2011 Scam Alerts


December 30, 2011

Our sister bank, The Bank of Holland, has received reports of a fraudulent letter claiming to be from The Bank of Holland. The letter claims to be a “Payment Reduction Notice Administrative Office: Important Information Regarding your Loan with The Bank of Holland”.

While we haven’t yet heard of any clients of The Bank of Northern Michigan receiving this letter, we wanted to take this opportunity to let our clients know that we have not sent any such letter. If you do receive a letter in the mail claiming to be from The Bank of Northern Michigan, please do not call the number on the letter, but instead inform us at 877.487.1765 (Petoskey) or 866.237.7999 (Traverse City).

The letter states that based on public information the recipient may qualify for a payment reduction. It also goes on to state that the recipient may have been a victim of predatory lending. The letter claims that they will run an investigation of the recipient’s records and gives a number to call. When you call this number the receiver identifies themselves as “Home Retention.”

If you have received this letter, please do not respond. If you have responded to this letter and given out your personal information (including Social Security number, Account numbers or Date of Birth), please let us know so we can take the appropriate steps to protect your account.


October 21, 2011

False ACH Transfer Failure Notice

Phishing emails claiming to be a notice that your ACH transfer has failed due to technical error have been circulating.

The e-mail claims to be from a representative of "NACHA" and provides a link.

The e-mail and link are fraudulent. Recipients should consider the intent of this e-mail as an attempt to collect personal or confidential information, or to load malicious software onto end users' computers. Recipients should not click on the link provided.
The NACHA does not issue unsolicited e-mails to consumers or business account holders.


October 11, 2011

False E-mails Claiming to Be From the FDIC

The Federal Deposit Insurance Corporation (FDIC) has received numerous reports of a fraudulent e-mail that has the appearance of being sent from the FDIC.

The e-mail appears to be sent from a "regulations@fdic.gov" e-mail address and has a subject line that reads: "2011 updated FDIC regulations."

The e-mail starts out by saying "New Regulation approved for the FDI act expected to be implemented untill december 2011." (note: Typographical errors are included). The e-mail attempts to trick recipients into clicking on a link directing recipients to a fraudulent Web site.

This e-mail and link are fraudulent. Recipients should consider the intent of this e-mail as an attempt to collect personal or confidential information, or to load malicious software onto end users' computers. Recipients should not click on the link provided.
The FDIC does not issue unsolicited e-mails to consumers or business account holders.


September 29, 2011

False FTC Emails

The FTC has warned that spammers have sent emails that appear to be from the FTC. These emails claim a complaint has been filed against the business. If you get an unexpected email claiming to be from the FTC do not open it, click on any links or open any attachments. For more information visit the FTC's Website.


September 1, 2011

FDIC Phishing Email Alert

The Federal Deposit Insurance Corporation (FDIC) has received numerous reports of fraudulent e-mails that appear to be from the FDIC and contain an infected attachment.

The fraudulent e-mails have addresses such as "no.reply@fdic.gov" or "notify84zma@fdic.gov" on the "From" line. The message appears, with spelling and grammatical errors, as follows:

Subject line: "FDIC notification"

Message body:

"Dear customer,

Your account ACH and WIRE transaction have been temporarily suspended for security reasons due to the expiration of your security version. To download and install the newest installations read the document(pdf) attached below.

As soon as it is setup, you transaction abilities will be fully restored.

Best Regards, Online Security departament, Federal Deposit Insurance Corporation."

The e-mails contain an attachment "FDIC_document.zip" that will likely release malicious software if opened. These e-mails and attachments are fraudulent and were not sent by the FDIC. Recipients should consider these e-mails an attempt to collect personal or confidential information, or to load malicious software onto end users' computers. Recipients should NOT open the attachment.

Consumers should be aware that these fraudulent e-mails may be modified over time with other subject lines, sender names, and narratives. The FDIC does not directly contact consumers, nor does the FDIC request bank customers to install software upgrades.

Information about counterfeit items, cyber-fraud incidents, and other fraudulent activity may be forwarded to the FDIC's Cyber-Fraud and Financial Crimes Section, 3501 North Fairfax Drive, CH-11034, Arlington, Virginia 22226, or transmitted electronically to alert@fdic.gov. Questions related to federal deposit insurance or consumer issues should be submitted to the FDIC using an online form that can be accessed at http://www2.fdic.gov/starsmail/index.asp.
For your reference, FDIC Special Alerts may be accessed from the FDIC's website at www.fdic.gov/news/news/SpecialAlert/2011/index.html. To learn how to automatically receive FDIC Special Alerts through e-mail, please visit www.fdic.gov/about/subscriptions/index.html.


September 1, 2011

Phishing Alert-ACH Emails

Reminder, NACHA does not send emails regarding ACH transactions. There has been an increase in fraudulent emails typically make reference to an ACH transfer, payment, or transaction and contain a link or attachment that infects the computer with malicious code when clicked on by the email recipient. The source address and contents of these fraudulent emails vary, with more recent examples often including a counterfeit NACHA logo and the citation of NACHA’s physical mailing address and telephone number.

