Join Early Retirement Today
Reply
 
Thread Tools Search this Thread Display Modes
NFCU says "Nah, it's not really phishing, sorry..."
Old 08-07-2008, 08:31 PM   #1
Moderator Emeritus
Nords's Avatar
 
Join Date: Dec 2002
Location: Oahu
Posts: 26,616
NFCU says "Nah, it's not really phishing, sorry..."

I got an e-mail from NFCU yesterday morning. At least, it claimed to be an e-mail from NFCU:

Quote:
Account has an NSF Check or ACH Debit

Your account, ending in , has a non-sufficient funds , in the amount of $. This item was presented for payment on , and subsequently returned for non-sufficient funds. A non-sufficient funds fee of $20.00 will be debited from your account. To view your account transaction history sign on to Navy Federal Online Account Access, www.navyfederal.org.

This e-mail has been sent to you based on the Member Notification preferences you previously established. If you would like to change your Member Notification preferences, please sign on to Navy Federal Online Account Access (www.navyfederal.org) and click on the Other Services link, go to the Member Notifications by E-Mail option, and then click on the Manage My Notifications tab.

Please Note: This Member Notification e-mail address is only used to generate Member Notifications. We will not read or respond to e-mails sent to this e-mail address. If you would like to contact Navy Federal with questions or comments, please sign on to Navy Federal Online Account Access (www.navyfederal.org) and click on the Check Messages link to send us an e-message.
My first thought was: "Damn, these sociopaths are good." The e-mail came with the proper header, it had an NFCU logo in the body, and it had the right look & feel. But I know that their URL is really www.navyfcu.org and I figured that if they were legit then they'd include my account number and the amount of the NSF or ACH issue.

Just to be sure I logged into our accounts and checked. Nope, we were fine. Some scumbag was definitely phishing. Slimy $%^&ers!

As an ever-vigilant customer I immediately forwarded the devious e-mail to NFCU's phishing address and received the following comforting response:
Quote:
Patricia Schneck/00/HQ/NFCU is out of the office.
I will be out of the office starting 07/29/2008 and will not return until
08/08/2008.
I will respond to your message when I return.
Great, thanks a lot guys. So I told the story to my spouse and our 15-year-old. I emphasized to our kid that this was the most sophisticated scam I'd ever seen and that she should make sure she only logged into her financial websites from her bookmarks, never from the e-mail links.

This morning I got the following from NFCU:
Quote:
Member Notification E-mail

This is to advise you that an E-mail notification was sent to you in error from Navy Federal. The E-mail subject states, “Account has an NSF Check or ACH Debit”. Please note this E-mail did not accurately reflect your account status. Please disregard it. We apologize for the inconvenience.
Whoa, pretty slick! Those phishers were trying even harder to gain our confidence. Everyone knows that NFCU would've used their website's "secure member communication" system for us to learn more about the problem. But when I'd logged into our accounts the other day, there was nothing. So I forwarded this second phish to NFCU, and received the following:

Quote:
Safioleas, George is out of the office.
I will be out of the office starting 08/07/2008 and will not return until
08/11/2008.

If you have any questions please contact Helen Barber at 43401.
Great. Feeling less than fully customer-served, I started the day's yardwork. 30 minutes later spouse came out with the phone and said "It's NFCU."

NFCU's (alleged) customer-service rep claimed that they really did send out both e-mails and that the first was sent in error. So sorry. Yes, navyfcu.org was their URL but they'd also purchased a bunch of similar-sounding URLs including navyfederal.org. And if I had any questions I should've contacted them.

I didn't even get into my previous experiences with NFCU's interactive phone system. I kvetched about the out-of-office replies, suggested that the NFCU website should be used to notify customers of this mistake, and told her that PenFed was looking pretty darn good about now. That was the first time in the conversation that a hint of contrition crept into her voice, but then again that was her job as NFCU's Chief Apologist. I suggested that she let management know that this 30-year customer was mighty unhappy about the whole thing and she agreed that she'd do that right away. Yep.

Somehow I'm not feeling like this customer has been satisfied. Serviced, maybe, but not satisfied.

Anyone else have this problem?
__________________

__________________
*
*

The book written on E-R.org, "The Military Guide to Financial Independence and Retirement", on sale now! For more info see "About Me" in my profile.
I don't spend much time here anymore, so please send me a PM. Thanks.
Nords is offline   Reply With Quote
Join the #1 Early Retirement and Financial Independence Forum Today - It's Totally Free!

