It's a while since a CitiBank phishing email has featured on these pages. This one is quite a short attempt to get at your hard earned cash in a text only email. They have been clever enough to guess my name from the first part of the email address, but that's not convincing.
The actual target URL used in the email is actually http://citibusiness.citibank.com.losao7.es/businessdir/cbof/start.do?ref=[id removed&session=[id removed] and losao7.es appears in plenty of 'suspected phishing' results on Google. The double session id / ref in the URL is also the same as the HSBC Email of last week, so it's possible the same people are responsible for both???
Here's the content.
Dear CitiBusiness customer,
CitiBusiness new Scheduled Maintenance Program protects your data from unauthorized access. CitiBusiness Online Form is important addition to our scheduled maintenance program.
Please use the link below to access CitiBusiness Online Form:
CitiBusiness Online Form
Please do not reply to this auto-generated email. Follow instructions above.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment