All types of fraud are still growing at an alarming rate; however, there are some relatively simple precautions you can take to protect yourself from becoming the victim of identity theft and/or other types of scams and deceptions.  Below is information on some of the more prevalent fraudulent activity currently in active operation:

ATM/Debit Cards – Vulnerabilities

A stolen Debit Card can be taken to any merchant and used to charge purchases to your bank account. Keep careful track of your card; do not leave it laying around. All that is needed is a forged signature. Crooks who use Debit Cards for telephone and online purchases do not have to give a personal identification number (PIN) or a signature to the merchant. Fraudsters are always observant and can obtain your PIN if you are not cautious when performing a transaction at an ATM. In addition, skimming devices on ATMs, or at other places such as gas pumps, can collect confidential information from your ATM card. If you write your PIN on your ATM/Debit card, and it is lost or stolen, the criminal has all the information necessary to clean out your bank account. When your Debit Card is removed from your sight, someone can easily write down your card number or make a copy of your card and later use it use in the production of a counterfeit card.

Protect Yourself Against ATM/Debit Card Fraud:

  • At an ATM, watch for anything unusual attached to the machine which could be a skimming device ( if you are concerned, do not use your card and contact your bank), and be careful when entering your PIN that no one is watching what you enter.
  • Keep you Debit Card in view if at all possible (especially at restaurants); retrieve your card promptly after using it.
  • Avoid signing a blank receipt. Draw a line through blank spaces above the total when you sign a card receipt (this includes credit cards).
  • Emails: Do not click on a link in an email to make a purchase. Get out of the email and go to the merchant's official site to make your purchase; this step will help avoid possible Phishing attempts.
  • If a merchant contacts you by phone to sell his/her merchandise, if you are interested in making the purchase, explain that you will call the company back. Do not use any phone number the caller may have provided, but look up the merchant's number and call that number back. You may ask for the name of the person who contacted you. The caller may be unhappy with this procedure especially if he is not local, but there are numerous callers impersonating representatives of legitimate companies (e.g. trying to sell various types of insurance).
  • As noted with phone calls purportedly from a business, if you receive a call from a charitable organization, if interested in donating, look up the charity's information and contact it yourself.
  • Check your bank account statement frequently (sign up for online banking so that you can view your statement as often as you want).  Report any transaction which you do not think you made to your bank immediately, regardless of how small (e.g. $.99, $1.00, $2.00 etc – these might be attempts by the scammer to see if your card is valid).
  • Never give out your card number over the phone unless you initiated the transaction and are confident the company is legitimate and reputable.
  • Be very careful about what you post on a social networking site. Often this information can be used by scammers to contact you by phone, mail, or email to attempt to sell you a fraudulent product or service or to obtain additional confidential information from you.

What is Phishing?

Don’t trust an email because it looks like it came from a trusted source.  Thieves may disguise an email to make it appear to come from a business you recognize such as your bank or from a government agency.  Such email may warn you of a serious problem that requires immediate attention and may encourage you to click on a button to go to the Web site of the bank or agency. You will probably be directed to a phony Web site, which may look very real.  If it is a fake Web site, a pop up window will appear for the purpose of acquiring your financial information. You may be asked to update your account information or to provide confidential information for verification purposes.

If you provide the requested information, you may find yourself the victim of identity theft.

Protect Yourself Against Phishing:

  • Never provide your personal information in response to an unsolicited request, whether over the phone or the Internet.  Internet pages created by phishers may look real, may even have a fake padlock icon.  If you did not initiate the communication, you should NOT provide any information. If you are concerned about the site; do not click on the link provided; get out of the email and go directly to the Web site yourself.
  • If you believe the contact may be legitimate, contact the bank or business yourself.  You should be the one to initiate the contact, using contact information that you have verified yourself.
  • Never provide your password over the phone or in response to an unsolicited Internet request. The bank will never ask you to disclose your financial information online.
  • Review your account statements regularly to ensure all charges are correct. Contact the bank if your statement is late in arriving.  If you have access to online banking, periodically check the activity on your account to determine if anything appears suspicious.

What is Spyware/Key Loggers?

Spyware refers to software that collects information about a person or organization without his/her knowledge or informed consent and reports such data back to a third party (could include user IDs and passwords).

  • Spyware refers to software that collects information about a person or organization without his/her
    knowledge or informed consent and reports such data back to a third party (could include user IDs and passwords).
  • Spyware can be downloaded with other Internet downloads.
  • May be directly downloaded by users who have been persuaded that the technology offers a benefit.
  • May be installed by an Internet browsing technique called "drive-by downloads" – spyware is installed when a user simply visits a Web site. The user accepts a download believing it is necessary to view the Web page or a user is prompted to install the program through a pop up window which remains open.
  • May be downloaded automatically when a user opens or views unsolicited e-mail messages.
  • Make sure your Windows updates are current!

Protect Yourself Against Spyware, Key Loggers, Trojans

The user may be unaware that his computer is infected.

There might not be a “removal” option, or when such an option is present, the removal process may not eliminate all components or it may redirect the user to an Internet site to complete the removal.  This often results in new or additional infection rather than removal.


