vlog

NOWCAST vlog News at 5:30pm Sunday Evening
Watch on Demand
Advertisement

BEWARE: Phishing scam targets Bank of America customers

Hackers are using 'account security' update emails to dupe potential victims
Abigail Elise
National Curator
BEWARE: Phishing scam targets Bank of America customers

Hackers are using 'account security' update emails to dupe potential victims

Advertisement
BEWARE: Phishing scam targets Bank of America customers

Hackers are using 'account security' update emails to dupe potential victims
Abigail Elise
National Curator
Phishing emails that appear to be from Bank of America are targeting potential victims. In the campaign, fraudulent "account security validation" messages ask recipients to update personal data. Some of the emails look authentic, but Bank of America warns consumers to remain skeptical of messages that claim to be from its customer service department. The Charlotte-based corporation says it won't ask for private data such as user names, passwords or PIN numbers via email.You can report phishing emails that appear to be from Bank of America here. Not sure if you're being phished? Here's how to avoid becoming a victim, according to cybersecurity expert Joseph Steinberg:1. Never let your guard down"Understand that you are a target, and treat every email as suspicious," Steinberg tells us. "When a computer displays an email, and tells you that someone sent you a message, treat that situation the same way you would if a human told you that another person said that you should do something – that is, with more suspicion than if you heard the message directly from the person giving the instructions."2. Verify the source"If an email asks you to do something that could potentially have harmful consequences, always verify that the instructions are legitimate," Steinberg advises. "So, if an email says to reset your password for a bank account – call the bank using the number on your ATM card. If an email says to take some action at work, like issue a payment to a vendor, or submit a copy of your work ID, always call the sender."3. Monitor social media accountsHackers are using social media to learn more information about their victims."Do not overshare information," Steinberg says. "Criminals craft effective spear phishing emails by leveraging such information to convince their victims that a message must be legitimate."4. Look for red flags"For years, 'experts' advised people to spot phishing emails by looking for mistakes – spelling errors, wrong email address for the sender, incorrect formal names of organizations, grammatical mistakes, etc.," Steinberg says. "But, today, many emails are error-free. So while errors are a sign of possible phishing, folks who rely on such clues to always be present may get phished."5. Always monitor financial and credit accountsCheck bank accounts on a regular basis. Write down all financial transactions and ensure they coincide with monthly statements. Don't neglect any online payment portals you use, like PayPal, Venmo, Facebook and eBay.
CHARLOTTE, N.C. —

Phishing emails that appear to be from Bank of America are targeting potential victims. , fraudulent "account security validation" messages ask recipients to update personal data.

Some of the emails look authentic, but consumers to remain skeptical of messages that claim to be from its customer service department.

Advertisement

Related Content

This content is imported from Twitter. You may be able to find the same content in another format, or you may be able to find more information, at their web site.

The Charlotte-based corporation says it won't ask for private data such as user names, passwords or PIN numbers via email.

You can report phishing emails that appear to be .

Not sure if you're being phished? Here's how to avoid becoming a victim, according to :

1. Never let your guard down

"Understand that you are a target, and treat every email as suspicious," Steinberg tells us. "When a computer displays an email, and tells you that someone sent you a message, treat that situation the same way you would if a human told you that another person said that you should do something – that is, with more suspicion than if you heard the message directly from the person giving the instructions."

2. Verify the source

"If an email asks you to do something that could potentially have harmful consequences, always verify that the instructions are legitimate," Steinberg advises. "So, if an email says to reset your password for a bank account – call the bank using the number on your ATM card. If an email says to take some action at work, like issue a payment to a vendor, or submit a copy of your work ID, always call the sender."

3. Monitor social media accounts

Hackers are using social media to learn more information about their victims.

"Do not overshare information," Steinberg says. "Criminals craft effective spear phishing emails by leveraging such information to convince their victims that a message must be legitimate."

4. Look for red flags

"For years, 'experts' advised people to spot phishing emails by looking for mistakes – spelling errors, wrong email address for the sender, incorrect formal names of organizations, grammatical mistakes, etc.," Steinberg says. "But, today, many emails are error-free. So while errors are a sign of possible phishing, folks who rely on such clues to always be present may get phished."

5. Always monitor financial and credit accounts

Check bank accounts on a regular basis. Write down all financial transactions and ensure they coincide with monthly statements. Don't neglect any online payment portals you use, like PayPal, Venmo, and eBay.

Top Picks

It's a girl! Shohei Ohtani of the Dodgers is now a father
30 years after the Oklahoma City bombing: Learn more about the 168 people who were killed
A look at what happened in the US government this week
Get the Facts: Autism rates rose to 1 in 31, this is the CDC data