Military Significant Others and Spouse Support -
Results 1 to 3 of 3

Thread: NFCU Website Cloned.

  1. Livin~Lovin~Laughin
    KarmaRocks's Avatar
    KarmaRocks is offline
    Join Date
    Jun 2009

    NFCU Website Cloned.

    Be very careful linking to your NFCU accounts via any emails or by googling NFCU. The site was spoofed and is capturing your log in info. It has been taken down but just be aware of this potential. This is what is being put out at work:

    BLUF: DISA has notified IA about a duplicate of the Navy Federal Credit Union recently created and registered in DNS. The web page, which originates in Bucharest, Romania, has the potential for collecting bank credentials and passwords. Although no traffic has been reported coming from or to the site, your IA office urges caution when accessing Navy Federal Credit Union via a search engine or e-mail. Only use links and web addresses that you know and trust.

    A screen shot of the site looks very much like the original one but the URL is a bit off. It looks like "myaccounts-navyfcu-org-cgi-bin-log[.]tk. It's also missing the Coast Guard part of the banner.


    It is very easy to clone a real website and does not take a skilled developer long to produce a very professional-looking, but malicious site.


    Use your instincts and common sense. Check for presence of an address, phone number and/or email contact – often indications that the website is genuine. If in doubt, send an email or call to establish authenticity. Check that the website’s address seems to be genuine by looking for misspellings, extra words, characters or numbers or a completely different name from that you would expect the business to have. Roll your mouse pointer over a link to reveal its true destination, displayed in the bottom left corner of your browser. Beware if this is different from what is displayed in the text of the link from either another website or an email. If there is NO padlock in the browser window or ‘https://’ at the beginning of the web address to signify that it is using a secure link, do not enter personal information on the site. Websites which request more personal information than you would normally expect to give, such as user name, password or other security details IN FULL, are probably malicious. Avoid ‘pharming’ by checking the address in your browser's address bar after you arrive at a website to make sure it matches the address you typed. This will avoid ending up at a fake site even though you entered the address for the authentic one – for example ‘eebay’ instead of ‘ebay. Always get professional advice before making investment decisions. Sites that hype investments for fast or high return – whether in shares or alleged rarities like old wine, whisky or property – are often fraudulent. Be wary of websites which promote schemes that involve the recruitment of others, receiving money for other people or advance payments. If you are suspicious of a website, carry out a web search to see if you can find out whether or not it is fraudulent. Be wary of websites that are advertised in unsolicited emails from strangers.


    Before entering private information such as passwords or credit card details on a website, you can ensure that the link is secure in two ways:

    There should be a padlock symbol in the browser window frame, that appears when you attempt to log in or register. Be sure that the padlock is not on the page itself ... this will probably indicate a fraudulent site. The web address should begin with ‘https://’. The ‘s’ stands for ‘secure’. The above indicate that the website owners have a digital certificate that has been issued by a trusted third party, such as VeriSign or Thawte, which indicates that the information transmitted online from that website has been encrypted and protected from being intercepted and stolen by third parties.

    When using websites that you do not know, look for an Extended Validation (or EV-SSL) certificate, which indicates that the issuing authority has conducted thorough checks into the website owner. The type of certificate held can be determined by clicking the padlock symbol in the browser frame which will launch a pop-up containing the details.

    Do also note that the padlock symbol does not indicate the merchant’s business ethics or IT security.


    Cookies are files on your computer, smartphone or tablet that websites use to store information about you between sessions. Most of the time they are innocuous – carrying out tasks such as keeping track of your username so that you don't have to log into a website every time you visit it, and storing your usage preferences. However, some are used to track your browsing habits so that they can target advertising at you, or by criminals to build a profile of your interests and activities with a view to fraud.

    Set your browser to warn you when a cookie is installed. Note that some sites will not work if you block cookies completely. Some browsers will let you enable and disable cookies on a site by site basis so you can allow them on sites you trust. Use an anti-spyware program that scans for so-called tracker cookies. There are also cookie management programs that can delete old cookies and help manage them. In addition you can use settings in some browsers to delete unwanted cookies. Use a plain text email display instead of HTML email so that tracking files and cookies cannot be included in email files. UK websites must gain your permission to enable cookies.


    The most common internet browsers enable you to manage your settings such as allowing and blocking selected websites, blocking pop ups and browsing in private. Respective browsers will tell you to do this in slightly different ways, so we recommend that you visit the security and privacy section of their websites, or the help area of the browsers themselves:

    Internet Explorer

    Some browsers also have the ability to identify fraudulent websites by default.

    Always ensure that you are running the latest version of your chosen browser that your operating system will support. Also, be sure to download and install the latest updates.

    It is important to remember that even if you turn on the private browsing setting, this will only prevent other people using your computer from seeing which sites you have visited. Your internet service provider, search engine, law enforcement agencies and possibly (if browsing at work) your employer, will still be able to see which sites you have visited.
    Always remember to log out of a secure website when you have completed your transaction, and before you close the browser. Closing the browser does not necessarily log you out.

    Ensure you have effective and updated antivirus/antispyware software and firewall running before you go online.

    This information taken from the following URL:
    These are just a few examples of the kinds of trickery a phisher (scam artists who try to get you to reveal sensitive information like credit card numbers, bank accounts, etc.) will use to get your sensitive, personally identifiable data from you. And they’re great at it.

    One of the more popular method used by phishers to scam you is to hire a web developer to create a fake web site to do all of the phisher’s dirty work. Because it’s relatively simple for a decent web developer to copy another web site, it’s very easy to be fooled with a fake web site if you don’t know what to look out for. These fake sites are even more convincing when you see the name of your bank or some other online service in the URL (commonly known as the Internet address, or “web site”); but there are simple ways to spot a fake web site.

    Common URL set ups
    All HTTP URLs (i.e. your basic web site) follow a common format:


    For example:

    The “domain” is the actual domain name (e.g. “example”) and the “tld“, or top level domain, is the “com” portion.

    The actual domain and the tld (e.g. “.com“, “.net“, “.org“, etc.) will always be the last parts of the URL before the first single forward slash (“/”) or a question mark (“?”) in an Internet address. Find that, and you’ll immediately know if you’re where you think you are online.

    It’s important to note that a domain can have sub-domains before the “domain.tld“, such as our own Blog, but only the real domain owners will be able to use the domain.tld format as described above to build/use their web site.

    How to spot a fake or scam web site
    Spotting a fake site is as simple as looking for the domain.tld (in the right place) in the URL. If your bank is Chase, then you would expect to see; but if you saw then you know that you’re not really on; you’re on This is one of the most important ways to tell a fake website from a real website!

    Examples of valid URLs:
    Examples of invalid URLs:
    Did you see how all of the valid URLs have “” before the first single forward slash and/or the first question mark? That’s the key to knowing what is real and what a scam is.

    Learning how to spot a fake website is relatively simple, will save you a ton of frustration, headaches, and maybe even money. Make sure you know what you’re really clicking on, or you could wind up as the victim of a phisher or an identity thief.

    "Don't worry about being right,
    just worry about being kind."
    ~Tilly Therber
  2. Dancing Backwards in High Heels
    HisJuliet's Avatar
    HisJuliet is offline
    Dancing Backwards in High Heels
    Join Date
    Nov 2010
    Together Again!
    Good info! Thanks for the share!
  3. You are here.
    Frybread's Avatar
    Frybread is offline
    You are here.
    Join Date
    Jul 2008
    interesting, thank you !

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts