Avoid being a victim of a scam. Take precautions to keep yourself safe from fraudulent activities.

 

 

Text Scams on the Rise

TRUE Community will never ask you to log in to your account via text message. To access your account, please log in by visiting TRUECCU.com or through the TRUECCU mobile app.

IF YOU RECEIVE A SUSPICIOUS TEXT MESSAGE CLAIMING TO BE FROM TRUE COMMUNITY, PLEASE FOLLOW THESE IMPORTANT SECURITY MEASURES:

  • DO NOT CLICK ANY LINKS: The fraudulent text may contain links that lead to fake websites designed to steal your sensitive information. Do not click on any links provided in the message.
  • DO NOT PROVIDE ANY LOGIN INFORMATION: Do not provide your login information or any other sensitive details through links in text messages. Scammers often create fake pages that look legitimate to deceive users.
  • USE OFFICIAL CHANNELS: Only log into your Digital Banking at TRUECCU.com or through the TRUECCU mobile app. These are the official channels for accessing your account, and they provide a secure environment for your financial transactions.

 

Stay Connected Tip

Only you are familiar with the typical activity on your account. Even if you use your account infrequently, establish a routine of logging in to all your accounts at least once a week to review transaction activity and promptly report any suspicious activity.

Make sure to register for Digital Banking, so you can monitor your account anytime, anywhere. Plus, Digital Banking allows you to promptly turn off your cards in the event of suspected fraudulent activity.

 

Important Reminder

TRUE Community Credit Union will never send you links via text requesting sensitive information, including usernames, passwords, PIN numbers, account numbers, or social security numbers. We prioritize the security of your accounts and take all necessary measures to safeguard your information.

If you suspect that you have fallen victim to fraud, please reach out to a member representative as soon as possible.

 

 

TRUE Community Credit Union will never contact you to ask for sensitive information.

If you receive a phone call or text from someone claiming to be a representative of TRUE Community Credit Union, don't click any links and don't provide any personal or account information, such as multifactor authentication codes, account numbers, usernames, or passwords.

Hang up, block the number, and delete the text. If you did click a link from a text message or feel your account could be compromised, please call us immediately at 517.784.7101 or 800.554.7101.

Remember, never log in to your account from a text message. Instead, visit TRUECCU.com or use the TRUECCU mobile app to log in directly.

 

{beginAccordion}

Our Practices

We are always looking for new ways to stop fraud faster and with our enhanced fraud prevention tools we can do just that. We've always monitored your account for fraud, but now we can quickly text you if we see something suspicious. If you receive a fraud alert message, simply respond whether the transaction was yours or not. And don't worry — if you miss our text we'll also try to call you. Please contact our Risk Management Department with any fraud issues.

For your protection and for increased account security we may ask additional questions to properly verify your identity. Unfortunately, if someone was able to obtain information about you and attempt to steal your identity, they would most likely have your name, date of birth, and social security number. Therefore, we may verify additional information with you. Please be assured these questions are asked because your account security is of the utmost importance to TRUE Community Credit Union.

 

Skimmers

Skimming is a method scammers use to capture a card’s magnetic strip data and PIN as it is being used at point-of-purchase machines, such as gas pumps and ATMs. Scammers are then able to use the information to make fake cards, purchase goods, or sell the information.

 

To curb this common scam, you can:

  1. Examine machine facades. Before using any machine, look for evidence of tampering such as sticky residue. Pull on the card reader and if it seems loose, crooked, or damaged, if the graphics aren’t aligned, or if part of the machine is a different color, don’t insert or swipe your card.

  2. Use mobile wallet or pay inside. An alternative to swiping your card is paying by mobile wallet, including Apple Pay, Samsung Pay, or Google Pay. This form of payment is secure because your credit card information is tokenized and rendered useless if fraudsters were to get a hold of it. If your local gas station hasn't yet updated their pumps to accept mobile wallet or you aren't sure if the machine is safe to use, go pay inside.

  3. Check your account regularly. Rather than wait for your monthly statement, check your account regularly using Digital Banking. If you notice irregular activity or a purchase you didn’t make, report it to the credit union immediately.

  4. Sign up for alerts. While fraud is not 100% preventable, catching potential fraud immediately will save you a lot of time and hassle. Members can set a variety of alerts within Digital Banking, such as text or email alerts whenever there is a debit card purchase or external transfer.
  1. Be wary of non-bank ATMs. 60% of skimming occurs at privately-owned ATMs. These are typically cash-dispensing machines and are often located in convenience stores, bars, restaurants, grocery stores, or check cashing establishments. 
  1. Trust your instincts. If you’re unsure or uncomfortable, use a different machine or payment method.

