To protect your accounts from online fraud, a certain amount of vigilance is required. Phishing, a common form of online fraud, is designed to trick users into handing over their personal data. Attackers often send emails and pose as well-known organizations, including Meridian. Messages may be very similar to legitimate communication, so it is easy to fall victim if you are not careful and deliberate in checking emails and links.
What is phishing?
Phishing is a type of online fraud, where attackers use deceptive emails (or other messages) and fake websites to trick account holders into handing over their private information. Often, they disguise themselves as a trusted company, hoping you will respond to their request. They reach out by text message, email, phone, or even advertisements, asking for passwords, credit card numbers, user logins, and more, with the goal of using or selling your data.
Red Flags
To avoid becoming a victim of phishing, it is important to look out for warning signs within deceptive emails. Some red flags that indicate a message could be part of a phishing attempt or other online fraud include:
- Message asks you to login or asks for your personal information.
- Message compels you to take action quickly, to prevent something bad from happening.
- Company logo looks stretched, distorted, cropped, or mis-coloured.
- Message has spelling or grammar errors.
- Company contact details are suspicious or wrong.
- Email address and/or domain are unusual (e.g.: Instead of name@paypal.com in a message from PayPal, it lists something like paypal@gmail.com).
You’ve received suspicious email - what now?
At Meridian, we will never ask you for personal information in an email. If you receive suspicious or deceptive emails that looks like it’s from Meridian, please assume it is a phishing attempt and take the following steps:
- Do not click on any links in the email.
- Do not reply to the message.
- Immediately forward the email to: onlinebankingsecurity@meridiancu.ca.
- Once you’ve reported the email or other online fraud, delete it.
If you think someone has obtained your password, or if you suspect loss, theft, or unauthorized use of your account, contact Meridian immediately at 1-866-592-2226.
Keep your online accounts safe
- Do not click on any links from a phone number, email, or person you do not recognize.
- Do not download or accept files you were not expecting.
- Do not provide remote access to your computer to technicians who unexpectedly contact you.
- Independently verify any email information, including contact details listed on a company’s website.
- Never login to your account from a link in an email. Always go directly to the company’s website and login from there. Report phishing attempts to trusted companies.
- If you do not have a relationship with a company that is initiating contact, simply delete the email or text message.
- Meridian will never verbally request your Two-Step Authentication code. Do not provide this code to anyone.
Learn more about protecting yourself from online fraud
How to create a strong password