most current phone number and e-mail address in case we need to contact you. In the event that your debit or credit card is lost or stolen, compromised, or you see unauthorized charges on your account, here's what to do:
Visa debit cards.
For debit cards during normal business hours, call the credit union immediately at (800) 388-3000. You may also visit a local branch location. After normal business hours call (866) 664-9364. If you Visa debit card becomes disabled because of potential fraud on your account, and you are receiving calls from our Fraud Prevention Department, you will need to call back to verify your recent transactions. Call (877) 230-3179 to confirm or deny the debit card transactions. Your card will remain disabled until you contact the Fraud Prevention Department to confirm your recent transactions.
It’s possible our automated security systems may disable your debit card if suspect transactions are detected. If you find your debit card has been disabled, you can call (877) 230-3179 for information and 24-hour assistance.
To file a fraud claim for unauthorized transactions, call the credit union during normal business hours at
Visa credit cards.
For credit cards during and after normal business hours, call cardholder services at (800) 449-7728.
Visa gift cards.
For gift cards during and after normal business hours, call the credit union immediately at (800) 388-3000.
Wednesday, January 07, 2015 – Kmart Investigating Payment System Breach. On Thursday, Oct. 9, 2014 Kmart detected that their payment data system had been breached and immediately launched a full investigation working with a leading IT security firm. One Nevada Credit Union members will be notified via email and phone if action needs to be taken to replace any compromised debit cards.
You can read the Kmart data breach update here: https://www.kmart.com/en_us/dap/statement1010140.html?adcell=hpnewsrelease
Monday, September 8, 2014 – The Home Depot Data Breach. The Home Depot®, the world’s largest home improvement retailer, today confirmed that its payment data systems have been breached, which could potentially impact customers using payment cards at its U.S. and Canadian stores. If you shopped at The Home Depot since April 2014 please review your account regularly and notify One Nevada if you see any suspicious activity.
You can read the Home Depot data breach update here: https://corporate.homedepot.com/MediaCenter/Documents/Press%20Release.pdf
Friday, August 22, 2014 – Albertsons Data Breach
Albertsons grocery has recently learned of an unlawful intrusion to obtain credit and debit card payment information in some of its stores. It has not yet been determined whether any One Nevada cardholders are affected. Our fraud team is keeping tabs on the situation and will notify you if we see any fraud on your account(s).
If you shopped at Albertsons between June 22, 2014 and July 17, 2014, please review your account regularly and notify us if you see any suspicious activity.
You can read the Albertsons data security update here:
Wednesday, July 30, 2014 – Scam Alert: Avoid Summertime Tax Scams
The IRS has published a warning to consumers of common tax scams that are continuing and attached is the link to the site addressing this issue. Credit unions may want to include this warning on their website or add to the Newsletters that is sent to your membership.
The text of the article is quoted below:
“Ah, summertime! Warm days, rest and recreation andâ€¦tax scams. Thieves don’t stop victimizing unsuspecting taxpayers with their scams after April 15. Identity theft, phone and phishing scams happen year-round. Those three top the IRS’s ‘Dirty Dozen’ list of tax scams this year. Here’s some important information you should know about these common tax scams:
1. Identity Theft. Identity thieves steal personal and financial information to commit fraud or other crimes. This can include your Social Security number or bank information. An identity thief may file a phony tax return to claim a fraudulent refund.
The IRS has a special identity protection page on IRS.gov. It has many resources you can use to reduce your risk of becoming a victim. The page can also tell you what steps to take if you are a victim of identity theft and need help. This includes how and when you should contact the IRS Identity Protection Specialized Unit.
2. Phone Scams. In these scams, thieves pose as the IRS and call would-be victims with one goal in mind: to steal their money. Callers will tell you that you owe taxes and demand immediate payment. They will tell you that you must pay the bogus tax bill with a pre-loaded debit card or wire transfer. The callers are often abusive and threaten arrest or deportation. They may know the last four digits of your Social Security number. They also rig caller ID to falsely show that the call is from the IRS.
Keep in mind that if a person owes taxes, the IRS will first contact them by mail, not by phone. The IRS doesn’t ask for payment with a pre-paid debit card or wire transfer. If you owe, or think you might owe federal taxes and you get one of these calls, hang up. Call the IRS at 800-829-1040. The IRS will work with you to pay what you owe. If you don’t owe taxes, call and report the incident to the Treasury Inspector General for Tax Administration at 800-366-4484.
