Here's on that's quite dangerous and could fool a lot of people. It's got the Nationwide's logo at the top of a plain text email. It's sent to just the one email at a time, and the link in the email goes to "http://nationwide-ebanking.co.uk/sing-on".
Now apart from the fact the link says 'sing-on' instead of 'sign-on' (!!!), that's quite a plausible URL. The only problem is that it is registered to a UK individual, using Fasthosts as their registrar and host, and the domain was only registered yesterday (Saturday).
There's been a few of these plausible addresses on Fasthosts space - presumably still the backlash from their security problems a few months ago. So it's likely the details are wrong and it's just a site being hosted by an innocent party. But don't trust the email!
Here's the email. I've sent a copy to phishing@nationwide.co.uk, so hopefully they will get the site closed pretty soon.
Dear Customer,
Nationwide's Internet Banking, is here by announcing the New Security Upgrade.
We've upgraded our new SSL servers to serve our customers for
a better and secure banking service,against any fraudulent activities. Due to
this recent upgrade, you are requested to update your account information by
following the reference below.
Reference*
http://www.nationwide.co.uk/update.asp?ID=[id removed]
Regards
Customers Service
Nationwide Building Society
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment