Email fraud is becoming increasingly common. The most common type is called "phishing" – the practice of sending phony emails that look official and legitimate but are "spoofed" copies. Often, the e-mails provide links to websites that ask you to enter in your personal information, such as your online ID, password or Social Security number, with the intent of gaining access to your financial accounts. Remember, REGIONS WILL NEVER ASK FOR THIS INFORMATION VIA E-MAIL.
Click here to view an Example of Fraudulent Email
Identifying the phony emails and websites isn't easy. There are a few common characteristics you can look for, however, that will help you avoid these dangerous scams.
What do phishing emails have in common?
- Urgent message. Customers could receive an email with an urgent or time-sensitive message requesting them to act immediately. An example of this would be "Urgent, your account has been locked and you must reactivate immediately to continue to use your account."
- Links to "spoofed" websites. There will be a link that will direct users to a fraudulent website. This site may look official, but is actually one that is controlled by the fraudster. Legitimate emails from Regions that have links in them will always contain the customer name and the last 4 digits of your account number in the upper corner. Once you have verified your personal information is correct, you can click on the link in the email. Make sure the page that the link takes you to says http://www.regions.com in the browser address bar. This is another way to determine that the site you are on is the authentic Regions website.
- Requests for sensitive information. These messages usually say that the bank needs to update or verify your information. Regions will never ask for you to update your account in this way.
Regions will never send an email request asking for our customers to verify or update personal information or passwords. If the email does not contain your name and last 4 digits of your account number in the upper corner, even clicking on the fraudulent link could expose your operating system to a virus or to software that enables criminals to "eavesdrop" on your keystrokes and capture your passwords and other confidential information. When banking online, always make sure your browser address bar reads "http://www.regions.com/" before you begin the login process.
Report Phishing Emails
To report a suspicious email that is using Regions' name, please do not click on any of the links within the email and forward it to firstname.lastname@example.org and then delete it. If you believe that you have received or replied to a suspicious email and provided private information about your Regions account, please contact us immediately at 1-800-REGIONS.