An email has been circulating asking Facebook users to reset their passwords.  This is a scam trying to infect your computer with a virus that could steal your financial login information.

If you notice that websites are performing in unexpected ways—for example, being redirected to a webpage requesting your credit card information and PIN information while trying to access online banking—your computer may be infected with malware.

If you ever believe your personal information has been compromised please contact our Member Service Center immediately at 888-982-1400.

Read more at CNET.com Beware the new Facebook password reset scam

Zeus Malware Infection Alert
January, 2010

Zeus is a financial malware. It infects consumer PCs, waits for them to log onto a list of targeted banks and financial institutions, and then steals their credentials and sends them to a remote server in real time. Additionally, it may inject HTML into the pages rendered by the browser, so that its own content is displayed together (or instead of) the genuine pages from the bank’s web server. Thus, it is able to ask the user to divulge more personal information, such as payment card number and PIN, one time passwords and TANs, etc. 

Click Here to view a screen shot you may encounter if your computer is infected and trying to login to home banking.

 
How Zeus works:

Unlike traditional phishing attempts, Zeus does not always begin with an email containing a link to a fraudulent website. It involves malware that finds its way to your personal PC through websites you visit. This particular malware is able to bypass many anti-virus and malware scanning software programs. This new attempt waits for the user to login to online banking, then captures their user name and password and asks the user to further verify their login by entering their credit card information.

What to do if you believe you’re being targeted by this new scam:

How can I be proactive in stopping phishing attempts?

Since this particular malware actually lives on the user’s PC, your best defense is making sure your anti-virus and malware scanning software programs are up to date so that when a fix is released, you will be protected.

DO NOT...Volunteer any personal information when you use your credit card.

DO NOT...Give your Social Security number, credit card number, or any account details over the phone unless you have initiated the call and know that the business that you are dealing with is reputable.

DO NOT...Leave receipts at ATMs, retail stores or service stations.

DO NOT...Leave envelopes containing your credit card payments or checks in your home mailbox for postal carrier pickup. Instead, mail them from a secure drop box.

DO NOT...Record your Social Security number or passwords on paper and store them in your wallet or purse.