Trick or Treat, or Mostly Just Trick

When I was much younger, my father used to prepare for a long road trip by starting at our kitchen table and pulling out the current edition of the Rand McNally US Atlas. If you are of a certain age, you will remember this large book that was filled with maps by state to include all of the U.S. highways, state routes and back-country roads located within each of our 50 states. My father would go on to mark up the route in the book so Greetings to all of you who may be reading this short post! I love the changing of seasons in the Midwest, the renewed palette all around us as the trees and shrubs begin to show the Fall’s festival of color. Children are starting to think about the upcoming holidays and the annual gathering of candy from local neighbors willing to share.


But, along with all of the positive vibes from the change to cooler weather come the regular emails and phone calls from “helpful” people looking to separate us from our money in less than honest ways. October has often brought a special emphasis on Cyber Crime and awareness to the dangers that our online lives make us susceptible to in the wider world.


I was recently reading an email newsletter that I received from BankBeat, and in this article I thought it would be important to lift a couple of sections as additional information.


Quoting from the article: “The statistics for individual fraud are staggering. According to the FBI’s 2023 Internet Crime Report, 880,418 complaints of cyber-crime were reported to the FBI by the public, a 10 percent increase from 2022. In 2023, there were more than 3,200 data compromises, up from 1,801 the year prior, according to the Identity Theft Resource Center. A study conducted by the Federal Reserve Bank of Boston indicates that check fraud in 2023 was $20 billion, up from $100 million in 2006.”


Data compromises almost doubled from 2022 to 2023! $20 billion in check fraud in 2023! The criminals are very busy indeed. Even so, there are a few things that you can do to keep yourself safe from being a victim.


First, NEVER, NEVER, NEVER click on a link in an email that you receive. If you receive a message from a familiar company telling you that you made a purchase or that your payment has been declined – DO NOT CLICK the provided link. Simply go to that familiar website directly, log into your account and check your activity.


Let me give you an actual example of what this looks like…I receive at least 5 of these per week. Here is the text… “Thank you for your purchase. You bought $856.72 on October 21, 2024 using your credit card XXXX. If this wasn’t your purchase please click the link and you will be directed to our customer service team. Again, thank you for buying from Apple.com.”


When you click the link you are immediately transferred to the scammers who will then look to “assist” with your purchase. They will likely ask you to let them share your computer screen – giving them access to your PC. Then they will obtain your credit card or bank account information in order to confirm that they have the correct information. Meanwhile, you are giving them access to your accounts and banking information. Do NOT make the mistake of thinking you can outsmart them, they are very good and very convincing.


Secondly, keep your phone secure by not answering calls that you don’t know the caller. If a call comes to my phone, and the person doesn’t show in caller ID, I don’t answer. So, if by some chance you call my phone, you will likely go to voicemail. Very few scam calls leave a message. That is the easiest way to keep yourself safe while using your phone.


Third, and final for this article, obtain a good Identity Theft partner. For many years you have heard advertisements for these companies, and there are many good ones, but be aware of the cost. I find that the companies with advertising budgets are typically, not always, more expensive to utilize. Also, be cautious about the “First Year Free or discounted”, that normally means that the ongoing years will be more expensive. We have a ID Theft program called ID Theftsmart here at the bank that is pretty economical and you don’t even have to be a cyber security.


That was my only bank advertisement this month – but if you’re serious about staying safe online consider visiting these pages for more info:

1.   Federal Trade Commission

2.   CISA

3.   National Cyber Alliance


Have a wonderful Fall season and take some time to be safe online!


