Elizabethton Federal never requests or communicates sensitive account information through email

Email Fraud Alert

One of the more common types of email fraud is “PHISHING”: the practice of sending a phony email message. Such phony emails appear legitimate, and often include the company’s logo.
But they’re actually from criminals who send thousands of emails at a time to random addresses. These criminals are trying to entice you to visit a phony website and provide personal and confidential information, such as online IDs and passcodes, social security numbers, and account numbers.

Spotting phony email messages is not easy. Whether, they may ask you to reply directly, or provide a link that takes you to a website that appears to be “Internet Banker”, beware it is not. These phony email messages want you to provide sensitive personal, financial, or account information.

 

How Can I Protect Myself?
DO NOT respond to the message or click on any of the links, nor change the email in any way.

Tips on how to avoid being scammed by a PHISH:

  • Before submitting financial information through a web site, look for the “lock” icon on the browser’s status bar. It means your information is secure during transmission
  • If you receive an unexpected email requesting information or saying your account will be shut down unless you confirm your billing information, do not reply or click any links in the body of the email
  • If you are uncertain about the legitimacy of any email or website, contact Elizabethton Federal by phone
  • Forward this email to abuse@elizfed.com
  • Delete the email immediately after forwarding it
  • Check to make sure that your virus definitions and anti-Spyware are up-to-date. Scan your computer, especially if you clicked on the link in the email.

 

Contact us if you detect or suspect fraudulent activity or identity theft on your Elizabethton Federal accounts. If you entered personal information after clicking on the link, contact Matt Adams, IT Manager & Loss Management at  (423) 543-5050 immediately.

 

Look for the following in the email:

  • Elizabethton Federal’s graphics in phishing emails may have broken or uneven appearance
  • The email indicates that you must immediately take some action or you will lose your ability to access your account(s).  Phishers try to pressure customers into taking action. Remember, Elizabethton Federal never requests or communicates sensitive account information through email.
  • Grammatical or typographical errors, or poorly constructed sentences and phrases
  • Links in emails that go to Web sites that do not begin with https://elizfed.com/

Additional Cyber-security resources

Customer Awareness & Education

How Elizabethton Federal contacts customers

  • Elizabethton Federal’s employees will not contact you on an unsolicited basis and request electronic banking credentials.
  • In the event of extraordinary circumstances we shall request that you come into one of our offices.
  • If geography presents a problem we will ask you to contact us at our main office so that we can deal with the issue.
  • Elizabethton Federal does not conduct surveys or incentive programs requiring electronic banking credentials.
  • Consider all unsolicited emails purportedly from Elizabethton Federal with utmost suspicion.

Do’s & Don’ts that customers can implement to lessen fraud risks

  • Do not write down passwords.
  • Change passwords on a frequent basis.
  • Don’t share passwords with anyone.
  • Review your monthly statements for non-authorized account activity.

Contacts at Elizabethton Federal Saving Bank in the event of suspicious account activity
(423) 543-5050

  • Matt Adams
  • Carol Forrester
  • Carol Childers

Protection provided and not provided to customers relative to EFT under Regulation E

 – Customer Liability:

  • Loss or Theft: If a customer reports the card missing to the institution before any transactions occur, they are not held responsible. A customer can be liable for unauthorized withdrawals if their EFT card is lost or stolen and they do not follow certain criteria.
  • Loss is limited to $50 if institution is notified within two business days
  • Loss could be up to $500 if institution is notified between 3 and 59 days
  • If loss is not reported within 60 business days customer risks unlimited loss on transfers made after the 60 day period – could lose all money in account plus maximum overdraft if any