3. Phishing Scams. Criminals use the IRS as bait in a phishing scam. Scammers typically send emails that purport to come from the IRS. They often lure their targets with a false promise of a refund or the threat of an audit. They may also set up a phony website that looks like the real IRS.gov. These phony sites often have the IRS seal and other graphics to make them appear official. Their goal is to get their victim to reveal personal and financial information. They use the information they get to steal identities and commit fraud.
The IRS doesn’t contact people by email about their tax account. Nor does the agency use email, social media, texting or fax to initiate contact or ask for personal or financial information. If you get an email like this, do not click on a link or open any attachments. You should instead forward it to the IRS at firstname.lastname@example.org. For more on this topic visit IRS.gov and select the ‘Reporting Phishing’ link at the bottom of the page.
Don’t let tax scams take the fun out of your summer. Be alert to phone and phishing email scams that use the IRS as a lure. Visit the genuine IRS website, IRS.gov, for more on what you can do to avoid becoming a victim and how to report tax fraud.”
Wednesday, May 21, 2014 – eBay Reports Data Breach. Says No Payment Data Was Involved. Online auction site eBay reported today that hackers stole customer information from a company database two months ago. The information stolen included customer names, encrypted account passwords, email addresses, physical addresses, phone numbers and birth dates.
Although the password data was encrypted, eBay has urged its customers to reset their passwords as a precaution should the data thieves manage to decrypt them.
eBay says it has not found evidence of unauthorized activity or access to financial information, based on "extensive" tests. The company says financial data was not affected, as this information is stored in an encrypted format on a separate network by its subsidiary, PayPal. eBay further reported that they have seen no proof of unauthorized access to PayPal.
Tuesday, March 25, 2014 – RISK Alert – Phishing for Member Information – Automated Call and Text Scam. There has been an increase in reports from banks and credit unions around the U.S. whose customers are receiving automated calls and text messages asking them to enter personal information over the phone. Known as “phishing,” these calls are a fraudulent attempt to steal member‘s debit and credit card information. Members should immediately hang up and disregard these calls and text messages.
Please be advised: One Nevada Credit Union will never ask for your personal information – including credit or debit card numbers – during an automated or unsolicited phone call or text message. If you receive a call or text asking for information, please hang up immediately and do not respond. If you think your account has been compromised or you are a victim of fraud, please call our Customer Service Center as soon as possible.
Please remember: Never give personal, credit or debit card information to anyone!
Thursday, March 28, 2013 — Phony Call Scam Alert. Please be advised. We have received reports of fraudulent phone calls going out to members. These calls state that your ATM, debit and/or credit cards have been blocked and then asks you to enter the full card number to have the card unblocked. DO NOT DO THIS! These calls are not from us. We will never ask members for their information over the phone. Please contact us immediately if you have received a call like this or have any questions or concerns.
Tuesday, July 24, 2012 — Free $1,000 Gift Card Scam. Some members have received a e-mail claiming to be from the credit union and offering a $1,000 Visa Gift Card free of charge. The message is a scam and was not sent by One Nevada. Please DO NOT click or respond to the call to action in the message. The body of the e-mail resembles this format:
Date: Mon, 23 Jul 2012 20:10:01 -0400
Subject: XXXX, a thank you from One Nevada Credit Union
On behalf of One Nevada Credit Union you have been issued a $1,000 Visa Gift Card free of charge.
Card type: Visa Gift Card
Issued to: XXX XXXXX
Issuing branch: Las Vegas, Nevada
Valid until: 08/2015
Please use the following website to claim your card and have it shipped to the address of your choosing:
Go to: www reward2012 com
Note that claims must be made within 48 hours from this email being sent, or the above link will become invalid.
Employee Benefits Center, LLC
Friday, February 17, 2012 — Frightening Calls from Fake Debt Collectors Who Threaten Jail. The Fight Fraud Taskforce has received several calls from consumers about phony debt collectors. The scammers try to scare consumers into paying debts that are not theirs. The fake debt collectors call and say you will be arrested and thrown in jail unless you send money immediately. The amounts claimed range from a couple hundred dollars to several thousand. The fraudsters use the names of real law enforcement entities, like the Sheriff’s Department. The goal of the scam is to scare the person getting the call into sending money via Western Union or MoneyGram or to give up their bank details to hit your bank account, in order to prevent the police from coming to arrest you in the next few hours. The scammers typically use telephone lines with forged IDs, so they are not even in the United States although they pretend to be. They use rented numbers for return phone calls. After a short period of time, they dump the number and start using a new number. In a nasty twist, the fraudsters use public information to obtain employment information and call employers to try to collect the bogus debt. If you are contacted by one of these scammers:
- Remember that, if someone calls you demanding money to prevent your arrest, it is a scam. No debt collector has the authority to arrest you or put you in jail.
