
Common Scams: Phishing and Social Engineering Scams
BE VIGILANT TO PROTECT YOUR IDENTITY AND SENSITIVE INFORMATION.
Phishing and Social Engineering Scams
We know that sometimes it’s hard to tell what is and is not a scam, and we’re here to help. The best thing you can do is to be vigilant – phishing and social engineering scams work because they seem legitimate. Scammers use techniques designed to lure you into providing personal or financial information by posing as a legitimate business. We’d like to remind you that Xceed Financial will never solicit your personal information via phone or email.
Be on the lookout for:
- Suspicious emails, including emails that come from an unknown source.
- Emails with attachments you don’t recognize or didn’t ask for.
- Don’t open attachments you don’t recognize. Delete the email if it seems suspicious.
- Don’t provide personal or financial information in email, and don’t respond to email solicitations for this information.
- Don’t send sensitive information over the internet without checking a website’s security.
- Suspicious phone calls, including those that solicit your personal information.
- Don’t give your SSN, account number, login ID, PIN, or password to an unknown source.
- Be cautious about incoming calls, especially if you don’t recognize the number.
- Don’t give out personal information, or information about your organization, unless you are certain of a person’s authority to have the information.
- To confirm a caller is legitimate, contact their company directly using information from previous statements provided to you.
If you think you’ve been a victim of phishing:
- Contact us at 800.XFCU.222 (800.932.8222).
- Ensure that your computer’s firewall, anti-virus, and spyware detection software is up to date.
- Run a virus scan on your computer and clean up any viruses or Trojans that are detected.
- Change your account access password from an uninfected computer. If you use the same password for multiple resources, make sure to change it for each account, and do not use that password in the future.
- Report the phishing attempt to the appropriate people within your organization, including network administrators.
- Contact the Federal Trade Commission at 877.FTC.HELP.