Property for Sale

Check out our Property For Sale. We have a variety of vehicles and property up for new ownership.

Guide to Fairbanks

Planning on visiting or moving to Fairbanks? Check out www.fairbanksakusa.com and discover the beauty of Interior Alaska!

Did you know?

You can obtain a free credit report once a year!

Find out more!

: Fraud & ID Protection :

Spirit of Alaska Federal Credit Union will never solicit account numbers or any other personal info by email or phone.

ALERTS

PricewaterhouseCooper Security Breach

In reference to the recent article on PricewaterhouseCoopers LLP; Spirit of Alaska FCU takes your ID protection seriously. If you suspect that your information has been compromised, contact us. As your trusted financial institution, we are here to assist you in keeping your personal information safe.

Automated Fraud Department Call To Our Members

Members and non-members have been receiving an automated call claiming they are from the Fraud Department of SoAFCU and the member's card has been temporarily blocked. The call is requesting the member to input their debit card and PIN number. THESE CALLS ARE NOT FROM SoAFCU. DO NOT ENTER YOUR INFORMATION. If you have received a call like this and have entered your information, please call 1-866-875-6807 immediately to report your card compromised.

Craigslist CU member recruitment scam

Advertisements have been posted on Craigslist as part of member recruitment scams nationwide. The ads solicit current credit union members and offer $75.00 or more for their assistance in gaining membership for ineligible individuals. This scam is targeting credit unions and members across the country.
The following are samples of Craigslist ads target credit union members for this recruitment scam:
If you’re a ABC Credit Union Member MAKE SOME EXTRA $$
This is NOT a scam! I am willing to call you and discuss extensively! I need a ABC Credit Union Member to sponsor me into the credit union. I am willing to pay $100 USD for this service. Please email me and we can discuss this in detail. This is a 1 day process and I want to become a member for investment account/interest rate purposes.
Need to find a XYZ Credit Union Member
I was just approved for a visa credit card with XYZ Federal Credit Union and they called me and said that they can not process the application if I do not know any existing member or if I am not employed at one of the list of companies they have. To become a member you have to know a member. So now my app is on hold until I can find someone who is already a member. If you know someone, please tell them to contact me. I am willing to pay $500. And all they ask for is the members name and member number. Thanks.
ABC and XYZ Members Needed!!!
If you are a ABC or XYZ Federal Credit Union member we will pay you $75.00 per member to sponsor other that would like to join the credit union but do not meet the membership requirements. Please email for details.
Following thorough identification and verification processes for new members and new accounts are critical for preventing fraudsters from infiltrating your credit union.
Loss Prevention Recommendations:
• Educate credit union employees and members about recruitment scams
• Exercise extra due diligence when opening accounts via in person,internet, fax or mail to ensure individuals are eligible for membership.
• Verify all information provided for new account applications, including addresses, employment, and eligibility for membership.
• Obtain credit reports and investigate fraud flags
• If your credit union is targeted, alert members and report the scam to the proper authorities
• File a complaint with the Internet Crime Complaint Center (IC3) at www.ic3.gov related to any suspected fraudulent e-mails, text messages or telephone calls IC3 is a partnership between the FBI, the National White Collar Crime Center, and the Bureau of Justice Assistance

Keylogging

Malicious software, also known as malware, infects computers by keystroke logging or keylogging. This allows the criminal to obtain the users ID and password, the perpetrator then sends unauthorized ACH transactions in the user's name. These attacks have taken a significant toll on community banks, credit unions and their Originators.

-------------------------------------

Credit Card Breach of Security Phone Scam

Victims receive a phone call and listen to a pre-recorded message warning them of a breach of security affecting their credit card or the opportunity to change the interest rate on their account. The card holder is told to call a toll-free number to address the security concerns or have the interest rate changed. When the victim calls the number, they are asked to enter personal information as well as their credit card account number. Please do not call the number on the recording, instead, call the number on the back of your credit card to see if it's a valid call. -5/27/09

-------------------------------------

Jury Duty Scam

The caller claims to be a jury coordinator. If you protest that you never received a summons for jury duty, the scammer asks you for your Social Security number and date of birth so he or she can verify the information and cancel the arrest warrant. Give out any of this information and bingo; your identity was just stolen. The fraud has been reported so far in 11 states, including Oklahoma , Illinois, and Colorado . This (swindle) is particularly insidious because they use intimidation over the phone to try to bully people into giving information by pretending they are with the court system. The FBI and the federal court system have issued nationwide alerts on their web sites, warning consumers about the fraud.