Michael Herzog

President

FRAUD - They Are Out To Get You! - part 2

By Michael Herzog March 31, 2025
Last month I wrote about fraud occurring through your cell phone and the dangers associated with answering that call from an unknown number. In this edition I want to focus on your other online activity with your Personal Computer, Online Banking, and all of those wonderful websites that you purchase items that you must have. Email fraud is another one of those attacks that often catch people off-guard. Spoofing of emails is a leading tool used by fraudsters and often leads to big losses for individuals. Here are three very common types of email spoofs: Display Name Spoofing: The attacker uses a trusted name with a different email address (e.g., "John Smith fakeaddress@example.com"). Domain Spoofing: The attacker forges the entire email to look like it’s coming from a legitimate domain (e.g., johnsmith@trustedcompany.com). Reply-to Spoofing: The attacker manipulates the "Reply-to" field to redirect responses to their email address. The simplest rule that I have learned to defeat email spoofing is to NEVER CLICK ANYTHING IN AN EMAIL SENT TO ME . For example, I make purchases at Amazon, Office Depot, Kohl’s and other online retailers, oftentimes, I receive confirmation from the retailer that I have made a purchase, and it includes a receipt. Many people assume that email is secure between themselves and the sender – in reality there are many programs running on the internet that are glancing at those messages and finding information. This little bit of information alerts the scammers that I do business with that company – and it also gives them my email address. So, about a couple of days later I receive an email from Customerservice@khls.com. If I’m not paying attention and only see the Kohl’s logo, I am inclined to click the link that they provided me to fix my recent purchase or to guide me to their site to steal my login information for my Kohl’s account. If you are speed reading this article – you likely missed the subtle change in the DOMAIN of the email that I received from khls.com, not kohls.com. I learned a long time ago, because I was a victim of fraud, that I no longer click any email links or open any email attachments from companies. I will simply go to the company website and login to my account in order to confirm the information that I’m being told is so very important. Remember, also, that the fraudsters rely upon rushing you into a rapid response to their email or phone message. IF YOU HURRY – YOU’LL BE SORRY… Let me give you a few quick suggestions on dealing with email and keeping yourself safe with your home computer. Use a Secure and Reputable Email Provider: Choose an email provider like Gmail, Outlook, or Yahoo that offers robust built-in security features, including SPF, DKIM, and DMARC protection. Enable Multi-Factor Authentication (MFA): Add an extra layer of security to your email account by enabling MFA. This requires a second verification step (like a text message or authentication app) to access your account. Recognize Spoofed Emails: Be cautious with emails that: a. Urge immediate action or sound too good to be true. b. Contain spelling errors or unusual language. c. Have suspicious links or attachments. d. Hover over links to see the actual URL before clicking. 4. Keep Your System Updated a. Regularly update your operating system, browser, and email client to protect against known vulnerabilities. b. Use antivirus software to scan for malware that may arrive via email attachments. If you follow the simple rules, you can avoid being taken advantage of by the myriads of scams that appear in your email Inbox on a daily basis – sometimes multiple times per day. Take some time to sign up for an ID Theft program to have an extra set of eyes for your online health. We offer a great product at Washington State Bank called ID Theftsmart – it is an inexpensive way to protect your financial life. There are many good companies that provide similar services, and I would strongly encourage you to take advantage of the offerings before you fall victim to identity theft or fraud. One last suggestion…use a Credit Card for all of your online activity. It adds one more layer of protection away from your personal banking accounts that are accessed via your debit card. There is much lower risk to your financial health in using a credit card for your purchases. All the best as you keep yourself safe from all of the bad actors out on the internet and your email inbox. Michael Herzog President

FRAUD - They Are Out To Get You!