Are you planning to be financially independent as early as possible so you can live life on your own terms? Discuss successful investing strategies, asset allocation models, tax strategies and other related topics in our online forum community. Our members range from young folks just starting their journey to financial independence, military retirees and even multimillionaires. No matter where you fit in you'll find that Early-Retirement.org is a great community to join. Best of all it's totally FREE!

You are currently viewing our boards as a guest so you have limited access to our community. Please take the time to register and you will gain a lot of great new features including; the ability to participate in discussions, network with our members, see fewer ads, upload photographs, create a retirement blog, send private messages and so much, much more!

Old 08-07-2008, 09:39 PM   #2
Full time employment: Posting here.
RetiredGypsy's Avatar
 
Join Date: Mar 2008
Posts: 895
I've never had a problem with NFCU. The customer service I've received, both at any of the branches I've been too and the 800 number, has been fantastic. That's why I've stuck with them even after hearing about PenFed (that, and I can't remember what club I have to join to get in, but still).
__________________

__________________
I'm free and I like it!
RetiredGypsy is offline   Reply With Quote
Old 08-08-2008, 12:12 AM   #3
Full time employment: Posting here.
 
Join Date: Dec 2006
Posts: 886
Quote:
Originally Posted by Nords View Post
I emphasized to our kid that this was the most sophisticated scam I'd ever seen and that she should make sure she only logged into her financial websites from her bookmarks, never from the e-mail links.
I'm paranoid even of my bookmarks and address bar history. I always open a new browser and manually type in the address of all my financial institutions. I never use a link of any kind.
__________________

Trek is offline   Reply With Quote
Old 08-08-2008, 06:40 AM   #4
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
donheff's Avatar
 
Join Date: Feb 2006
Location: Washington, DC
Posts: 8,638
You gave good advice to your kid. You should never click on a link from email to access your banking accounts - even if you set your preferences to get email notifications from the institution. Some of the phishing scams are quite convincing.

Hey, maybe that woman wasn't really from NFCU - did she ask you to verify any info?
__________________
Every man is, or hopes to be, an Idler. -- Samuel Johnson
donheff is offline   Reply With Quote
Old 08-08-2008, 11:19 AM   #5
Moderator Emeritus
Nords's Avatar
 
Join Date: Dec 2002
Location: Oahu
Posts: 26,616
Quote:
Originally Posted by donheff View Post
Hey, maybe that woman wasn't really from NFCU - did she ask you to verify any info?
I should've asked for her last four of her SSN and her date of birth...

I'm still steamed at the way they blew off their mistake, and at the 2x lack of response from their phishing e-mail address.

What appears to be even more annoying is that it hasn't happened to anyone else?
__________________
*
*

The book written on E-R.org, "The Military Guide to Financial Independence and Retirement", on sale now! For more info see "About Me" in my profile.
I don't spend much time here anymore, so please send me a PM. Thanks.
Nords is offline   Reply With Quote
Old 08-08-2008, 12:06 PM   #6
Full time employment: Posting here.
CitricAcid's Avatar
 
Join Date: May 2008
Posts: 546
There was a massive phishing scam for NDFCU (Notre Dame Federal Credit Union) which managed to get some 500 or so students with an account linked to an ND email. I got the same e-mail and managed to warn everyone I saw that morning, but it was a huge deal in the paper the next day. They did a very good job with the scam, they had a very similar website and completely mirrored the NDFCU page, so it was the exact same site (just obviously different owners). They asked for SSN and Account numbers too, which is never asked for, since you have a login and password. A lot of people fell for it, but hey I wasn't affected.
__________________
CitricAcid is offline   Reply With Quote
Old 08-08-2008, 12:39 PM   #7
Thinks s/he gets paid by the post
OAG's Avatar
 
Join Date: Jun 2006
Location: Central, Ohio, USA
Posts: 2,598
See what happens when you let Army guys (and gals) join up.
__________________

__________________
Vietnam Veteran, CW4 USA, Retired 1979
OAG is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
"Gut feel" versus "evidence-based" medicine Buckeye Health and Early Retirement 10 11-08-2007 11:21 AM
My "Core Plus" Strategy - Feedback on the "Plus" part? milmoose Young Dreamers 24 11-01-2006 10:41 AM
Anyone notice "Osama" sounds like "Obama" ? Mr._johngalt Other topics 50 10-29-2006 06:41 AM
Book reports: "Blink" & "Tipping Point" Nords Other topics 2 12-04-2005 05:15 PM
"Your" Ideas are worth "Millions"!!! AJL FIRE and Money 14 10-11-2005 01:36 PM

 

 
All times are GMT -6. The time now is 06:02 PM.
 
Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.