E-mail Claiming to Be From the FDIC

The Federal Deposit Insurance Corporation (FDIC) has received numerous reports of a fraudulent e-mail that has the appearance of being sent from the FDIC.

The subject line of the e-mail states: "check your Bank Deposit Insurance Coverage." The e-mail tells recipients that, "You have received this message because you are a holder of a FDIC-insured bank account. Recently FDIC has officially named the bank you have opened your account with as a failed bank, thus, taking control of its assets."

The e-mail then asks recipients to "visit the official FDIC website and perform the following steps to check your Deposit Insurance Coverage" (a fraudulent link is provided). It then instructs recipients to "download and open your personal FDIC Insurance File to check your Deposit Insurance Coverage."

This e-mail and associated Web site are fraudulent. Recipients should consider the intent of this e-mail as an attempt to collect personal or confidential information, some of which may be used to gain unauthorized access to on-line banking services or to conduct identity theft.

The FDIC does not issue unsolicited e-mails to consumers. Financial institutions and consumers should NOT follow the link in the fraudulent e-mail. The email typically has an embedded link for the recipient to click on which some have reported as downloading malware. This is a classic phishing scam.

This information can also be found at the following link: http://www.fdic.gov/consumers/consumer/alerts/index.html

My ID Score

My ID Score is a free public service that gives you a new way to quickly assess your risk of identity theft. Get an instant reading on whether you are at low, medium or high risk of Identity Theft by following the link: www.MyIDScore.com

GET YOUR FREE CREDIT REPORT NOW

One of the best ways to keep fraudsters from using your personal information to commit identity theft is to register for your free annual credit report. You can request a free report on an annual basis from each of the three national consumer credit reporting agencies. Review the information carefully and report any issues that concern you to the reporting agency.

Follow the link here to get your free credit report.

Visit: www.annualcreditreport.com

Debit Card Phishing Scam

We have been made aware that cardholders are receiving phone calls from an automated voice service (AVS) stating that there is an issue with their debit card. At this time the calls are only occurring in PA. The recording asks the cardholder to provide personal information over the phone.

Please note that this is a Phishing Scam and you should disconnect and not provide any information to the AVS.

If you did enter personal information to this AVS please contact Hyperion Bank immediately at our main number - (215) 789-4200 - so that we may close your account and reissue your card to avoid future fraud.

Security Alert

Hyperion Bank was recently notified by MasterCard that an illegal data intrusion into Heartland Payment Systems' computer network may have resulted in the theft of some of our customers' debit card numbers. The intrusion affected merchants that use Heartland's service in the United States.

Some Hyperion Bank customers are affected and have been notified. However, it is important to note that a security breach of this nature involved card information only. No personal information linked to card numbers, such as Social Security numbers, PIN numbers, checking account numbers or cardholders' mailing addresses were compromised.

You can visit Heartland Payment System's website at www.2008breach.com for more information. If you suspect any fraudulent activity on your debit card, you should immediately cal the 1-800 number listed on the back of your card(s).

Identity Theft and Phishing

A recent study estimates that Identity Theft will victimize more than ten million Americans this year! Don't let it happen to you.

Unfortunately, phishing is now a well-established approach to ID theft. It occurs when a perpetrator posing as a legitimate financial organization uses email to retrieve personal and financial data.

Pharming occurs when an email purporting to be from a known organization carries a computer virus that infects a victim's computer in one of two ways. One sends the victim, who types in a legitimate domain name, to a bogus site. The other records keystroke information and transmits it to a criminal who then uses the data to access the account.

Some suggestions on how to avoid becoming a victim of phishing or pharming:

1. Never click on links in email text
2. Be suspicious of any email that does not end with a .com domain name
3. Ensure that the web site is secure
4. Update Internet browsers and Windows operating systems
5. Never act upon any email or pop-up ad that asks for personal or financial information
6. Review bank and credit card statements immediately
7. Report suspicious activity to your bank
8. Report suspicious activity to the Federal Trade Commission

This problem is not going away, nor is there any foolproof solution for it. If you have any doubts whatsoever, contact us immediately.

We will never ask for your personal information in any email we send.

Password Security

Don't use the same password for everything. Avoid using family member, partner, pet and sports idol and team names. In fact, avoid using words that can be found in the dictionary. Don't use your login or user name in your password. Although most consumers create passwords that are easy for us to remember, that makes it easy for the bad guys too.

Use a combination of letters in upper and lower case with numbers and symbols placed between the letters. Make your password at least eight characters. (A 15 character password is 33 thousand times stronger that an eight character password). Never share your password with anyone. And never enter your password on a computer you do not control (public facilities). Change your password frequently (about every month or so).

Internet Security

Don't leave your computer on overnight.

Connect only to trusted websites that you know. Avoid downloading information from sites you do not know.

Be sure when exchanging secure information that the lock displayed at the bottom of your PC screen is in the locked position.

Be certain to get security updates to your system.

Never leave your laptop unattended. Never place your laptop with checked baggage when traveling. Do not leave your laptop in your hotel room, car, conference room or restaurant. Don't use a computer bag to carry your laptop (it's like hanging out a sign to thieves). Keep your laptop's serial number in a separate, safe location in case you need to file a report with police. Always be aware of your surroundings when traveling, don't be a target for 'snatch & run' criminals.

WHAT IS SKIMMING?

Thieves use a device that can capture the magnetic-stripe and keypad information (when you input your PIN (Personal Identification Number) at ATMS, gas pumps or retailers. Then they take cash from your bank account.

PROTECT YOURSELF

Signature based debit card transactions offer you a higher level of security.

We recommend that you always say "credit" when asked by the merchant and sign for your purchases. Saying 'credit' doesn't mean you are using a 'credit card'. It's just the processing method your transaction will use. The funds are automatically deducted from your checking account. Signature based in-store, mail, phone and Internet transactions enjoy the added benefits of MasterCard's Zero Liability protection from unauthorized purchases.

If you require cash back (an amount over the purchase amount and available only at some merchants), you must say 'debit' and enter your PIN (Personal Identification Number) on a keypad.

The funds are still automatically deducted from your checking account. When you enter your PIN, shield the keypad so no one sees what you enter.

If you use your debit card at gas pumps (which are notorious for skimming) choose the screen prompt that identifies it as a credit card, so that you don't have to enter your PIN.

Use ATMs at banks. Thieves have to attach a skimming device to an ATM and then retrieve the device. It's much easier for them at a non-bank ATM.

Sign your card immediately upon receipt.

When using your card always keep it in your sight.

Safeguard your account number and never keep you card and PIN in the same location.

Do not give your PIN to anyone. If you feel it may have been compromised, contact us immediately have your PIN changed.

Always obtain merchant receipts and destroy carbon copies.

Monitor your bank statements regularly. If you suspect you are the victim of fraudulent charges, contact the bank immediately at 215-789-4200.