|
| |
 |
 |
|
|
| |
"Phishing" Schemes
"Phishing" is a kind of credit and debit card fraud. By pretending
to email from a bank or similar site, scammers "fish" for account
numbers, passwords, Social Security numbers, etc. They trick consumers
into divulging sensitive information so that unlawful charges can
be made on the consumers' accounts.
A number of fraudulent email messages that claim to be from Citi Cards,
Citibank, or Citigroup have been forwarded to us by our cardmembers.
These schemes change frequently and often have links or attachments
with links. Users who click on the links are taken to look-alike or
"spoofed" sites where they are asked to enter personal data.
Please note that Citi will never include your full account number
in an email—only the last four digits. If you receive an email claiming
to be from Citi that includes your full account number, do not
respond to it. Instead, forward it to spoof@citicorp.com.
How to tell if a Citi website is valid:
- Right click (double click for Macs) on the padlock to open the
SSL (Secure Sockets Layer) Certificate.
- From the Details tab, choose Subject.
- Current information for the SSL certificate should appear.
- The name Citigroup should display alongside the letter O (for
Owner).
What does a phishing email look like?
Below are samples of phishing messages.
Your
Citibank account was temporarily suspended
Protect
your Citibank Account
Citibank
for Your Information
Citi
Identity Theft Solutions
Easy fraud reporting
If you suspect that an email appearing to be from Citi is fraudulent,
forward it immediately to spoof@citicorp.com. An Internet Security
Specialist will investigate. If you have replied to an email with
personal information, and now think the email was fraudulent, call
us at the toll-free number on the back of your card. We will issue
a replacement. |
| |
|
