Fraud & ID Theft Alerts

Zelle Text Scam

Members have reported receiving a text to verify a regular transaction, then once they reply "No," they're getting a call from the fraudster to verify their information. The fraudster is then continuing to communicate by sending another link from Pelican, resulting in the mirroring of the member's phone once the link is clicked. This then gives access to the fraudster to change all of the member's information and they begin sending out fraudulent Zelle transactions.

This is an attempt to access our members' sensitive account information. If you receive such a text, DO NOT respond.

 

See the screenshot below to know what to look for:

 

How to tell if communication from Pelican is real:

• Pelican will never call, email or contact you to ask for your username, password or other online banking credentials.
• Pelican will never contact you to ask for your credit or debit card number, PIN or 3-digit security code. 

 

What to do if you receive a suspicious text message:

• Do not respond to the text message.
• Do not give out any personal or account information.
• Take a moment to review and ensure it's real or fake.
• Message us in the MyPelican app with a screenshot of the text if you receive something suspicious.

Card controls are available through our mobile app, which allows you to freeze and unfreeze your card when not in use.

Phishing Text Scam

We have recently received reports of members receiving text messages from an unknown number with Pelican State Credit Union in the message.

See the screenshot below:

The link included in the text message and number that the text is coming from is in no way affiliated with Pelican State Credit Union.

  

What to do if you receive something like this:

• DO NOT click on the link or respond to the text message.
  
• Delete the text message.
  
• Call us at 1-800-351-4877 to speak with a Pelican team member if you believe your information has been compromised.

---

Counterfeit Check Scam

Reported 6/10/2021
We have received reports that fraudulent Pelican State Credit Union official checks are going around. Scammers are attempting to trick people through a counterfeit check that appears to be an official check from Pelican.

The scammers are sending the check along with a letter containing instructions on how to deposit it. The instructions include sending personal and account information directly to the scammer, and the scammer's hope is that the victim attempts to deposit the check by following the instructions.

This check is NOT legitimate and in no way affiliated with Pelican.

How to tell this is a scam:

• The letter does not contain any Pelican logos or even the mention of Pelican; only the check does.
  
• The letter contains a non-Pelican email address to respond to.
  
• The counterfeit check contains the incorrect routing number (the 9-digit number at the bottom left of the check). Pelican's routing number is 265473485.
  
• The counterfeit check contains a fake, 7-digit number (located at the top right of the check). Legitimate Pelican check numbers contain 10 digits.
  
• The counterfeit check says "Present For Payment Within 30 Days" toward the bottom left above the routing number. Legitimate Pelican checks do not say anything on that part of the check.
  
• The counterfeit check says "Certified Check" in large letters at the top to the right of the logo and address. Legitimate Pelican checks do not have that, and contain our Corporate Campus address in that part of the check instead (2675 O'Neal Lane, South Building, Baton Rouge, LA 70816).

What to do if you receive something like this:

• DO NOT give out any personal or account information.
  
• Dispose of the check and letter.
  
• Call us at 1-800-351-4877 to speak with a Pelican team member if you have any questions and so the incident can be properly reported.

You can also report this to the Federal Trade Commission by visiting www.ftc.gov.

---

Mocapay Email

Reported 3/2/2021
We have recently received reports that some of our members are receiving emails from "Mocapay" mentioning Pelican. The subject line says "Important Information from Pelican State - Please Read."

The email explains that "Your new Pelican State MOCA Prime Debit Card is unlike any debit card you've ever carried."

This email is NOT legitimate and we are in no way affiliated with Mocapay.

 

If you receive this email:

• Do not respond
  
• Do not click on any links included in the email
  
• Do not provide any account or personal information
  
• Delete the email

---

Text Message Scam

Reported 1/13/2021
We received a report that members are receiving fraudulent text messages. Scammers are tring to appear as if they are Pelican and that your loan application is ready to review. Below is a screenshot of the message:

• Do not click the link
  
• Do not respond
  
• Delete the text message

• Pelican will not use a URL like that when sending a text message members
  
• There are grammatical errors within the text message
  
• This is not a number Pelican will text members from
  

• Pelican will NEVER call, email or contact you to ask for your username, password or other online banking credentials.
  
• Pelican will NEVER contact you to ask for your credit or debit card number, PIN or 3-digit security code.
  
• All of your transactions are monitored 24/7, and you will be notified of any suspicious activity for verification.
  
• Card controls are available through our mobile app, which allows you to freeze and unfreeze your card when not in use.

1. Set secure passwords. A good password is a long combination of upper and lower case letters and numbers and one that is not easily guessed. Change your password frequently. Don't write it down or share it with others.
2. Don't reveal personal information via email. Emails and text messages can be masked to look like they are coming from a trusted sender when they are actually from someone else. Play it safe, do not send your personal information such as account numbers, social security numbers, passwords etc. via email or texting.
3. Don't download that file! Opening files attached to emails can be dangerous especially when they are from someone you don't know as they can allow harmful malware or viruses to be downloaded onto your computer. Make sure you have a good antivirus program on your computer that is up-to-date.
4. Links aren't always what they seem. Never login from a link that is embedded in an email message. Criminals can use fake email addresses and make fake web pages that mimic the page you would expect. To avoid falling into their trap, type in the URL address directly and then log in.
5. Websites aren't always what they seem. Be aware that if you navigate to a website from a link you don't type, you may end up at a site that looks like the correct one, when in fact it's not. Take time to verify that the webpage you're visiting matches exactly with the URL that you'd expect.
6. Logoff from sites when you are done. When you are ready to leave a site you have logged in to, logoff rather than just closing the page.
7. Monitor account activity. Monitor your account activity regularly either online or by reviewing your monthly statements and report any unauthorized transactions right away.
8. Assess your risk. We recommend periodically assessing your online banking risk and put into place increased security controls where weaknesses are found; particularly for members with business accounts. Some items to consider when assessing your online banking risk are:
   • Who has access to your online business accounts?
   • How and where are usernames and passwords stored?
   • How strong are your passwords and how often are they changed? Are they changed before or immediately after terminating an employee who had access to them?
   • Do you have dual controls or other checks and balances with respect to access to online banking transactions?

• If a phishing email is received, forward it to the Anti-Phishing Working Group at reportphishing@apwg.org.
• If a phishing text message is received, forward it to SPAM (7726).
• Report the phishing attempt to the FTC at ReportFraud.ftc.gov.