SunTrust wants to help you keep your account information safe and secure. This page houses the most recent examples of fraud alerts involving bogus SunTrust e-mails, plus any additional information we believe you should be aware of. Please check this space frequently for the most up-to-date fraud report information we have.
Phishing Alert: Spam emails targeting SunTrust clients
Subject line includes: "Customer Service"
A phishing campaign is currently targeting SunTrust clients in an attempt to gain personal client information. The email looks legitimate and is specifically tailored to SunTrust clients.
A Security Update Alert is presented, along with the Notice: We recently have determined that different computers have logged into your account and multiple password failures were present before the login. Please open the file from your personal/home computer in order to verify your real identity and location.
Once you click on the link in the email, you are directed to a site that looks similar to the below image, in which the fraudster asks that the client input their personal information. Please note this is NOT a legitimate email.
Always be cautious of links in emails and emails from unfamiliar senders. If you have any doubt, do not click on the link in the message. Legitimate SunTrust emails will never ask you to click on a link then enter personal information such as SSN, DOB, Card Number, CVV, etc...
Fraudulent emails often try to create a sense of urgency to persuade you to take action; don't click the link. Instead take the following steps:
If you clicked on the link in the email and provided any information or took any action:
Phishing Alert: Fradulent emails from the IRS
Fraudulent emails appearing to be from the IRS are in circulation. E-mails that appear to be from the IRS with Form W-8BEN, "Certificate of Foreign Status of Beneficial Owner for United States Tax Withholding and Reporting (Individuals)," or Form W-9, "Request for Taxpayer Identification Number and Certification," attached are being sent to consumers fraudulently in an attempt to collect personal, confidential information. Because these forms contain several types of personal information, consumers who fall victim to the scam are at increased risk of fraud and/or identify theft. Recipients should be advised NOT to open the attachment. Instead, they should forward the email to email@example.com and then delete the email from their computer.
Text Phishing Alert
Fraudsters are texting from multiple numbers (sometimes blocked #’s) pretending to be from SunTrust. The text directs the recipient to call 804-242-0875 for an important message. Consumers should be aware that, while SunTrust does monitor for fraudulent or suspicious activity and may proactively contact a client about this activity, we will never ask for confidential information including your full account number or PIN or full SSN. Report any incidents to firstname.lastname@example.org or 1-800-447-8994 if you have provided confidential information in response to the text.
Fraudulent phone calls from LightStream
Please be aware of fraudulent phone calls, appearing to be from LightStream regarding Timeshare sales. Clients and non-clients are being contacted by fraudsters stating they are LightStream employees. They will advise the caller that their timeshare information was found online and they have a seller eager to buy. The Fraudsters are requesting funds on a reloadable card, and will mail a (fraudulent) contract bearing the LightStream logo.
Do not take action on these calls. Report any incidents to email@example.com or 1-800-447-8994 if you have provided confidential information.
Fraudsters are texting from multiple numbers (sometimes blocked #’s) and are telling clients and non clients that this text directs the recipient to call 302-7511 to unblock their card. Consumers should be aware that, while SunTrust does monitor for fraudulent or suspicious activity and may proactively contact a client about this activity, we will never call and ask for confidential information including your full account number or PIN. Report any incidents to firstname.lastname@example.org or 1-800-447-8994 if you have provided confidential information.