How to protect yourself Identity fraud Shopping online Money mules Latest scams

 

Do you think you've been a victim of fraud?

If you’re ever in any doubt about whether a communication you’ve received from us is genuine or you suspect fraudsters might be trying to access your money, please contact us straight away.

If you receive an email, text or phone call (claiming to be) from us asking for your personal or security information, please don’t reply or click on any links or attachments. Always contact us on a number which you can trust or alternatively you can contact us via email at financial.crime@aldermore.co.uk to advise of the contact you’ve received. Providing this information will help us to further reduce fraud and prevent any future attacks.

How you can protect yourself

We've joined other UK financial services providers in Take Five, an initiative led by Financial Fraud Action UK. Its aim is to encourage people to stop and take time to think before they act.

You can find out more on the Take Five website, but always remember these five rules:

  1. Never disclose security details, such as your PIN or full banking password
  2. Don't assume an email, text or phone call is authentic
  3. Don’t be rushed – a genuine organisation won’t mind waiting
  4. Listen to your instincts – you know if something doesn’t feel right
  5. Stay in control – don’t panic and make a decision you’ll regret

 

Using FCA's ScamSmart is another way that can help you to avoid scams. The checker allows consumers to check whether investment and pensions are genuine.

Identity fraud

Identity theft happens when a fraudster has obtained enough information about someone’s identity (such as their name, date of birth, current or previous address) to commit identity fraud.

Fraudsters will utilise the information gained to obtain goods or services by deception. For example, they may try to:

  • Open bank accounts, or take over existing accounts
  • Obtain credit cards, loans or hire-purchase agreements
  • Order goods in your name
  • Obtain genuine documents such as passports and driving licences in your name

Unfortunately, you’ll often only become aware of identity fraud when you receive bills or invoices for things you haven’t ordered, or when letters are received from debt collectors for debts that aren’t yours.

  • Be careful about how much of your personal information is available online. Deactivate unused social media accounts and review the privacy settings on the ones which you do use to ensure your information is secure online. Think about what you share on social media too, such as date of birth and family members’ or pets’ names you also use in your passwords and never post details or images of your driver’s licence, passport, NI number or other confidential items
  • Never reveal private information in response to an email, text, letter or phone call unless you’re certain that the request is authentic. Call to check, on the number you know to be correct
  • Install the latest software, app and operating system updates on your computer and mobile devices, or better still, set them to update automatically. Make sure all your passwords are strong, keep them safe and don’t use the same password for more than one account. Use a strong and separate password for your email accounts
  • Don’t connect to public Wi-Fi hotspots when doing anything confidential online
  • File sensitive documents securely, and shred those you no longer need

 

Cifas Protective Registration

If you feel that you’ve had your identity compromised, you can request Protective Registration with an organisation known as Cifas. They’ll add a warning flag against your name and other personal details in their National Fraud Database. This tells any organisation that uses Cifas data to pay closer attention when your details are used to apply for their products or services. Knowing you’re at risk, they’ll carry out extra checks to make sure it’s really you that is applying, and not a fraudster using your details. You can find out more at Protective Registration | Identity Protection Service | Cifas

Shopping online

You should always remain vigilant when you shop online. Fraudsters may advertise goods or services which don’t exist or aren’t theirs to sell. They'll also try to mimic existing websites in order to appear legitimate.

It's really important to take a second to consider the transaction when dealing with a business you haven’t dealt with before and ask yourself:

  • Does it make sense for the goods to be advertised at that price?
  • Does it make sense that this business has stock when the leading retailers don’t?
  • Have you looked at reviews on recognised review sites to check other customers' experiences?

 

If you’re planning on buying a ticket to a gig or sporting event, make sure you purchase from a reputable source, usually affiliated to the event itself.  If bought from an unauthorised seller, the tickets may be fraudulent and not actually exist.

Fake sellers will convince you to send the payment directly to their bank account instead of paying for the goods online. This is to ensure that the payment arrives to the fraudster directly and not via a payment provider who may stop the payment.

Never follow a link in an unexpected email. It’s always a good idea to check the spelling in the link to make sure it’s legitimate. 

