Spotting Suspicious Communications

Comerica is committed to safeguarding the privacy of your personal information.
If you have responded to suspicious written communications, please contact Comerica Bank at 888-444-9876.

Common Social Engineering Tactics

Beware of these common suspicious communications used to steal your personally identifiable information (including credit card numbers, driver’s license number, account information, Social Security numbers, passwords) and commit fraudulent activities.​

Phishing – This is an email-based scam. Fraudsters use a sense of urgency, fear, or impersonation of a familiar company/individual. The goal is to get you to reveal information or compromise your device via a malicious link or attachment.

Smishing – Similar to the phishing tactic, the fraudster prompts you to act via clicking a malicious link or calling a fraudulent phone number.  This method uses a request delivered via a text message.

Vishing – This is a phone-based scam. Fraudsters will contact you by phone call or voice message.


What You Can Do

  • Don't click the link or open the attachment of any suspicious communication or message you are not expecting. 
  • If you are concerned about the authenticity of a Comerica-branded communication, immediately cease all online banking activity.
  • Call Comerica at 888-444-9876.
    • Remember: Comerica will never call you and ask for your password, PIN or MFA One Time Password (OTP).
  • For all other suspicious communications, go directly to the company’s site by typing the URL in the browser or use a known number to call them. 
  • Change your passwords periodically, using strong and complex passwords that could not be easily guessed. 


  •  Use a phrase that includes symbols, numbers, and special characters
  • Consider using a secure Password Manager or Vault


  • Use names, familiar dates, or your Social Security Number (SSN).
  • Repeat passwords for multiple accounts
  • Write down your passwords


  • Always log off from your Comerica Web Banking® session if using a shared device. 
  • Avoid using public systems (workstations, shared phones) to access your secure accounts.
  • Keep the operating system and applications updated.
  • Only download applications from reputable sources.