Bank phishing emails increasing, promising bonuses and activation

Filed Under: Data loss, Featured, Phishing, Privacy, Spam

Phishing emailA wave of phishing attacks have been hitting over the last day targeting customers of Regions Bank in the United States and Westpac Bank customers in New Zealand. Other banks in the US, UK and Australia are also being targeted.

The ones I have been investigating all include a HTML document as an attachment with a form to fill out.

Some purport to be a survey for you to fill out and be paid $35 for participating, while others say your account has been suspended until you verify your identity.

Regions Bank phishing email

When the victim opens the attachment it prompts them to answer some survey questions and provide some of the following details:

  • Social Security Number
  • Card number
  • Card expiration
  • CVV
  • ATM PIN
  • First, Middle and Last name
  • Email (ironically they mailed you the form)
  • Address
  • Mother's maiden name
  • Place of birth
  • Birthday

Westpac Bank phishing survey

The attackers appear to be posting the stolen information to compromised hosts in Iran (Tehran), USA (Yahoo!) and Japan.

This might be a great time to remind your less security concious friends about attacks like these and to be sure to only ever provide information to your bank in person, or when you call a well known published telephone number.

, , , , ,

You might like

3 Responses to Bank phishing emails increasing, promising bonuses and activation

  1. Eneicia · 1035 days ago

    Sure, they put 35$ into your account while taking everything from everywhere!

  2. I got one of those this morning, I was like "Nice try motha f**kas"

  3. Robert Gracie · 1035 days ago

    yeah they will give you $35.00 then they will empty your account faster than you will realise so all I do is move that to the spam folder and be done with its problem solved for me

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Chester Wisniewski is a Senior Security Advisor at Sophos Canada. He provides advice and insight into the latest threats for security and IT professionals with the goal of providing clear guidance on complex topics. You can follow Chester on Twitter as @chetwisniewski, on App.net as Chester, Chester Wisniewski on Google Plus or send him an email at chesterw@sophos.com.