Phishing and Vishing Identity Theft Scams
The Sooper Credit Union Email Scam
Redirects to spoofed (Fake) website
You may have received an email like the one below that looks very authentic,
like it came from Sooper Credit Union, or a phone call about the same subject. It is an attempt
you get you to enter confidential information (typically a social security
number, name, address, bank account information, etc., to allow the scammers to
steal your identity and open credit cards in your name.
This email was not sent by Sooper Credit Union; Sooper Credit Union is a victim as well.
This is referred to as "phishing" (when by email) or "vishing" (when by
telephone). If you receive
an email similar to the one below, DO NOT click on the link, and do not enter
any information on the forms there.
The website that the link leads to is a spoof; a fake website, not created by
Sooper Credit Union. It does not go to Sooper Credit Union! When you enter the information they ask for, you will simply be
handing the thieves the keys to your bank accounts. That is how spoofing, phishing
and vishing works.
Remember, no reputable business would send you
an email or a phone call requesting your personal account information. Any such email you
receive asking for this information should be considered phony and brought to
the attention of the business being 'phished'.
Anytime you need to go to a website for your bank, credit card companies or
other personal, financial or confidential information; do not follow a link in
an email; just type their address in your browser directly (such as
http://www.soopercu.org/ )
Below are actual phishing emails that started circulating in early 2008.
We have put a warning over the links to the phisher's website.
Thu, 24 Apr 2008 10:24:16 -0700
Dear Member,
Because you have to many wrong attemps on your
Sooper Credit Union Online Banking, we had to put your account on hold.
Account Status: Temporary Blocked
We ask you to complete as soon as possible our
security steps which will reactivate your online banking.
To do this please follow the link bellow :
https://mfa.homebanking.soopercu.org/auth/status-canged_Authorize?fiid=1
After this steps are complete you will be contacted
by phone in 3 days by a Sooper Credit Union representative.
© 2008 Sooper Credit Union. All rights reserved.
What to do
Sooper Credit Union has been made aware of some fraudulent e-mail and phone
activities asking to confirm account information using Sooper Credit Union's
name and logo. If you would like more information or wish to report that you
have been a victim of a scam, please call their Call Center Supervisor, Domenic
Sansotta at (303) 427-5005 during normal working hours or e-mail
phishing@soopercu.org. You can also contact Sooper Credit Union to
report any fraudulent activity on your Sooper Credit Union accounts by calling
the Denver Branch at (303)986-7500 or toll free at 1(888)SOOPER-1.
They would also appreciate it if you forward any suspicious e-mails to
phishing@soopercu.org.
Please note: Sooper Credit Union will never send an email or call you requesting
your account number, PIN or credit card information. Never respond to a request
for this information.
Sooper Credit Union Phishing Scam Examples:
Sooper CU has published the following examples on their website:
For more information about phishing, see
this page.
Message headers
Received: from mail.vanbergconstruction.com
(76.227.86.206 [76.227.86.206])
by dm35.mta.everyone.net (EON-INBOUND)
with ESMTP id dm35.480fe5cd.2bdad6
for <spenlo@netscape.com>;
Thu, 24 Apr 2008 10:24:41 -0700
Received: from User ([76.227.39.114]) by
mail.vanbergconstruction.com with Microsoft SMTPSVC(6.0.3790.3959);
From: "Sooper Credit Union"<service@soopercu.status.com>
Subject: Account Status Changed
Date: Thu, 24 Apr 2008 13:27:06 -0400
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 1
X-MSMail-Priority: High
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE
V6.00.2600.0000
Return-Path:
service@soopercu.status.com
Message-ID: <SBS-VANBERGRqf69aZb0000017e@mail.vanbergconstruction.com>
X-OriginalArrivalTime: 24 Apr 2008 17:24:16.0888 (UTC)
FILETIME=[05F89F80:01C8A630]
To: undisclosed-recipients: ;
| 