By Michael Herzog March 6, 2025
Every single day the fraudsters are looking for ways to infiltrate your defenses and to take advantage of your weakness. Think for a moment about all of the SPAM phone calls that you receive – the kind that block their numbers from caller-id, the kind that come up on your caller-id as a “local” number, the kinds of calls that you are unsure as to whether you should even answer the phone. Allow me to make a simple suggestion. IF YOU DON’T RECOGNIZE THE NUMBER – DON’T ANSWER THE CALL! A legitimate caller will leave you a voice message. A legitimate caller won’t keep calling your phone. A legitimate caller doesn’t make multiple calls in a row without leaving a message. I hear customers say things like the following: I didn’t want to miss a call from my doctor or healthcare provider. I was sure that the number was someone that I knew. The caller-id said that it was a federal agency (FBI, DHS, FTC). The same caller was on my phone 2 or 3 times in an hour. The biggest danger that we face is in answering the phone and beginning a conversation with a potential scammer. Trust me when I say, the person that is calling you is well-rehearsed, extremely convincing, and they will immediately make you feel that you must do something right now to help them or to remove yourself from the trouble they suggest you are involved in. Scammers utilize an appeal to authority and time pressure to make you afraid. They use this fear to get you to do what they ask of you. They will tell you a story about unclaimed property, or cash prizes, or even that you are helping law enforcement with an investigation of your bank. All of these stories are false, but they have just enough truth and a lot of correct sounding jargon to make you believe that you are doing something good that will benefit you. They may even send you to the bank and ask you to keep them on the phone, telling you that the bank employees are going to suggest that you are involved with a fraud – that’s all part of their hook. Finally, the scammer will ask you to buy Pre-Paid gift cards after withdrawing cash from your bank – and to reveal the numbers on the back of the card to them. IF YOU DO THIS – YOUR MONEY WILL BE GONE! There is no Identity Theft Protection that will keep you from doing this on your own. Please take the time to think through answering your phone. I have an old friend who used to say, “I have a phone for my convenience, I don’t answer the phone unless I know who is calling me.” Allow me to make some simple suggestions that may very well keep you safe from the myriad of scammers… If someone calls you from a familiar place and isn’t confirming information that you already know or are waiting to hear, hang up the phone and call that place directly. · Scammers are using technology that spoofs phone numbers – the caller-id may indicate it is from your local bank or the doctor’s office. Your bank will NEVER, EVER, ask for your specific account information – we already have that information. Bank’s do not know your PIN #s for cards, that is your information and is issued specifically to you. Your bank will NEVER, EVER need to ask you for a PIN number. Be careful with your card information. Scammers are very good at talking you into giving away specific information and making it seem like they already know the information. · For example – the three digit card security number on the back of your cards. The conversation will go something like this… · Scammer: I know that your card ends in 1234, and your expiration date is 08/27. Would you please give me the 3-digit code in order to verify your account? · Person: Sure, it is 111. Criminals have access to so much of our data, the simple process of asking you questions is to gain your trust. Please don’t fall for this trick. In closing this piece. Remember the old rule, “If it sounds to good to be true, it probably is.” Even the biggest prize company in the world – Publisher’s Clearing House states that they will never call you, email you, send mail to you – they will show up at your home when you are the winner. No legitimate organization needs you to send them money in order to investigate another organization. All of these people are attempting to take advantage of you and steal your money. And sadly, once you withdraw cash and give it to them – IT IS GONE FOREVER! Please be safe in this increasingly dangerous world. Michael Herzog President

Time & Savings

By Michael Herzog February 5, 2025
You may not think that my title goes along with a consistent thought pattern, after all, taxes are one of those normal life headaches that cost us money and typically, savings is something we are doing that provides a long-term benefit. But what if you could save money and reduce your taxes at the same time? Have you considered the tax-deferral available to you by utilizing an IRA? IRA accounts have been around for a long time, and yet, many of us don’t take the opportunity to fund this portion of savings that avoid the taxes that would be imposed upon that income you are setting aside for future use – in retirement. We have a couple of good options for your consideration. Washington State Bank offers these first two options to anyone who wishes to start or continue depositing dollars for retirement planning. Traditional IRA – every taxpayer in the United States has this option, even if you are covered by an employer 401k or other type of retirement program. There are limits to the amount you may contribute, and I would encourage you to speak with your tax preparer about those limits. Roth IRA – this is going to be after-tax dollars, so you don’t receive the immediate benefit, but since you have already paid taxes on these contributions, you will be able to withdraw those funds with very little tax consequences in the future. In most cases, the withdrawals will be tax free. Additionally, we have a partnership with NestEgg that allows you to access investment products that are typically offered in a brokerage with a discounted fee structure. These investments allow you to increase your potential return over the time that you are working toward retirement. Nest Egg is an online brokerage and they offer one on one service as well as the opportunity for you to make investment choices on your own. Let me give you an example of how much you might be saving over a 20-year time frame… For example, you decide that in 2024 you wanted to defer the full amount of $7,000 to an IRA account. And you commit to setting aside this amount each year going forward. $7,000 per year for the next 20 years. I am going to use a conservative 6.0% return on investment over the 20 years. (For this example, I am using the Future Value of Money Calculator at calculator.net) In 2024, you begin and at the end of the first year you have a total of $7,420.00. At year 5 you would have a total of $39,459.00 (while contributing $35,000) By year 10, your $70,000 investment would be worth $92,265.00. In year 20, compounding has almost doubled your investment of $140,000 to a total of 279,949.09. If you are young and can afford this $7,000 annual investment – according to this calculator, you would accumulate $1,000,000 in 39 years. So, if you are in your 30s today, by beginning this simple plan, you would have saved one million dollars by the time you are 70 years old! I think just about everyone would be excited about that number. Start small, finish big. The rules of compound interest are always the same. If you don’t have $7,000 today, start by adding to your IRA on a monthly basis – that would be about $600.00 per month. Maybe the first question is why am I not already doing this? Michael Herzog President
More Posts