- What Are Fake Navy Federal Emails?
- 6 Ways to Identify Fake Navy Federal Emails
- How to Beat and Avoid Navy Federal Phishing Emails
- Fallen for This Scam?
- Frequently Asked Questions
Scammers commonly use Navy Federal Credit Union in phishing scams to steal account details, personal information, and money from their victims. This credit union is so popular with scammers that many different fake Navy Federal emails have been reported. However, there are ways to identify these scams before you fall victim and protect yourself if scammers target you.
What Are Fake Navy Federal Emails?
In a phishing attack, a scammer sends an email to the victim that contains a link to a website that may look like the official Navy Federal website but is a fake site designed to steal personal information or login credentials. Here's how the scam works.
You Receive an Email
You open your inbox and see an email that looks like it's from Navy Federal. The subject line may notify you of a problem with your account to convince you to open it. Once you do so, the email will look genuine. It may even have the same graphics as an official Navy Federal email.
It will say that there are issues with your account and they need more personal information to unlock your account or some other problem to convince you to click the link in the email.
There are several different versions of this scam, such as:
- Fake emails claiming your identity has been compromised: These emails urgently request that you click a button to restore access to your account. The email will look official. But notice that it starts with a generic greeting, "Dear Member." A genuine Navy Federal will show your name may include the last few digits of your account number. Also, notice that the first sentence is not using correct grammar and the last sentence has a spelling mistake.
- Emails saying there has been unusual activity on your account: This type of Navy Federal scam email doesn't put the link to the phishing site in the email itself (possibly to stop the email from landing in your spam folder). This one claims that there were unusual activities on your Navy Federal Credit Union account and has an attached PDF with a link that claims to take you to the Navy Federal site but actually links to a phishing site.
- Emails asking for you to confirm your information: This version of Navy Federal phishing emails claim that regulations require that you provide more information about yourself. This could be an attempt to get not only your account details but also personal information, such as your Social Security number (SSN), to steal your identity.
- Emails saying your account is suspended: This type of Navy Federal phishing email claims that your account is already suspended. To reactivate it, you have to download a form, which most likely will contain a link to a phishing site.
You Click on the Link in the Fake Navy Federal Email
Because you are afraid of losing access to your account, concerned fraudulent charges have been posted to your account, or some other scary emergency the scammer dreamed up, you click on the link in the email. Several things may happen when you do, such as:
- You're taken to a fake Navy Federal website. There you are asked to either log in or provide personal information, such as your Social Security number (SSN).
- A file is downloaded that installs spyware or malware on your computer.
- A file is downloaded that contains a link to the fake phishing site or to malware that gets installed on your computer.
The Scammer Steals Your Information
The fake Navy Federal website will send the data you enter directly to the scammer. If it is a login form, the scammer will now be able to go to the official Navy Federal site and access your account. If it asks for sensitive information, such as your Social Security number, the scammer can now try to steal your identity.
If malware was installed onto your device, the scammer can now steal your sensitive data.
6 Ways to Identify Fake Navy Federal Emails
Navy Federal Credit Union will send you emails periodically with notices about your account, so you can't ignore every email that seems to come from them. However, you need to be aware that some of these emails could be phishing scams. Although Navy Federal does offer some protection against scams, it's up to you to identify fake emails.
Here are some ways to vet these emails and determine if they are fake:
- Check the sender's email address: If the sender's email is not an official @navyfederal.org address, it is a phishing email. Sometimes you have to click on the email in your email software to expose the sender's address.
- Look for spelling, punctuation, and grammar mistakes: Official Navy Federal emails should be free of common errors. Also, be suspicious if the phrasing in the email is awkward because many phishing scammers know English as a second language.
- Check links before clicking on them: Scammers will link to a phishing website with a domain that may look like navyfederal.org, but one of the characters will be switched out, like navyfedera1.org. Hover over the links before clicking to verify they are actually going to the genuine Navy Federal website.
- Think about what the email asks for: Navy Federal will never request your Social Security number or your account details via email.
- Look at the greeting: If the email is legitimate, you will be greeted by your name and not by something generic like "Dear Member" or "Dear User."
- Take a close look at any images used: Scammers may spend some time on making the emails look right but may not have the graphic design skills to recreate the official images correctly. As a result, images in fake Navy Federal emails (including logos) may look blurry, skewed, or just not right.
Navy Federal Credit Union
Contact page: https://www.navyfederal.org/contact-us.html
Email: [email protected]
Contact page: https://www.navyfederal.org/services/security/report-fraud.html
How to Beat and Avoid Navy Federal Phishing Emails
Scammers never stop trying new tactics and techniques to convince you to give them your personal information. However, there are a few things you can do to protect yourself. Here are some steps you can take:
- Use multifactor authentication on your Navy Federal Credit Union account so that scammers can't access your account even if they have both your username and your password.
- Check your account statements each month for any transactions you don't remember.
- Use a strong and unique password on your Navy Federal account to prevent unauthorized access.
- Be suspicious of links in emails and check your account using either the Navy Federal mobile app or the official website instead of clicking the link.
- Don't use public WiFi to login into your Navy Federal account because scammers can easily hijack public connections.
- Keep antivirus and antimalware software up to date and run frequent scans of your computer.
- Keep track of your credit report either through the credit bureaus or one of the free credit report apps.
Don't Click on Any Links
Unless you're absolutely sure the email is legitimate, don't click on any links or download any attachments. If you want to check the status of your Navy Federal account, log in from your mobile app or via www.navyfederal.org directly.
Fallen for This Scam?
If you have fallen for a Navy Federal phishing scam, don't panic or beat yourself up about it, but do act quickly to prevent any damage to your finances or identity. Here are the steps you should take if you have entered any information on a fake Navy Federal website:
- Enable Touch ID and change your password on the Navy Federal mobile app if you click on the phishing link from your phone.
- Change your username and password for your online Navy Federal account from a device that wasn't affected by the phishing email.
- Scan your computer with antivirus software after making sure it is up to date with the latest virus definitions. Then, remove any viruses, Trojans, and spyware the software finds.
- Call Navy Federal and tell them what happened. They can help you check if there is any malicious activity in your account, reverse any fraudulent charges, and help you prevent any more damage to your finances.
- Set up a fraud alert with one of the credit bureaus, so you're notified if someone tries to apply for credit using your identity.
- Check your credit report regularly, look for inaccuracies, and report them immediately to the credit bureaus to protect your finances.
- Report it to the authorities.