Websense® Security Labs™ has received reports of a phishing attack that targets customers of Norway Savings Bank. Users receive a spoofed email message, which claims that they need to upgrade their account for security reasons. The email provides a link to a phishing site that attempts to collect personal and account information.

This phishing site is hosted in Poland and was up at the time of this alert.

Phishing Email Text:

Dear Customer,
This is to inform all our online banking customers that we have decided to upgrade our SSL servers for more faster and efficient services while carrying out your online banking transaction.
We have decided that security should be our watchword in this year of 2007 hence we have decided that you should upgrade your online banking access by clicking on the link below to confirm your online banking details. This measures are been taken to serve you better.
Security Access click on the link below to verify your online account.

Phishing Screenshot:

Board Member Gigi Hyland will be facilitating the next NCUA Access Across America Economic Empowerment Summit. The program will be held March 6, 2007, at the Sheraton Tampa Riverwalk Hotel in Tampa, Florida. Registration opens at 8 a.m. The program will run from 9 a.m. – 3 p.m. Credit unions from Florida, Georgia, South Carolina, Alabama, Mississippi, and Louisiana are invited to attend.

Websense® Security Labs™ has received reports of a phishing attack that targets customers of BME Federal Credit Union. Users receive a spoofed email message informing them that they need to confirm their email address, in order to keep their online account active. The email provides a link to a phishing site that attempts to collect personal and account information.

This phishing site is hosted in the United States and was down at the time of this alert.

Phishing email text:

Dear Valued BME Federal Credit Union Customer, BME Federal Credit Union has a strict policy to ensure all of our customer’s emails associated with their bank account’s are confirmed. Upon inspection this email was registered with your account’s, however not confirmed. Please confirm your email by clicking the link below :
< LINK REMOVED >
Email verification must be performed within 1 business day from receiving this email. Failure to comply will result in online banking suspension and limited account activity until an account specialist can contact you regarding this error. This can be avoided simply by following our online verification link above.
Sincerely,
Carter Franke
BME Federal Credit Union, Safe Harbor Dept.
BME Federal Credit Union, Account Services

BME Federal Credit Union, Equal Housing Lender

Copyright C 2007 BME Federal Credit Union, All rights reserved.

Phishing screenshot:

The National Credit Union Administration (NCUA) has issued orders prohibiting former credit union employees from participating in the affairs of any federally insured financial institution.

The December 2006 Insurance Report of Activity is Available

The National Credit Union Administration and the Financial Crimes Enforcement Network (FinCEN) are jointly hosting a free web-based seminar “BSA: A Year in Review and Setting the Table for 2007.”

In honor of the recent Martin Luther King, Jr. Holiday, National Credit Union Administration (NCUA) Chairman JoAnn Johnson was joined by Board Member Gigi Hyland and a group of seventeen NCUA staff members on Wednesday to volunteer at the Carpenter’s Shelter, a facility located in Alexandria, Virginia, which provides shelter and services to homeless families.

The Underserved Area Report identifies the number of Underserved Areas approved and the number of credit unions expanding into underserved areas. The report is presented in a year-to-date format and is updated quarterly.

The Trade, Industry, or Profession (TIP) Report identifies all the TIPs approved under IRPS 03-1. The report will be presented in a year-to-date format and is updated quarterly.

The community charter report identifies community conversions, expansions, and new community charters approved under IRPS 99-1, as amended by IRPS 00-1 and IRPS 01-1 or, after May 15, 2003, under IRPS 03-1. This report will be provided in a “year-to-date” format and updated on a quarterly basis.