How to Protect Yourself from Online Fraud – Email Fraud
E-mail can be used for sending scams such as a false offer from a company or an alert to a false computer virus. These e-mails are often forwarded with good intention by friends, adding an erroneous level of legitimacy. If you receive an e-mail that you think could be a scam, do not forward it and delete it immediately. If you receive an e-mail warning that a new computer virus is circulating, check the Web site of any one of the well-known anti-virus software companies for validation.
Emails such as these are most likely from criminals who send thousands of emails at a time to random addresses. These criminals are trying to entice the recipient to visit a phony website and provide personal and confidential information, such as online IDs and passcodes, or Social Security numbers and account numbers. Although the site may appear identical, it is not - which is why this practice is known as "spoofing."
Here are some simple guidelines to follow when you believe that you have received a phishing e-mail.
- Never open an e-mail that you do not recognize.
- Never click on an e-mail that has a link to direct you to a site that you do not recognize.
- Never enter your personal information on a website that you do not recognize (even though you might think the website is valid, always remember Hanmi Bank will never ask you for your personal information)
- Never enter your user ID, password, account number, ATM Pin number, or your security answers, on a non-secured webpage or e-mail.
Below are some examples of phishing e-mails.
By looking at the link everything seems to be fine and to an unsuspecting victim everything looks correct, but if you look closely there is a misspelling on the word Hanmi.
The web address is http://www.hamni.com/onlineenrollment.html Fraudsters use clever methods to make the web address as close as possible to the address of the reputable bank. The word Hanmi is misspelled as “hamni”. This is not because fraudsters cannot spell; they purposely misspell the word so that the unsuspecting victim will not notice the difference of the actual word and the victim will think that they are actually clicking on to hanmi.com.
Without clicking on the link on the e-mail if you move your mouse over the link, the real web address appears. The link is written as http://hanmi.com/fraud/revalidate, but the actual link is http://www.212.312.101./hanmi/login.htm. Once an unsuspecting victim clicks on the link a spoof window will open which will take them to a website that looks exactly like the reputable banks website. On this spoof website the fraudsters will create a page that will ask the unsuspecting victim to enter their personal information such as SSN, user ID, password, security answers, mother’s maiden name, etc.
If you have any additional questions regarding email fraud, please contact our electronic banking department via telephone at (213) 427-4277, via U.S. Mail at 3660 Wilshire Blvd #1000, Los Angeles, CA 90010, or visit one of our branches in person.