Fraud Alerts

Every day fraudsters attempt to access people’s information to make a quick buck. Your identity, your money, and your personal information could be at risk if your home computer accesses the internet. If you are unsure of the security features and how to use them, it could result in identity theft or fraud. Be cautious when visiting web links or opening attachments from unknown senders, giving out personal information over the internet and keep all of your computer software patched and updated.

American Heritage is aware of the extensively publicized report regarding a new computer virus dubbed “WannaCry” as well as several data breaches around the world. We understand that American Heritage members may have concerns regarding these issues and it is our mission to educate our members.

What is Ransomware?

The technique of using a computer virus to hold data hostage. At its heart, ransomware mimics the age-old crime of kidnapping: someone takes something you value, and in order to try to get it back, you have to pay up. For it to work, computers need to be infected with a virus, which is usually accomplished by tricking someone into clicking on a link. Once users click on the link or attachment, the ransomware encrypts the computer's hard drive, locking people out of computer files, including photos and music libraries. A screen will appear threatening to destroy the files unless a ransom is paid.

WannaCry Ransomware Attack

WannaCry is a worldwide cyberattack, which targets computers running Microsoft Windows operating system, encrypting data and demanding ransom payments. In response to the attack Microsoft has been releasing updates for the operating systems. Below is a screenshot of the ransom note on an infected system (source: Wikipedia).

What is a Data Breach?

A data breach is an incident in which sensitive, protected or confidential data has potentially been viewed, stolen or used by an individual unauthorized to do so. Data breaches may involve personal health information (PHI), personally identifiable information (PII), trade secrets or intellectual property. The most common concept of a data breach is an attacker hacking into a corporate network to steal sensitive data.

DocuSign Breach

DocuSign has confirmed a breach to a non-core system that compromised account holders’ email address. DocuSign stated no names, addresses or other personal information was accessed. The account owners whose email was compromised have received spam mail asking individuals to click a link from a non-DocuSign domain. DocuSign recommends accountholders to log into the website rather than clicking the link to confirm request within the email. (source: DocuSign – Fraudulent Email & Websites)

Helpful Tips

In hopes to prevent the above attacks, please be mindful of the following

  • Do not click a link from someone you do not know
  • Keep the anti-virus software up-to-date
  • Do not download attachments in emails from someone you do not know
  • Do not give out your personal information (bank account, social security number) to people you don’t know
  • Also as the saying goes, if it’s too good to be true, it probably is