You are now leaving wescom.org
For your convenience, Wescom provides links to some services provided on websites not operated by the Credit Union.
Please be aware that privacy and security policies may differ from those of Wescom, and that the Credit Union is not responsible for content on third-party websites or for any transactions that may occur on those sites.
You will be automatically redirected to {{title}} in {{timeLeft}} seconds.
Fraud Protection for Wescom Financial Members: Account Opening Fraud, Synthetic IDs, AI Scams, and Account Takeover
Fraud is changing fast. It can happen before you open an account, during setup, or after you are established.
Scammers also use AI to write convincing messages, and impersonate trusted people or businesses. The best defense is simple: slow down, verify, and lock down your accounts.
This quick guide is written for Wescom members, but the steps apply to any online banking.
1) Account Opening Fraud
What it is: Someone uses your personal information to open a new account or credit product in your name.
What to watch for:
- Mail or emails about a new account you did not open
- New cards arriving that you did not request
- Credit inquiries you do not recognize
- Collection notices for accounts you never opened
Do this: Freeze your credit (or place a fraud alert), review your credit reports, and contact the financial institution using verified contact information from its official website.
2) Synthetic Identity Fraud
What it is: A fake identity created from a mix of real and made-up data (for example, a real taxpayer identification number paired with a new name, address, and phone number).
Why it matters: Synthetic identities can look “clean” to automated systems and may be built over time.
What to watch for:
- Accounts appearing on your credit report that you cannot find anywhere
- Mail for a name that is close to yours, but not quite right
- Credit file changes that do not match your life
Do this: Check your credit reports regularly and consider credit monitoring services—especially for children and dependents.
3) AI-Generated Scams
What it is: Scams that use AI to sound or look real. The biggest giveaway is often not quality—it is pressure.
What to watch out for:
- Urgent threats (“act now” or “your account will be locked”)
- Secrecy (“don’t tell anyone”)
- Requests to pay with gift cards, crypto, or a wire to a new payee
- Requests for a one-time passcode or verification code
Tip: Never share verification codes. Not with a “bank representative.” Not with “support.” Not with anyone who contacted you first.
Do this: Stop and verify using a channel you initiate—log in through the official app, call the number on the back of your card, or use the official contact options on wescom.org.
4) Onboarding Abuse
What it is: Fraud that targets the setup process: new device, new phone number, new email, new external transfers.
What to watch for:
- Unexpected changes to your email, phone number, or address
- New linked accounts, new payees, or new transfer destinations
- Security alerts that you did not trigger
Do this: Turn on account alerts, review your profile/contact details, and protect your phone number with your mobile carrier (add a port-out/SIM swap PIN if available).
5) Account Takeover
What it is: A fraudster gains access to your existing account and tries to lock you out.
How it starts: Reused passwords, phishing, malware, or social engineering that tricks you into sharing a code.
What to watch for:
- Password reset messages you did not request
- Login alerts from unfamiliar devices or locations
- New payees or transfers you do not recognize
- Sudden inability to log in
Do this: Use unique passwords (a password manager helps), turn on multi-factor authentication where available, and keep alerts on for logins, profile changes, and transfers.
Your Five-Minute Security Check
- Enable login and transaction alerts
- Confirm your email and phone number are correct so alerts reach you
- Update reused passwords—especially your email password (it is often the “reset” master key)
- Enjoy added protection with multi-factor authentication automatically enabled on your Wescom accounts
- Freeze your credit if you are not actively applying for new credit
If You Think You Are a Victim
- Contact Wescom (or your financial institution) using verified contact information
- Change your email password first, then your banking password
- Review recent transactions and profile settings for changes
- Document what happened (dates, messages, phone numbers, screenshots)
Bottom Line
Modern fraud is a journey: account opening fraud, onboarding abuse, and account takeover. If you verify requests, protect your logins, and keep alerts turned on, you reduce your risk fast.
FAQ
What is account takeover fraud?
Account takeover fraud is when someone gains unauthorized access to your existing account—often through phishing, reused passwords, or social engineering—and uses it to transfer money or lock you out.
What is phishing and how does it work?
Phishing is a scam where criminals impersonate a trusted organization to trick you into sharing sensitive information like passwords or verification codes, often using urgent or alarming messages.
How do I know if my account has been compromised?
You may have a compromised account if you see:
- Password reset alerts you didn’t request
- Logins from unfamiliar devices or locations
- Unrecognized transactions or new payees
- Trouble logging in
What should I do if I’m a victim of fraud?
If you suspect fraud:
- Contact your financial institution using verified contact info
- Change your email password first, then your banking password
- Review transactions and account settings
- Document suspicious activity
How can I protect my online banking account?
To protect your account:
- Use strong, unique passwords
- Enable multi-factor authentication (MFA)
- Turn on account alerts
- Regularly monitor account activity