-------------------------------------

Scams That Mimic Government Stimulus Package

Identity thieves posing as representatives of the Internal Revenue Service are sending spam e-mails promising government economic stimulus packages. The message tells the user to download an attachment that is masked as a form they must fill out and send to the IRS to receive their check. However, the document really is an identity theft tool that steals the personal information entered in the form.
Another scam being used promises more information on how to get “economic stimulus grants.” They tempt users with fake testimonials such as, “I found the grant I needed and filled out the forms and sent them in, and in about two weeks I received a check in my hand for $100,000.” It leads to a marketing-type site in which you enter personal information such as salary range, e-mail address, mailing address, and date of birth purportedly to get a free CD that shows you how to claim one of these grants. To order the CD, you must enter credit card information for the postage and handling costs. You never get the CD—only a stolen identity.

-------------------------------------

Phishing Scam Sounds like Official Telephone Call

This new phishing scam sounds like a legitimate telephone call. The cardholder is contacted to obtain the security code on the back of their VISA and MasterCard.

Under this scam, a telephone call is placed to a legitimate cardholder.  The caller claims to be a representative from VISA or MasterCard informing the cardholder of suspicious card activity. The caller provides details of an unusual transaction and asks if the cardholder made this purchase, which, of course, the cardholder did not. The cardholder is then asked to verify possession of the card. To do so, the cardholder is asked to read the three-digit security code on the back of the card. The fraudster then provides a control number in the event the cardholder needs to call back with questions, making the call seem legitimate.

The caller does not ask for the credit or debit card number, and that is why some members are fooled into believing the call is legitimate. But the fraudster already has the card number; what they don’t have is the three-digit security code from the back of the card, and that is what they are after with this scam.

NEVER give out any personal information in response to a phone call, email, or letter. It is better to be more cautious and avoid these scams. You can call the official number to your credit card or banking company to double check if it was a scam or not.

-------------------------------------

Current email/survey scam - DO NOT RESPOND!!!

A phishing scam survey was sent recently via email using SoAFCU logo's. This survey claimed that people who respond to this survey will receive $40 for simply filling out the survey. At the end of the survey, it requests the respondant to fill out their account number, user ID, and password or credit card info so that the $40 can be deposited. Please be aware that Spirit of Alaska FCU will NEVER request this information via email from our members. For a sample of what this phishing scam looks like click here. If you have filled out this survey please contact us at 459-5900 immediately.

-------------------------------------

Spirit of Alaska Federal Credit Union is committed to doing everything we can to help protect members from a variety of fraudulent activities. We are very diligent in protecting your account information with the highest level of security available for our website, E-teller, E-statement and other electronic services. However, members may be exposed to acts of fraudulent activity that are beyond the credit union's control and it is ultimately your responsibility to prevent and protect yourself from the unscrupulous acts that could cause you to be an unsuspecting victim of Identity theft or other fraud or scam. The following information is intended to help you in this endeavor.

Please feel free to provide us feedback on topics of interest in this area and we will do what we can to share the information with all members.

-------------------------------------

Be alert to what you receive in the mail - usually if it's too good to be true, it usually is. Consumers may receive a letter in the mail, an evaluation form, and a check. The letter states that they have been chosen to be a mystery shopper for several popular stores, Western Union and Money Gram and that the check is to be used towards shopping at these stores and sending funds through Western Union and Money Gram. All they need to do is evaluate their shopping experience. The check can only be activated if you call the phone number listed in the letter. By calling the phone number, the operator collects some information, and gives the victim a believable story on how the mystery shopping works, and information on where to send the Western Union and Money Grams. After that the victim goes and cashes a bad check, and sends real money through the wire services. Use caution on wiring money to people or businesses that you do not have a relationship established with. If you feel that you may have been a victim to a scam like this contact the financial institution you deposited the check to and any wire services involved.

-------------------------------------

Key logging is used in schemes to attack home banking products. Key loggers are software code that can hide within various software applications that are downloaded by members from the Internet. This embedded software, which acts like a Trojan horse, buries itself on the member's home computer. The key logger tracks all key strokes on the computer key pad, specifically looking for financial institution account and password information. Once it captures the data, it is passed back up through the Internet to the criminal who can utilize the information to take over the member's account. Use caution not to click on any links in suspect email. Use a good anti-virus system and keep it up to date.

-------------------------------------

Recently criminals seeking account information have applied new techniques to previously used schemes to improve their effectiveness. Members are urged to be aware of these emerging attack strategies. Please be on the alert to schemes that target CVV2 information and email notification with an alternate link to use during a network outages.

In a new twist to the traditional form of phishing, criminals use a form of vishing to acquire missing elements of information by developing a level of comfort through conversation with pieces of known information. In addition, they use a type of VolP technology that allows for spoofing of the Caller ID and makes the phone call appear to be more legitimate. They often times introduce a level of fear to facilitate extraction of personal or sensitive information. Please remember that the credit union will never call you for this information. Nor will most legitimate businesses.

Criminals have also combined two techniques to improve effectiveness of phishing schemes. Criminals focus on the card holder base of a specific institution. Card holders from a single financial institution are sent a bogus email advising them of an unexpected network outage while criminals simultaneously begin to subject the institution to a DDoS attack (Distributed Denial of Service). This attack involves sending the institution an overwhelming number of network requests to a single location, in hopes of creating an actual network overload and outage. Once the institution's web infrastructure is unable to respond to card holder requests, a phishing email is sent. This phishing email contains and "alternate" link that may be used until the issue is resolved. The link directs the user to a web page that may have a look and feel of the legitimate site, but in fact is simply a site that captures sensitive information. Please be on the look out for this type of attack. We occasionally may experience a network outage but will not have an "alternate" log-in site. If you feel you have been subjected to either of these schemes please contact Member Services immediately at (907) 459-5900.

-------------------------------------

Vishing Scams Use Phones Instead of Fake Websites. In a new twist, identity thieves are sending spam that warns victims that their credit union/bank account or PayPal accounts were supposedly compromised. However, unlike typical phishing emails, there is no website address in these phishing messages. Instead, the victim is urged to call a phone number to verify account details.

The automated voice message says: "Welcome to account verification. Please type your 16-digit card number." The goal is to get the victim to enter their credit card number. In these reported scams, no mention of the credit union, bank or PayPal is made.

Security experts tracking this scam and other instances of "vishing" , short for "voice phishing", say the frauds are particularly despicable because they imitate the legitimate ways people interact with financial institutions. In fact, some vishing attacks don't begin with an e-mail. Some come as calls out of the blue, in which the caller already knows the recipient's credit card number. This increases the perception of legitimacy, the caller ask for the valuable three-digit security code on the back of the card.

Vishing appears to be prospering with the help of Voice over Internet Protocol, or VoIP, the technology that enables cheap and anonymous Internet calling, as well as the ease with which caller ID boxes can be tricked into displaying erroneous information.

LOSS PREVENTION RECOMMENDATIONS :

• Never call a number you receive from a spam email, and certainly don't enter in any private information if you make a mistake and do call.
• If you want to call your bank, use the normal phone number you regularly use, not the phone number you get in an e-mail.
• Please know that we will never solicit personal/private information via e-mail or the phone.
• Never click on the link provided in an e-mail you believe is fraudulent.
• Do not open an attachment to an unsolicited e-mail unless you have verified the source.
• Do not be intimidated by an e-mail or caller who suggest dire consequences if you do not immediately provide or verify information.
• If you believe the contact is legitimate, go to the company’s website by typing in the site address directly or using a page you have previously book marked, instead of a link provided in the e-mail.
• Use the FTC (Federal Trade Commission) website, www.onguardonline.gov. Consumers can take interactive quizzes designed to enlighten them about identity theft, phishing, spam and online-shopping scams. Elsewhere on the site, consumers can find detailed guidance on how to monitor their credit histories, use effective passwords and recover from identity theft.

