In August, 2005, I wrote an article entitled, “Email Scams – The 'Smell' Test”. Between sage advice on monitoring leftovers in the fridge for freshness, I explained some tell-tale signs of an email phishing scam or an attempt to con a recipient into giving up their online account information.

I was reminded of my earlier article last week after receiving this little gem trying to separate me from the meager contents of my bank account:

Of course this email is a scam and Alaska USA Federal Credit Union has been warning people for quite some time about con artists trying to con their customers. While I had never previously received suspect email regarding my Alaska USA FCU account, I’ve received uncounted daily phishing scam emails wanting me to verify my Chase Bank account.

It was after receiving this latest email last Saturday however, that I decided it was time to briefly revisit the subject of scam emails, phishing and how NOT to be conned.

Let’s take a look at this email for things that just don’t add up.

FIRST: No financial institution will ever send account holders email asking them to verify their account information or email address. If you’re not 100% convinced of an email’s authenticity, call or email the financial institution using the phone number or email address found on their official website.

Don’t use any contact information in the email you’ve received as that too could be bogus. Only use the institution’s official website.

SECOND: The subject, “Update your online banking account information within 48 hours to avoid suspension”, just doesn’t make sense. Why would a bank risk alienating me, a good customer, if I fail to verify my email address within 48 hours? My email address is that important to them? What if I didn’t read my email for 48 hours?  Nope – a non-starter.

THIRD: The salutation, “Dear Alaska USA Federal Credit Union Customer,” is too impersonal to be credible. Here’s my financial institution, the same one that maintains my secure online account info, including my name and last known email address, and they can’t even put my first and/or last name in the salutation? Something smells.

FOURTH: Holding my cursor over the login link (https://ultrabranch.alaskausa.org/efs/servlet/efs/login.jsp) and looking at the destination URL (lower left of window and right above the Start button), it seems a bit suspect that Alaska USA FCU would have a German branch.

Despite my knowing this was a scam, I couldn’t help but click on the link. This took me to a very authentic looking Alaska USA FCU login page knock-off. Had I actually tried to log on, I would have sent my User ID and Personal Access Code to the perpetrators of this phishing scam. I'll pass.

FIFTH: The closing seems so much more compact – and lacking - from all the other business related email I receive. “Best Regards, Alaska USA Federal Credit Union Online Department” as a closing, doesn’t fit the standard business email mold. You know, throw in a legitimate business street and email address as well as a phone and fax number as part of a signature on the bottom. This just doesn’t look right.

In short, the whole email just doesn’t add up.

Conclusion
As I said earlier, I knew of Alaska USA FCU warnings regarding phishing and member accounts but it didn’t really hit home until I actually received this email. They’re out there, they’re real and they want our account information. Don’t give con artists the opportunity.

If nothing else, remember the first phish sign above all others:

No financial institution will ever send account holders email asking them to verify their account information or email address.

More Alaskan Experts >>