NACHA itself does not process nor touch the ACH transactions that flow to and from organizations and financial institutions. NACHA does not send communications to persons or organizations about individual ACH transactions that they originate or receive. Be suspicious of any email claiming to be from NACHA, or emails regarding ACH transactions that do not come from an @tbonm.com or @lmfc.com email address.

Do not to open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual. Forward suspected fraudulent emails appearing to come from NACHA to abuse@nacha.org to aid in our efforts with security experts and law enforcement officials to pursue the perpetrators.

Always use up-to-date anti-virus software. Ensure that operating system and common software application security patches are installed and current. If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system.


June 6, 2011

Fraudulent FDIC Emails

The Federal Deposit Insurance Corporation (FDIC) has received numerous reports of fraudulent e-mails that have the appearance of being from the FDIC.

The e-mails appear to be sent from various "@fdic.gov" e-mail addresses, such as "subscriptions@fdic.gov," "alert@fdic.gov," or "accounts@fdic.gov."

They have subject lines that read: "FDIC: Your business account" or "FDIC: About Your Business Account."

The e-mails are addressed to "Business Customer" or "Business Owner" and state "We have important information about your bank" or "…financial institution." They then ask recipients to "Please click here to find details."

They conclude with, "This includes information on the acquiring bank (if applicable), how your accounts and loans are affected, and how vendors can file claims against the receivership."

These e-mails and the link included are fraudulent and were not sent by the FDIC. Recipients should consider the intent of these e-mails as an attempt to collect personal or confidential information, or to load malicious software onto end users' computers. Recipients should NOT access the link provided within the body of the e-mails and should NOT, under any circumstances, provide any personal financial information through this media.

Financial institutions and consumers should be aware that other subject lines and modifications to the e-mails may occur over time. The FDIC does not directly contact consumers in this manner nor does the FDIC request personal financial information from consumers.

For your reference, FDIC Special Alerts may be accessed from the FDIC's Website at www.fdic.gov/news/news/SpecialAlert/2011/index.html. To learn how to automatically receive FDIC Special Alerts through email, please visit www.fdic.gov/about/subscriptions/index.html.
Questions related to federal deposit insurance or consumer issues should be submitted to the FDIC using an online form that can be accessed at http://www2.fdic.gov/starsmail/index.asp.


Phishing Alert Update 5/29/2011

Fraudulent Emails Claiming to be from NACHA
Further to notices issued on March 11 and February 22, 2011, NACHA – The Electronic Payments Association has received reports that individuals and/or companies continue to receive fraudulent emails that have the appearance of having been sent from NACHA. These emails vary in content and appear to be transmitted from email addresses associated with the NACHA domain (@nacha.org). Some bear the name of fictitious NACHA employees and/or departments.

NACHA itself does not process nor touch the ACH transactions that flow to and from organizations and financial institutions. NACHA does not send communications to persons or organizations about individual ACH transactions that they originate or receive.

Be aware that phishing emails frequently have attachments and/or links to Web pages that host malicious code and software. Do not open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.

If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system.

Always use anti-virus software and ensure that the virus signatures are automatically updated.

Ensure that the computer operating systems and common software application security patches are installed and current.

Additional information and guidance on phishing is available from the Federal Deposit Insurance Corporation (FDIC).


March 14, 2011

Fedwire Phishing Alert

Below is a copy of a fraudulent email that appears to be from the Federal Reserve. The subject line states that a Wire Transfer was canceled. It encourages the recipient to click on a link to view further information.

Be aware that phishing emails frequently have attachments and/or links to Web pages that host malicious code and software. Do not open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.


February 22, 2011

The Bank of Northern Michigan has received reports of a Phishing email being sent to clients claiming to be from The National Automated Clearing House Association (NACHA). Below is the alert NACHA has posted on their website, www.nacha.org.

NACHA – The Electronic Payments Association has received reports that individuals and/or companies have received a fraudulent email that has the appearance of having been sent from NACHA and signed by a non-existent NACHA employee. Specifically, this email claims to be from the “Electronic Payments Association” and appears to be coming from the email address "payments@nacha.org.” See a sample of the email below.

Be aware that phishing emails frequently have attachments and/or links to Web pages that host malicious code and software. Do not open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.

NACHA itself does not process nor touch the ACH transactions that flow to and from organizations and financial institutions. NACHA does not send communications to individuals or organizations about individual ACH transactions that they originate or receive.

  • If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system.
  • Always use anti-virus software and ensure that the virus signatures are automatically updated.
  • Ensure that the computer operating systems and common software applications security patches are installed and current.
  • Be alert for different variations of fraudulent emails.

= = = = = Sample Email = = = = = =
From:payments@nacha.org [mailto:payments@nacha.org]
Sent: Tuesday, February 22, 2011 7:32 AM
To: Doe, John
Subject: ACH transaction rejected
The ACH transaction, recently sent from your checking account (by you or any other person), was cancelled by the Electronic Payments Association.
Please click here to view report
------------------------------------------------------------------
Otto Tobin,
Risk Manager
= = = = = = = = = = = = = = = = = = =

Archives:
2012
2011
2010
2009