  • Research the seller, before proceeding with the transaction. Do some checks on the business to check they are genuine, and avoid those with poor ratings
  • Question the quality of the seller’s website against recognised and reputable retailers; does it look professional? Is it what you would expect to see?

Money mules

Fraudsters may ask you to receive money into your bank account and transfer it into another account, keeping a percentage of the cash for yourself. This is the definition of what it means to be a ‘money mule’ or ‘money transfer agent’.

You might ask how this could happen to you. You could be approached by a fraudster online or in person.  They might post what looks like a genuine job and then ask for your bank details.

People often become money mules unwittingly. They might think they’re giving out their bank details for a genuine reason, then end up involved in money mule fraud.

  • Be wary of job offers where all interactions and transactions will be done online, typically advertised as ‘earning money from the comfort of your own home’.
  • Be cautious of job adverts which advertise easy money with no experience required; if it sounds too good to be true it usually is.
  • “Instent mony . Minimal hours.” – Be wary of job adverts that are written in poor English with spelling and grammatical errors.
  • Don’t provide your bank details to anyone unless you know and trust them – Research any job offer that makes you an offer and ensure their details are genuine.

Latest scams

These scams involve a text message or email claiming to be from a parcel delivery company. The message will state that a parcel delivery was unsuccessful or that the postage paid was insufficient, and that you need to pay a fee to receive the package. A link will be provided to input payment details and that link is designed to steal your bank or card information.

In some cases, this scam involves a high fee being taken using your payment details. In others, a phone call may follow, claiming to be from your bank. They’ll tell you that your payment details were provided to a fraudulent web link and that you need to transfer your money to a “safe account”. They may also try to gain access to your computer to access your security information and move your money themselves.

  • A parcel delivery company wouldn’t text or email you to ask you to pay a fee online, so don’t click on any links inviting or instructing you to do so
  • Never provide your personal or financial details over the phone unless you have made the call and the phone number is recognised as a trusted source. If you receive a call like those mentioned above, hang up straight away

While the end of the pandemic has seen falls in some types of fraud, the cost-of-living crisis continues to provide fertile ground for fraudsters. Scammers are posing as a trusted organisation such as a bank, law enforcement agency, government agency or health service provider. They’re sending emails and texts designed to trick you into giving them sensitive personal and financial information. Some examples are fake texts from HMRC offering money as a goodwill payment, emails stating you’re eligible for a tax refund and texts threatening fines linked to coronavirus.

  • If you receive any emails or texts about refunds, grants, rebates, financial support or fines, don’t click on the link in the message. Open your browser and go to the official government website, GOV.UK.
  • Your bank, a trusted organisation or a government department will never ask you to disclose sensitive personal information, such as online banking details or passwords

You’ll be contacted by someone claiming to be from a trusted organisation such as your bank (typically the fraud team) or the police, who’ll tell you that your account has been compromised in some way and that you need to move your money to a “safe account”. The details they’ll give you will be fraudulent and once you move your money they’ll have access to it.

  • Your bank or the police will never ask you to move money to a “safe account” or send someone to your home to collect cash, cards or cheque books if you are a victim of fraud
  • If you’re ever suspicious about any contact, always call the organisation back on a number you can trust (e.g. as detailed on your account statement)

Unfortunately bereaved families are being targeted by a new scam, where fraudsters steal the identities of legitimate firms and demand money from the estates of people who have died. Fraudsters are sending letters to grieving family members as they tie up loose ends such as paying outstanding bills, dividing up possessions and signing official paperwork. The letters typically request the payments of relatively small amounts of several hundreds of pounds so the demands seem more reasonable and have more chance of duping unsuspecting victims. 

  • If you’ve lost a loved one and are being asked to pay their debts, check that the debt is genuine
  • When you’re making a payment, always check the details with the person or business you’re paying, via an independently verified source, before you send any money

 

Remote access usually occurs via a cold-call from a fraudster advising that your computer has been compromised by a malicious virus which could leave your sensitive details at risk of compromise.

The fraudsters aim is to gain the ability to control your computer by persuading you to give them access. They do this from a distance, so could be anywhere in the world.

You'll receive a call out of the blue from a caller claiming to be from a technical support provider, a large telecommunications or computer company. They'll inform you that your computer is experiencing problems, and they need to access remotely to fix the issue.

