by
Tricia Zinkowski | Nov 01, 2023
We’ve been made aware by CUPS Payment Services of fraudulent websites posing as CAFT, one with the following URL: caft-paymentsanytime.com.
Please note: your agreement with CAFT gives you access to its website address, caft.paymentsanytime.com.
The difference being a dash in the spoofed site address instead of a period. Please beware of more fraudulent sites posing as CAFT, as others may exist.
What steps do you need to take to avoid this scam?
Please remain vigilant and educate yourself on what to look for to ensure you don’t fall victim to phishing attacks. As these types of spoofing sites persist, so must everyone’s vigilance to keep personal and business information safe and secure. See your CAFT agreement for your obligations.
Here are a few steps for you to follow:
1. Reset your password immediately.
Passwords should be unique using a combination of words, numbers and both upper and lower case. CAFT users can do this through the following options:
- Access CAFT through Manage My Password on the CAFT main menu screen;
- Click the self-service option through the CAFT login screen; or
- Contact us at 1.866.863.6237 or cashmanagement@affinitycu.ca for assistance.
2. Review your CAFT file history.
This will help to identify suspicious files that you may want to remove from processing.
3. Activate features built into the CAFT system that help mitigate risk, such as establishing limits on transaction and file amounts and enabling dual authorization.
4. Do NOT click on a link to CAFT that was provided in an unexpected email.
CUPS is working with their service providers to ensure a thorough investigation of any spoofed sites learned of and options for removal.
If you come across any CAFT phishing emails, please forward them to Informationsecurity@affinitycu.ca.
We remain committed to informing, educating and assisting you on these issues. Please contact us at 1.866.863.6237 or cashmanagement@affinitycu.ca with your questions.