We have recently discovered that some of our customers are receiving fraudulent "phishing" emails, attempting to collect Moneris account credentials and prompting customers to install fraudulent files into their systems.
These emails may have some of the following characteristics:
They may come from a fictitious email address, such as firstname.lastname@example.org
They provide false information, advising customers that their Moneris Virtual Terminal SSL certificate has expired.
A website link is provided and customers are asked to update their digital certificate by clicking on the link.
Once the link has been opened, customers are asked to install a file that is fraudulent. This link will take customers to a web page which looks like a Moneris service page, such as the eSELECTplus login page.
If you have received one of these phishing emails, please follow these steps:
Please delete the email immediately, do not click the link or enter any Moneris Login credentials. Please do not install any of the attached files.
If the link has been accessed and the file downloaded, please follow these important steps:
Log in to your Moneris account and change your password