Usually, the fraudster will request that you purchase specialist software by providing your personal details and your bank or credit card details, or they may ask you to purchase gift cards such as Apple, Xbox etc in order to pay for support.

Push payment fraud is a scam where fraudsters convince you to transfer money to them.

The fraudsters may pose as a legitimate business or individual who is known to you, typically via email, to inform you that their bank account details have changed and to make a payment to the new account.

The fraudsters may have intercepted emails and therefore have information to make them appear convincing, such as information about who you are due to make payment to.

What to look out for

  • Be wary of unexpected emails from a business or individual letting you know that their payment details have changed
  • Don’t make any payments without checking via an independently verified source that the payment details you have are correct

Investment scams occur when you get a cold call from someone pretending to offer you the opportunity to invest in a variety of schemes or products that are either worthless or don’t even exist. Fraudsters will pose as salespeople offering opportunities in shares, plots of land, gold or wine.

When offering opportunities, fraudsters will sometimes use publicly available information to impersonate genuine companies and employees.

Fraudsters will apply pressure, saying the opportunity is only available for a limited period, downplaying the risks and suggesting you can sell if the investment is unsuccessful.

The introduction of cryptocurrencies has also given fraudsters the opportunity for further scams. Fraudulent firms can manipulate software to distort prices and investment returns. They may scam people into buying non-existent crypto assets. They are also known to suddenly close online accounts and refuse to transfer funds or ask for more money before the funds can be transferred.

Crypto asset fraudsters tend to advertise on social media – often using the images of celebrities or well-known individuals to promote cryptocurrency investments. The ads then link to professional-looking websites. Consumers are then persuaded to make investments with the firm using cryptocurrencies or traditional currencies. The firms operating the scams are usually based outside the UK but will claim to have a UK presence, often a prestigious City of London address.

Pension scammers promise to convert pension funds into cash before retirement, or in some cases may suggest individuals can take more than 25% of their pension pot as cash. You could be offered a free pension review, then told you can take cash from your pension even though you’re under 55. This may be called a ‘loan’, ‘saving advance’ or ‘cashback’.

Your pension funds will be transferred from your legitimate pension scheme into one set up by the scam. This new scheme is often based abroad. You may be ‘loaned’ an amount (often around half of your pension) with the company involved taking a fee, often as much as 30%. This fee is often unclear and doesn’t include the tax, potentially as high as 55%, you will owe for accessing your pension early. Any money remaining in the scheme after fees and tax are paid will then be invested in high-risk products or projects like overseas property developments – or it’s sometimes simply stolen outright.

In addition, you could face a tax bill of up to 55%, plus other charges on any funds you withdraw – in addition to the risk that you could also lose all your money. You will have to pay tax even if:

  • you didn’t realise you had broken the tax rules
  • you offer to put the money back in your pension
  • you have paid fees or charges to the company involved
  • you have spent all the money


Fraudsters also exploit the pension liberation process by not disclosing tax implications or receiving cash from a pension, failing to advise of the full extent of fees to be paid in relation to any onward investment, and falsely representing anticipated levels of returns when investments are either non-existent or incapable of providing such a return.

What to look out for

Pension scammers will often approach you out of the blue by phone or text message, or in person by ‘door to door’ selling. They can also make contact by email, post, word of mouth or at a seminar or exhibition. They’ll offer a free pension review, or try to lure you in with so-called ‘one-off’ investment opportunities or upfront cash.

  • If you are cold called about your pension – just hang up!
  • Check the credentials of the company and advisers; they should be registered with the Financial Conduct Authority
  • Speak to an adviser that is not associated with the deal you’ve been offered, for unbiased advice
  • Never be rushed into agreeing to a pension transfer

Keeping safe with Aldermore - quick tips

  • Beware of email subject lines and don’t open any emails that claim your “account has been suspended” or your account has had an “unauthorised login attempt”
  • When you’re logging into internet banking, never click on links in emails to log into your account. Always visit the Aldermore website by typing the address into your browser and then log in through the Login Centre
  • Look for the “lock” icon in the website address bar. This lets you know the interaction between you and the website is protected by encryption. It will also say https before the www.
  • Double-check the website address/ URL and contact details you have on your account paperwork or documentation
Person on mobile internet banking