December, 2022 - APWU - South Jersey Area Local 0526

This is an official UPDATE from APWU Industrial Relations Director, Charlie Cash.

The update reads:
I received update on the issue with employee’s direct deposit. See below. However, I reiterate that everyone should go change their password and make sure they are using the appropriate website which is: LiteBlue (usps.gov)

Do not share your information with anyone! Including members of your family, friends, etc.

Here is the message received from Vice-President of Labor Relations Tom Blum

Colleagues,

VP Heather Dyer and the Inspection Service have confirmed Postal Service employees are often unknowingly providing their usernames and passwords to criminal websites, while attempting to access PostalEase.

Employees are using Google and attempting to access PostalEase; however, Google in-turn has been redirecting them to criminally run websites that mirror the look and access of PostalEase.

VP Dyer and the Corporate Information Security Office (CISO) are working with the Postal Inspection Service and drafting letters to the impacted group of approximately 119 employees, while also preparing a second letter addressed to all postal employees. Both drafts are currently under review by the Privacy Office and Law Department.

We have received reports representations have been made at the district level confirming Postal Inspectors are contacting impacted employees, as well as employees who may have unknowingly been compromised, and requesting their EINs and passwords.

Please note . . . Postal Inspectors have not contacted postal employees and requested their EINs and/or passwords. (Emphasis added by Charlie Cash)

If you know of any financially impacted employees, please have them immediately contact the Eagan ASC Helpdesk at 866-974-2733. Staff members are available to assist.

If you become aware of any employee experiencing access issues to PostalEase, please recommend they immediately contact 877-477-3273 to request assistance.

VP Dyer, the CISCO Team and the Postal Inspection Service continue working around-the-clock to enhance the security of PostalEase.

We will provide you with any additional information ASAP.

Tom

New SCAM… information courtesy of APWU DIR Department / Charlie Cash.

It has been reported to me from the field that postal employees around the country are receiving calls from someone posing as a Postal Inspector. The “inspector” tells them their Liteblue account has been comprised and locked. The “inspector” is asking them to provide their EIN and “previous” password in order to verify and unlock their account.

Unfortunately, we have had some folks pony up the info. Once the information has been provided, the scammers log in to the Liteblue account and change their net-to-bank payroll information.

These are reports from the field, and I just reported them to USPS HQ. I have no further information but PLEASE—DO NOT SHARE YOUR LITEBLUE/POSTALEASE LOGIN INFORMATION WITH ANYONE. The Postal Inspectors will not call and ask for this over the phone. If anyone has received this call and provided info, please attempt to log in and check your Liteblue/PostalEase account immediately. Go immediately and change your password. If you can’t get in or something is suspicious—Call HRSSC immediately to fix your Liteblue/PostalEase account.

If I have official communications from the Postal Service or learn more—I will let you know. This exact reason is why the Postal Service is changing to MultiFactor Authentication (MFA)—using your cell phone or email to get a code to login. Again—please do not give out your info!!!

Month: December 2022

Update on employee’s Direct Deposit

Calls seeking LiteBlue Login information