Spotting scammers is not always easy – but being aware of common “tricks” can help:
Phishing
This one is very common (and effective)! Scammers use emails, phone calls or text messages to trick you into giving up information. They can be very convincing and can even appear to be calling or emailing from Rally Credit Union (see Spoofing). Many of these messages will create a sense of urgency.
Prevention Tips
- Go directly to our website for the Rally online banking link – do not click on links sent via email or text requesting login credentials.
- Only enter one-time passcodes online when you initiate a transaction or login – do not provide to any person. – WE WILL NEVER ASK YOU FOR THIS.
- Only provide personal/financial information when you have initiated a call to us at 1-800-622-3631 or the phone number on the back of your debit card. Do not provide to someone calling, texting or emailing you.
Spoofing
Scammers use software or create a website impersonating Rally Credit Union (or any other financial institution) to trick you into giving up information. The caller ID or website will appear to be Rally Credit Union.
Prevention Tips
- Verify the authenticity of phone calls or emails by letting the caller know that you will call them back – and only do so via 1-800-622-3631 or the phone number on the back of your debit card. Do not call them back at a number they provide.
- Only provide personal or account information via phone when you have called us or after logging into online banking. Do not provide personal or account information via email – it is not a secure method of encryption.
Malware attack
Scammers install malicious software to cause damage or steal data. An example is keylogging software that captures everything you type
Prevention Tips
- Only download files when expected and from someone you know. Best practice is to confirm with sender before downloading any files.
- Only connect trusted devices to your computer. Do not use USB devices that were “free” or “promotional.”
- Keep your antivirus and operating system software updated.
- Use private Wi-Fi networks for logging into online banking or performing other online transactions. Do not enter personal/financial information using public Wi-Fi networks (i.e. hotel, coffee shop and airport Wi-Fi spots).
- Use strong, unique passwords for each website login and turn on multi-factor authentication, if available. Do not use the same password for several logins, especially your online banking password.
- Enter debit card information each time you conduct an online transaction. Do not store debit card information on your browser.
Skimming
Scammers install a device and camera on an ATM, point of sale or fuel pump terminal to capture card data and PIN – then they make a fake card with this data.
Prevention Tips
Supervised Terminal Tips
- Use tap-to-pay when available.
Unsupervised Terminal Tips
- Pick one in the line of sight of the attendants/cashier.
- Scan for any sign of tampering – loose, damaged, or scratched pieces.
- Cover the keypad when entering PIN.
Additional Resources
The Federal Trade Commission provides additional information:
What to Do if You Were Scammed.
Unfortunately, scams can occur in a variety of ways beyond the common methods listed above. There are several resources to help keep you updated on the latest scams:
Experian Blog – Latest Scams You Need to Be Aware of in 2025
Federal Trade Commission – Scams
Better Business Bureau – Scam Tracker
