Many financial institutions and companies that conduct business on the Internet have become targets in a form of online fraud called "phishing." Phishers use fraudulent e-mails or pop-up Web pages that appear legitimate but are designed to deceive you into sharing personal or account information. When you respond to these online scams, you jeopardize the security of your accounts and your identity can be stolen. You should never provide your personal information or account information in response to unsolicited e-mails or pop-up Web pages.

How to Identify Online Fraud

Most examples of online fraud use images and logos from legitimate Web sites appear authentic. DO NOT respond to e-mails or pop-up Web pages that ask you to provide, update or verify your personal or account information. While it can be difficult to tell if an e-mail is legitimate, here are some common characteristics of fraudulent e-mails and Web sites:

1. They have an urgent tone. They often have a sense of urgency telling clients that if they fail to update, verify or confirm their personal or account information, access to their accounts will be suspended.
   
2. They request your information. They typically ask for personal or account information such as:
   
   
   • Account numbers
   • Credit and Check Card numbers
   • Social Security Numbers
   • Online Banking sign on IDs and passwords
   • Mother's maiden name
   • Date of birth
   • Other sensitive information
3. They include links that appear legitimate.
   They often include links that include a legitimate company's name or Web address. Always type Web addresses into your browser instead of clicking on links.
   
4. They forge the sender's e-mail addresses.
   The fraudulent e-mails will disguise or forge the sender's e-mail address so they appear to be from a legitimate company.
   
5. They often have incorrect grammar.
   The emails and pop-up Web sites may include misspelled words and incorrect grammar.

Protecting Yourself from Online Fraud

• To make fraudulent e-mails or Web sites appear real, scammers often include actual logos and images of legitimate companies. They also convey a sense of urgency, stating that if you fail to provide, update or verify your personal or account information, access to your accounts will be suspended. It's important not give out your information.
  
• Use your spam filter. Many e-mail services now have spam filters that minimize the amount of spam you receive. The filters can help you minimize the number of fraudulent e-mails in your inbox.
  
• Even if you open a suspicious e-mail, don't click on any links. By clicking on the links you could unknowingly download a virus or spyware to your computer. Even if you think the e-mail is legitimate, type Web addresses into your browser instead of clicking on links. If the e-mail is from an institution you do business with, use a bookmark that you've already created to visit the company's Web site.
  
• Change your online passwords often. The rule of thumb is to change your password every 30 to 60 days. Be creative with your passwords - stay away from obvious passwords like your zip code, year of birth or sensitive information such as your mother's maiden name or your Social Security Number. 
  
• Update your anti-virus and anti-spam software. By keeping anti-virus and anti-spam software up to date on your computer, you make it more difficult for scammers to access your personal and account information.