News

Paychecks & Benefits Targeted by Scammers

Written by Admin | Apr 10, 2025 9:20:37 PM

MEC Benefits Committee


Cybercriminals are targeting our sign-in credentials to company systems because they can be used to misdirect our direct deposits or gain access to our health and wellness accounts, including our FSA and HSA balances.

While we recognize that company messaging about the importance of protecting data security can become repetitive, it is critically important that each of us recognize the serious nature of these efforts where, if successful, they pose a serious compromise to our personal financial security.

It cannot be stressed strongly enough that cybercriminals use phishing, smishing and fraudulent calls to gain access to your information.  Knowing and accepting the fact that each of us is an intended target by these criminals is the first step in protecting our financial data.

Be aware that criminals are using fraudulent calls and fake DUO (authentication) requests, hoping that users will approve access.  United will never ask you for passwords or initiate DUO (authentication) requests via telephone.  If you receive such calls, hang up and notify United Security via email at protect@united.com

Consider taking the following steps to protect yourself:

  • Verify any fraud-related calls.
  • Avoid clicking links in unexpected emails or text messages.
  1. For active employees, AFA recommends that you access the Flying Together website exclusively via the Other tab in CCS.  By doing so, you are using a trusted source on a page where you have already been authenticated, and the link to the company website is embedded in the site.
  2. For retirees: -
    Visit the United AFA website, use the magnifying glass search icon, search Paychecks & Benefits Targeted by Scammers, CLICK HERE> https://ft.ual.com

    If you receive an email about any unrequested change to your direct deposit account information for payroll or expense, immediately do the following:
  • Change your Flying Together Password
  • Verify your direct deposit details immediately
  • File a report with protect@united.com 


If you ever receive a DUO request you have not initiated, do not approve it and report it immediately to protect@united.com.
View full post