FDR “Phishing Scam” Email!

First Data has learned of a widespread phishing attack telling recipients that their merchant ID has been locked. The phishing attacks have been by email as described below as well as through unsolicited telephone calls.

Unsolicited email containing errors, such as misspellings, should always raise a red flag, especially if combined with a call to action, such as calling a toll-free number or clicking on a link. If your merchants receive an email similar to the one below, immediately have them delete it from their inbox and deleted items folder. Please tell them to not open any attachments on the email. No further action is required on their part.
If you called a toll-free number in response to an unsolicited email or phone call and gave your merchant ID, please have them contact the merchant services number on their statement so that First Data can help monitor their account for fraudulent activity.
First Data is constantly monitoring for these types of emails and phone calls. We are working with law enforcement officials to take down these phishing sites and to pursue these criminals. If you receive emails or unsolicited phone calls in the future that you suspect are phishing, please let us know right away.
Below is a copy of the current phishing email message. Note the indicators in red that show this is a phishing scam.
___________________________________________

From: FirstData [mailto:verifyaccount@firstdata.com]
Sent: Monday, February 10, 2014 9:58 AM
To: XXXXXXXXXX
Subject: Notification

Dear customer,
We regret to inform you that your merchant account has been locked. ← no specific account number provided

To continue using our services please call our tool free number XXXXXXXXX and update your information. ← misspelling and no specific merchant services listed

Please be ready with your Merchant ID and Terminal ID number. ← no description of process to unlock account

FirstData 2014