 

Phishing Websites

On a Phishing website, you are tricked into providing information, including login credentials and other sensitive information, to cyber criminals. Identifying a phishing website can be challenging, as attackers often create fake websites that look identical to legitimate ones. 

Below are ways to help identify phishing websites:

1. Check the URL: A phishing website's URL is easy to see. Phishing websites often have various URLs. Phishing websites may utilize misspelled URLs like "www.googlee.com" instead of "www.google.com".

2. Look for the padlock: SSL/TLS encryption protects most trustworthy websites. The address bar shows a padlock. Phishing websites may not have a padlock symbol.

3. Check for spelling and grammatical mistakes: Phishing websites may include errors.

4. Avoid urgent requests: Phishing websites employ urgency to induce consumers to respond immediately. Phishing websites may request rapid action.

Always be cautious. Avoid submitting personal information and call the firm to check a website's legitimacy if you're doubtful.

QR Codes

Best practices when scanning QR codes:

  • Be aware of your surroundings. If you scan a QR code in public, pay attention to who else is nearby. Scanning a QR code could lead to you downloading malware or opening up your device to hackers.
  • Use antivirus software and firewall protection on your phone. Antivirus software can help protect your phone against viruses and other forms of malware that can come from scanning QR codes.
  • Don’t scan a QR code that looks like it’s been printed on a piece of paper or cardboard or one that has been written out by hand. If you are unsure whether the QR code is real or fake, don’t scan it. Also, be careful when scanning codes found on vehicles, especially if they have been defaced in some way.
  • Before scanning any QR code, make sure you know where it came from and who created it. Ask someone about its origin to determine if it is safe to scan.
  • Always scan from a secure connection, but if you are scanning from an insecure connection (such as public Wi-Fi), do not enter any personal information into the app or web page that pops up after scanning the code! This includes usernames and passwords. If a website asks for personal information (like credit card numbers) before offering any content or services in exchange, this is likely a phishing scam and should not be entered into your device!
  • TRUE Community Credit Union QR codes are used for surveys and giveaways. We will NEVER ask for your personal account information.

Lottery Scams

If you can answer YES to any of these questions, you may be a victim of a scam:

Did you receive a check from the lottery even though you did not play the lottery?

Did you receive a check from a foreign lottery even though you've never played that lottery?

Did you know it's against the law for a U.S. citizen to play a foreign lottery?

Tax Season Scams

When you're filing your taxes this year, consider these helpful tips.

Be careful responding to emails you receive from "tax companies" requesting that you click on the link they have provided to enter your personal information.

Also beware of phone calls, text messages and/or suspicious mail you receive requesting your personal information in order to do your taxes.

Always make sure when you're filing your taxes, you are always conducting your business with a legitimate organization that you trust.

Read more about common scams the IRS sees.

Common Scams

If you can answer "yes" to any of the following questions, you could be involved in a fraud or are about to be scammed. Contact us immediately at (517) 784-7101 to be directed to our Risk Management Department.

Did you respond to an email requesting you to confirm, update, or provide your account information?

Did you receive a check from an item you sold on the internet?

Is the amount of he check more than the item's selling price?

Did you receive the check via an overnight delivery service?

Is the check connected to communicating with someone by email?

Is the check drawn on a business or individual account that is different from the person buying your item or product?

Have you been informed that you were the winner of a lottery that you did not enter?

Have you been instructed to either wire, send, or ship money as soon as possible to a large U.S. city or to another country (such as Canada, England, or Nigeria)?

Have you been asked to pay money to receive a deposit from another country (such as Canada, England, or Nigeria)?

Are you receiving pay or a commission for facilitating money transfers through your account?

There's a new type of Internet piracy called "phishing." It's pronounced "fishing," and that's exactly what these thieves are doing: "fishing" for your personal financial information. What they want are account numbers, passwords, Social Security numbers, and other confidential information that they can use to loot your checking account or run up bills on your credit cards.

In the worst case, you could find yourself a victim of identity theft. With the sensitive information obtained from a successful phishing scam, these thieves can take out loans or obtain credit cards and even driver's licenses in your name. They can do damage to your financial history and personal reputation that can take years to unravel. But if you understand how phishing works and how to protect yourself, you can help stop this crime.

Additional Resources

Fraud.org

Help fight con artists by reporting suspicious activity that can help millions of other consumers avoid scams.

The Attorney General

Michigan's Attorney General has resources to learn about consumer protection, as well as how to fight it and report it.

Federal Trade Commission

The federal government's division is dedicated to protecting America's consumers.

{endAccordion}