You may have an infected computer if: you notice performance problems such as Internet Explorer not working properly; your computer "hangs up" frequently; your computer has slowed down significantly.

To protect against Spyware, Key Loggers, Trojans (viruses):

  • Use Anti-Spyware and or Anti-Virus Program(s); often an Anti-Virus program will include anti-spyware and anti-adware programs
  • Use Anti-Spam programs
  • Don't inadvertently install adware or spyware; beware of free file-sharing software and of clicking the OK button in pop up dialog boxes.
  • Install a pop-up blocker to prevent adware and spyware pop-up windows.
  • If you unwittingly click on a link that appears legitimate and a dialog box pops up, don't click the install button, until you are sure this is the program you were intending to install.
  • Consider installing firewall protection.
  • Adjust your browser settings to prompt the user whenever a Web site tries to install a new program or Active-X control.
  • Carefully read End User Licensing Agreements for new software (especially "free" software) to ensure it does not automatically include adware.

What is Ransomeware?

Ransomeware is malware (may appear as a pop-up or perhaps email) that attempts to extort money from the recipient by threatening to place a virus on his/her computer; or in some cases he may have already encrypted the owner’s files with the virus.  He then demands money to unencrypt the data.  If the computer owner refuses, the files remain encrypted and the user is locked out of his own files OR worse, the files are “executed” – deleted, several at a time until the “ransom” is paid.

Most importantly: BACK UP YOUR DATA.  If someone locks you out of your computer data, you will still be able to get into your information fairly quickly if you have backed it up on a CD or DVD.

Protect yourself against Ransomeware:

  • Make sure you have a virus scanning program.
  • Don't open emails from sources you don't know, and don't open attachments within e-mails unless you know exactly what the attachment is.
  • Be cautious of opening pop-ups.
  • If you have a wireless router that lets you connect wireless devices to your network, make sure they are password protected.
  • If concerned about losing your files to malware or Ransomeware, shut down your PC.

Email Protection:

  • Never provide personal financial information (including social security number, account number or passwords) over the phone or the Internet if you did not initiate the contact.
  • Do not provide unencrypted confidential information through email.
  • Never click on the link provided in an email you believe is fraudulent.  It may contain a virus that can contaminate your computer.
  • Do not be intimidated by an email or caller who suggests dire consequences if you do not immediately provide or verify financial information.
  • If you believe the contact is legitimate, go to the company's Web site by typing in the site address directly or using a page you have previously book marked, instead of clicking on a link provided in the email.
  • Report suspicious emails or calls to the Federal Trade Commission through the Internet at www.consumer.gov/idtheft, or by calling 1-877-IDTHEFT.

**If you are concerned about an email that appears to come from The Bank of Union, do not hesitate to call the Bank for further information (405-262-6577) or (405-483-5308).   The Bank will not ask you to provide confidential information such as your social security number, password, or account number through an email.

Account Takeover

Account takeover occurs when a fraudster obtains an individual's or a business's confidential information and uses this information to make an address change with the financial institution or is able to access or change User IDs and Passwords thereby gaining access to computer programs and information, ordering wire transfers or ACH transactions.

Protect yourself/your business against Account Takeover:

  • Put a lock on your home and/or business mailbox
  • Shred receipts and statements that contain account information and credit card application information requests.
  • Periodically check credit bureau information.
  • Review billing statements thoroughly.
  • Frequently check bank account activity.
  • Use "strong" passwords (not your pet's or child's name) and include a number(s) and symbol.
  • Businesses: Use a dedicated computer which is used exclusively to transact business (e.g. for online banking, to communicate sensitive information to the bank such as ACH originated items, for remotely deposited items or wires).
  • Use, and keep updated, anti-virus software

Social Networking Sites

Helpful tips regarding security and privacy while using social networking sites:

  • ensure that any computer you use to connect to a social media site has proper security measures in place (anti-virus software and keep your operating system patches up to date).
  • Use caution when clicking a link to another page or running an online application. Many applications embedded within social networking sites require you to share your information when you use them - this is how malware can be disseminated.
  • Use strong and unique passwords.
  • If screen names are allowed, do not choose one that gives away too much personal information.
  • Be careful who you add as a "friend," or what groups or pages you join.
  • Do not assume privacy on a social networking site (personal or business).
  • Use discretion before posting information or commenting about anything.
  • Configure privacy settings to allow only those people you trust to have access to the information you post. Restrict the ability for others to post information to your page.
  • Review a site's privacy policy. Some sites may share information such as email addresses or user preferences with other parties. If the site's policy is too vague or does not provide protection, do not use the site.

Here is a list of some free Antivirus programs:

AVG Free:
http://free.avg.com/us-en/homepage

Avira Antivirus:
http://www.free-av.com/

Spyware Software:

Spybot Search and Destroy:
http://www.safer-networking.org/en/spybotsd/index.html

Malwarebytes (especially good for cleaning):
http://www.malwarebytes.org/mbam.php

Spyware Doctor (only free if downloaded from Google Pack Web site):
http://pack.google.com/intl/en/pack_installer.html