-------------------------------------

Many Spirit of Alaska members use EBay, Amazon and PayPal websites. Please do not ever give out any personal information such as account number, credit or debit card account numbers, personal identification numbers (PIN), passwords or social security number from an unsolicited email, fax, phone call or letter in the mail. Fraudsters are always evolving scams, so be particularly careful if you receive a message confirming an order you did not make, or a message advising you that your credit card will be charged for an order you did not make. Do not confirm any information from any link within an unsolicited email.

Visit the following links to learn more about protecting your financial assets from fraudulent email messages that may appear to come from EBay, Paypal or Amazon. Preparation and knowledge can prevent you from falling victim to the many phishing scams that target customers of these online companies.

• EBay
  
• Amazon.com
• PayPal

-------------------------------------

Be alert to an email fraud that is promising a portion or share of a high balance dormant bank account in South Africa. This scam has been around in various forms for several years. It can come in the form of a distraught widow attempting to access funds that are frozen as a result of a dead husband's past involvement in the government, or even an official who needs some type of assistance. What these scams have in common is a promise to share the money, usually millions of dollars, if you will only offer your bank or credit union account to receive the funds. They also require the utmost urgency and confidentiality. The poor victim who falls for this scam often finds themselves sending money for "various fees" necessary to process the transaction, only to find the transaction never transpires; or even worse, finding their own account cleaned out. The sad part is that the victim gave the information freely, thus contributing to the complications of recovering lost funds, if they can be recovered at all. Please be alert to this type of scam, or any offer that seems to good to be true. If is seems too good to be true it is most likely not true.

-------------------------------------

Phishing scams are scams that use email and fraudulent websites to elicit personal or financial information from unsuspecting people. Fraudsters send official-looking emails that appear to be from government agencies or legitimate businesses that ask for verification of financial and personal information such as account numbers, passwords, user names, SSN, and other sensitive data. Most often the message will also warn of possible fraud and contain a link to a fake website that very closely mimics a legitimate online business. Here are some tips from VISA and your credit union to help you protect you and your family from the phishing scam:

• Treat all unsolicited email requests for financial or personal data with suspicion. Do not reply to unsolicited email or respond by clicking a link within the unsolicited email message.
• Contact the actual business that supposedly sent the unsolicited email message to verify if it is genuine. Visit a website or use a phone number that you know to be legitimate.
• Look for the Lock. Prior to entering account information on any website, be sure to look for the "locked padlock" in the browser or the "https" at the beginning of the website address to make sure it is secure.
• Be cautious. Check your monthly statements to verify all transactions. Notify the credit union or other companies that you do business with immediately if you notice any erroneous or suspicious transactions.
• Report any suspicious activity to the FTC. Send the actual spam to uce@ftc.gov. If you believe you have been a victim of a fraudulent scheme, you should file a complaint at www.ftc.gov.
• A good resource for this topic is Anti-Phishing Working Group at http://www.antiphishing.org
• If you have been victimized by a spoofed e-mail or web site, you should contact your local law enforcement, US Postal Inspector, or FBI.

-------------------------------------

Additional resources to help you learn how to minimize your risk of damage from identity theft:

• www.ftc.gov/idtheft
• www.ustreas.gov
• www.antiphishing.org
• Equifax
• Home & Family Finance Resource Center

-------------------------------------

It is also a good idea to review your credit report once a year. The FACT Act makes it possible for everyone to receive a free credit report each year in an effort to prevent or minimize the effects of fraud and identity theft. To get your free annual credit report you must contact the Central Source as established by the three major credit reporting agencies.

You may contact the Central Source by calling toll free: 877-322-8228 (or 877- FACT ACT), or you may click this link: www.annualcreditreport.com.

+ back to top