Consumer
Alerts

Helping To Keep
You Informed

IMPORTANT NOTICE: Links to non-Wolverine Bank websites contained on this page are offered only as pointers to sources of information on subjects that may be of interest to users of our website, and Wolverine Bank is not responsible for the content of such sites as we have no control over what is displayed there. Wolverine Bank does not guarantee authenticity of documents at such sites and links to non-Wolverine Bank sites do not imply any endorsement or responsibility for the ideas, opinions, information, products, or services offered at such sites. Use of links to a non-Wolverine Bank site is solely at the user's own risk.

• 09-01-11 Fraudulent FDIC Notification Emails with Attachment
• 08-19-11 Fraud Alert Debit Card Phone Scam
• 07-22-10 NACHA Phishing Alert
• 07-21-10 Automated Phone Message Attack

Fraudulent "FDIC Notification" Emails with Attachment

The Federal Deposit Insurance Corporation (FDIC) has received numerous reports of fraudulent e-mails that appear to be from the FDIC and contain an infected attachment. The fraudulent e-mails have addresses such as "no.reply@fdic.gov" or "notify84zma@fdic.gov" on the "From" line.

The message appears, with spelling and grammatical errors.

= = = = = Sample E-mail = = = = = =

Subject line: "FDIC notification"
Message body: 

"Dear customer, 
Your account ACH and WIRE transaction have been temporarily suspended for security reasons due to the expiration of your security version. To download and install the newest installations read the document(pdf) attached below. 

As soon as it is setup, you transaction abilities will be fully restored. 

Best Regards, Online Security departament, Federal Deposit Insurance Corporation." 

= = = = = = = = = = = = = = = = = = = = = = = =

The e-mails contain an attachment "FDIC_document.zip" that will likely release malicious software if opened. These e-mails and attachments are fraudulent and were not sent by the FDIC. Recipients should consider these e-mails an attempt to collect personal or confidential information, or to load malicious software onto end users' computers. Recipients should NOT open the attachment.  

Consumers should be aware that these fraudulent e-mails may be modified over time with other subject lines, sender names, and narratives. The FDIC does not directly contact consumers, nor does the FDIC request bank customers to install software upgrades. Information about counterfeit items, cyber-fraud incidents, and other fraudulent activity may be forwarded to the FDIC's Cyber-Fraud and Financial Crimes Section, 3501 North Fairfax Drive, CH-11034, Arlington, Virginia 22226, or transmitted electronically to alert@fdic.gov. Questions related to federal deposit insurance or consumer issues should be submitted to the FDIC using an online form that can be accessed at http://www2.fdic.gov/starsmail/index.asp. 

For your reference, FDIC Special Alerts may be accessed from the FDIC's website at www.fdic.gov/news/news/SpecialAlert/2011/index.html. To learn how to automatically receive FDIC Special Alerts through e-mail, please visit www.fdic.gov/about/subscriptions/index.html.

Fraud Alert Debit/Check Card Phone Scam

There has been recent activity from an undetermined source asking you to reveal your debit (check) card account number. The automated message states that your card has been compromised. It may prompt you to "press 1" to rectify the situation. You should NEVER give a caller account information, unless you have initiated the call. Please contact Wolverine Bank at (989) 631-4280 or (800) 968-4280, with any questions or concerns.

NACHA Phishing Alert

NACHA - The Electronic Payments Association has received reports that individuals and/or companies have received a fraudulent e-mail that has the appearance of having been sent from NACHA. See sample below.

The subject line of the e-mail states: "Unauthorized ACH Transaction." The e-mail includes a link that redirects the individual to a fake Web page and contains a link which is almost certainly an executable virus with malware. Do not click on the link. Both the e-mail and the related website are fraudulent.

Be aware that phishing e-mails frequently have links to Web pages that host malicious code and software. Do not follow Web links in unsolicited e-mails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.

Please Note:

• NACHA itself does not process nor touch the ACH transactions that flow to and from organizations and financial institutions.
• NACHA does not send communications to individuals or organizations about individual ACH transactions that they originate or receive. 

If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system. Always use anti-virus software and ensure that the virus signatures are automatically updated.

Ensure that the computer operating systems and common software applications security patches are installed and current.

Be alert for different variations of fraudulent e-mails.

= = = = = Sample E-mail = = = = = =
From: Information
Sent: Thursday, July 22, 2010 8:27 AM
To: Doe, John
Subject: Unauthorized ACH Transaction

Dear bank account holder,

The ACH transaction, recently initiated from your bank account, was rejected by the Electronic Payments Association. Please review the transaction report by clicking the link below:

Unauthorized ACH Transaction Report
(hyperlink removed for your security)

Automated Phone Message Attack

Pre-recorded phone messages are being delivered to random customers in the Provo, Utah area, with the warning that their debit cards have been closed. When consumers call the telephone number provided by the fraudsters, they hear a recording that requests a 16-digit card number and PIN. Please do not call these numbers - they may still be active. This matter is under investigation by the local Utah US Secret  Service field office.

The following phone numbers have all been used to perpetrate this scam:

• (443) 912-1000
• (305) 555-5555
• (888) 839-3613
• (954) 447-4110
• (412) 381-2300

If you have received a call like this, do not call it back. Immediately contact the Wolverine Bank Operations department by calling (989) 631-4280.

FRAUD ALERT - February 8, 2010

There has been recent activity from an undetermined source asking you to reveal your debit (check) card account number. The automated message states that your card has been deactivated. It may prompt you to call back the following number: (843) 884-6884. This is NOT a number for Wolverine Bank. You should NEVER give a caller account information, unless you have initiated the call. Please contact Wolverine Bank at (989) 631-4280 or (800) 968-4280, with any questions or concerns.

Resources

• Anti-Phishing Working Group
• FDIC Consumer Alerts
• How Not to Get Hooked by the "Phishing" Scam, July 2003
• Take Charge: Fighting Back Against Identity Theft
• Home Network Security
• Protect Your Financial Identity

Online Banking