Phishing is the act of sending an e-mail falsely claiming to be from a legitimate enterprise in an attempt to convince users to surrender private information that will be used for identity theft. The e-mail directs the user to visit a "forged" Web site that may look like the enterprise's genuine Web site, even down to the logos and other graphics found on the legitimate site. Once there, the victim is asked to update or confirm personal information, such as passwords, social security, bank account or credit card numbers already on file with the legitimate organization.

Protect Yourself from Phishing Scams

Beware of any e-mails that have urgent requests for personal financial information. The e-mails usually make false claims such as "Due to recent changes to our system" or "In order to update your account information." The message may even warn that if you do not "update" or "validate" the requested information, your account may be closed, or that account information may be compromised if you do not comply. These statements are designed to scare people and get them to react immediately. Some phishing Web sites may even look identical to the enterprise's actual sign-on page. Beware. Do not use links in an unsolicited e-mail. If you think the link is legitimate and you decide it is not legitimate when you link to it, just use the back key to get out of it, or close the browser window if it will not let you go back.

Always use the Web site address you already know. If you are instructed to use a new Web address, check it out with a phone call to the company before using it.

No legitimate enterprise should request personal identification and financial information via e-mail. Some victims say they thought the e-mail had to be legitimate, otherwise how would they know they had an account with that company. The fact is, the perpetrators of these phishing scams do not know. They are using mailing lists harvested from the many computer viruses over the last few years. They figure if they send enough e-mails out, they are bound to get some hits. And since a computer is doing all the work, they can send out millions every day. Even if your PC has never been infected with a virus, if your e-mail was in the address book of someone that did get a computer-virus, your e-mail address is out there. If you are getting spam e-mail today, your e-mail address is out there.

Today, most of these phishing scams are aimed at customers of very large financial institutions. But as with all scams, the scope and sophistication will evolve over time. If you receive a solicitation, whether via e-mail, postal mail, or telephone, call the company at a number known to you prior to the solicitation to confirm the legitimacy of the request.

Unless you receive prior notification from American Bank, either through a letter, a secure message through Bank OnLine or a message on our Web site, we will not send you an e-mail with a link to a Web site which asks for your password or other account information. We may invite you to sign-on to our known Web site, but, for your security, we will not provide the link in an e-mail.

Remember:

• Do not reply or click on a link in a message if the message you received is asking for personal or financial information.
  
• Never e-mail personal or financial information. E-mail is not a secure means of sending information. If you do decide to send your information through a company's Web site, make sure the site is secure. You can do this by verifying that it has a lock icon on the browser's status bar or that its URL begins with "https:" (the "s" stands for secure). Keep in mind, though, that no indicator is foolproof. Even the security icons have been forged before.
  
• Open and review bank account and credit card statements immediately after you receive them to ensure that there are no unauthorized or fraudulent charges on them. If you are a victim of Identity Theft, early detection and treatment will save you lots of grief.
  
• Use anti-virus software and make sure it stays current with the latest virus definitions. Some phishing e-mails contain software that can harm your computer or even trace your activities on the Internet. Staying up-to-date with good anti-virus software and a firewall can protect you from most of these dangers.
  
• Be cautious about opening an attachment or downloading any files from e-mails you receive, especially if you are unsure about the sender.

• Report the theft of your account or financial information to the bank as soon as possible.
  
• Close your accounts and open new ones.
  
• Early detection and notification to your bank, credit card companies and the credit reporting agencies is the best way to minimize the impact.

How do you go about reporting if you fall victim to such a con?

• Reporting to American Bank
  Report any suspected fraud or Identity Theft activity concerning your American Bank accounts or services immediately to Customer Service from 7AM to 6PM weekdays. If after hours or on a weekend or holiday, report it promptly the next business day.

Customer Service DirectLine
      Corpus Christi 361-992-9911
      Port Aransas 361-749-7711
      Rockport 361-727-9955
      Austin 512-328-0999
      Outside These Areas 1-800-257-8316
      Customer Service Fax 361-980-1812

• Report to Other Agencies
  If you suspect you're the victim of identity theft, you should also contact these agencies:

  Federal Trade Commission (FTC)
  Identity Theft Hotline: 1-877-ID-THEFT
  www.consumer.gov/idtheft

  Credit bureau fraud hotlines

  o Equifax: 1-800-525-6285
  o Experian: 1-888-397-3742
  o TransUnion: 1-800-680-7289

Contact your credit card companies (if you suspect your credit card numbers have been compromised.

For more information about phishing and how you can protect yourself, please go to www.antiphishing.org.

HOME  About American Bank  Contact Us  Branch Locator
Member FDIC. © 2000 - 2003 American Bank, N.A.