- Be sure to confirm the legitimacy of the call AND the debt.
- Do not provide or confirm any bank account, credit card or other personal information over the phone.
- File a complaint online with the Federal Trade Commission at https://www.ftccomplaintassistant.gov/
- File a complaint with the Federal Bureau of Investigation at https://tips.fbi.gov
Wednesday, February 1, 2012 — Better Business Bureau Phishing Scam. Consumers are being targeted by scammers in a new twist on an existing Better Business Bureau phishing scheme. In the old scheme, consumers would receive e-mails from sources claiming to be the BBB telling of a complaint against their business. They are encouraged to respond, giving out personal information. In the new twist, scammers are calling consumers and telling them that they have been a victim of a BBB e-mail scam, and that malware and viruses have been downloaded onto their computer. They encourage them to give out personal information and download software to clean up the malware and viruses. Please remember, do not give out any personal information that has been solicited over the phone or by e-mail, and do not download any software without researching it first.
Wednesday, April 17, 2011 — PlayStation Network and Qriocity services information release from Sony. "We have discovered that between April 17 and April 19, 2011, certain PlayStation Network and Qriocity service user account information was compromised in connection with an illegal and unauthorized intrusion into our network. In response to this intrusion, we have: 1) Temporarily turned off PlayStation Network and Qriocity services; 2) Engaged an outside, recognized security firm to conduct a full and complete investigation into what happened; and) Quickly taken steps to enhance security and strengthen our network infrastructure by rebuilding our system to provide you with greater protection of your personal information.
We greatly appreciate your patience, understanding and goodwill as we do whatever it takes to resolve these issues as quickly and efficiently as practicable.
Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.
For your security, we encourage you to be especially aware of email, telephone and postal mail scams that ask for personal or sensitive information. Sony will not contact you in any way, including by email, asking for your credit card number, social security number or other personally identifiable information. If you are asked for this information, you can be confident Sony is not the entity asking. When the PlayStation Network and Qriocity services are fully restored, we strongly recommend that you log on and change your password. Additionally, if you use your PlayStation Network or Qriocity user name or password for other unrelated services or accounts, we strongly recommend that you change them as well.
To protect against possible identity theft or other financial loss, we encourage you to remain vigilant, to review your account statements and to monitor your credit reports. We are providing the following information for those who wish to consider it: U.S. residents are entitled under U.S. law to one free credit report annually from each of the three major credit bureaus. To order your free credit report, visit www.annualcreditreport.com or call toll-free (877) 322-8228."
Wednesday, February 6, 2011 — Jury Services Scam. We were recently notified of a Jury Services scam aimed at obtaining members Social Security Numbers and other personal information. The scammer calls claiming to work for a local court and claims you’ve failed to report for jury duty and that a warrant has been issued for your arrest.
The victims will often claim they never received the jury duty notification. The scammer then asks the victim for confidential information for "verification" purposes. Specifically, the scammer asks for the victims Social Security Number, birth date, and sometimes even for credit card numbers and other private information.
So far, this jury duty scam has been reported in Michigan, Ohio, Texas, Arizona, Illinois, Pennsylvania, Minnesota, Oregon and Washington. Court workers will never call you to ask for your Social Security Numbers or other private information.
This jury duty scam is the latest in a series of identity theft scams where scammers use the phone to try to get people to reveal their Social Security number, credit card numbers or other personal confidential information. Never give out your Social Security number, credit card numbers or other personal confidential information when you receive a phone call.
Friday, February 3, 2011 — Your Mortgage Has Been Purchased Scam. It is a common practice for financial institutions to buy and sell mortgages. Many of us who own homes have had our mortgages sold at least once. It is common for the new lender to send a letter by mail notifying the homeowner that they have purchased a mortgage. Fraudsters have found a way to take advantage of homeowners who loans have been sold. They have recently sent out letters claiming that they purchased your mortgage through a major bank. If you receive such a letter, please contact your current mortgage lender to verify if they have sold your mortgage before sending any payments to a new lender.
Monday, December 6, 2010 — Fake Calls About Visa® Rate Reduction. We have been made aware that one of our members received a phone call asking for information about their One Nevada Credit Union Visa® in order to give them a lower rate. We do not ask for this information via the telephone and are not making these calls. Please call the credit union immediately if you provided any personal information about your Visa® account.