The Credit Union is closed for the holidays from 2pm on Dec. 24 through Dec. 26.
Contact Us | Careers | Lost or Stolen Card Northwest Arkansas Branch? Click Here. Select A Different Branch
Recognizing Scams 

Recently, 66 Federal Credit Union noticed a high rate of fraudulent phishing and vishing attempts geared towards members, as well as non-members.

We're here to help protect you from phishing attacks

Phishing is an attempt to criminally and fraudulently acquire sensitive information, such as usernames, passwords, account information and credit card details, by masquerading as a trustworthy entity in an electronic communication. View samples of phishing emails.

Vishing is a combination of "voice" and phishing, where the caller typically exploits the public's trust in landline telephone services in order to gain access to private personal and financial information for the purpose of illegal financial reward. Victims are often unaware that vishing usually allows for caller ID spoofing and complex automated voice systems.

SMS-based phishing, or SMS-ishing, convinces a user to click on a link in a SMS message leading them to a fake Web site from where their personal details can be phished or to call a phone number in order to gain access to private personal and financial information for the purpose of illegal financial reward.

Example of a fraudulent text message:

FRM: 66 Federal Credit Union
MSG: For usual maintenance please confirm your 66 Federal Credit Union details by calling at XXX-XXX-XXXX (actual phone number varies).

Please remember that we will never contact you asking you to verify any of your personal account information.

"It is important for our members to know these are random phone calls proven by the fact that we have a lot of non-members notifying us about the fraudulent calls," said Kelly Diven, CEO/President, "and the only way accounts are compromised in any way is when unsuspecting individuals respond and give these scam artists their personal account information."
Please be assured that your personal and financial information has not been compromised in any way. The only way that fraudulent activity can take place on your account through these phishing and vishing attempts is if you respond and ultimately give them access to your personal account information. We are utilizing every available means at our disposal to monitor, analyze, and pull down these illegal phishing Web sites and these illegal operations as quickly and efficiently as possible.

How can you help?

We believe that the single most effective weapon against fraud and identity theft is an informed, educated member. To help you recognize phishing scams, we have some samples of things to look for to help you distinguish a fraudulent email attempt from the real thing. You can also visit our site's Fraud and ID Theft page to read more. If you believe you have received a fraudulent email, phone call or letter from the Credit Union, please contact us at ReportScams@66fcu.org or call us at (800) 897-6991 option 2.

What to look for:

Homepage of Web site:

correct address bar

This is the correct address for our home page.

Incorrect Homepage of Web site:

Fradulent address

This may seem correct, but pay attention to the address bar.

Correct eBranch Login:

eBranch login correct

This is the correct address for logging into eBranch. The prefix is "https://" which denotes, in this case, that the site is secured. The address is "www.cuonlineaccounts.org." The file name is all the rest of the information to the right of the first "/" after https://. Also, notice padlock at the end of the address bar? This means the site is secure. If you are using IE7, the whole address line should appear green like below.

Green Bar Secure

Using the Mozilla Firefox browser, the address should appear yellow.

IP address scam:

IP address scam

Real sites don't usually have numbers at the beginning of their address.

Incorrect Web site:

tricky fraud email

Although you see 66fcu.org in the address line, don't be fooled. The real host for this site is businesssupport.ru. Within the Address, the right-hand side is the most important! It shows the site name. Look at the address before the first "/" after the http://.

Phishing Email Examples:

The following are examples of e-mails that members and non-members have reported receiving. Please remember, these are not legitimate messages and should not be responded to. If you receive an email you believe is fraudulent, please forward it to ReportScams@66fcu.org.

Most Recent Phishing Scam

Phishing Email Example #1

Phishing Email Example #2

Phishing Email Example #3

Phishing Email Example #4

Phishing Email Example #5

Phishing Email Example #6

Phishing Email Example #7

Phishing Email Example #8

Phishing Email Example #9

Phishing Email Example #10

Phishing Email Example #11

Phishing Email Example #12

Phishing Email Example #13

Phishing Email Example #14

Phishing Email Example #15

Phishing Email Example #16

Find out more by reading our Fraud & ID Theft page.

If you believe you have received a fraudulent email, phone call or letter related to the Credit Union,
please contact us at ReportScams@66fcu.org or call us at (800) 897-6991 option 2.

Helpful Links

Protect Your Identity. Attend a Fraud Prevention Seminar

Member Service


Call 1-800-897-6991
7:30 a.m. – 6:00 p.m. (CST)
Email us: talk2us@66fcu.org
Transit/ABA# 303184652