I received a new scam in my inbox this morning - it targets Standard Bank customers and it goes something like this:
-----Original Message-----
From: Standard Bank [mailto:ibsa@standardbank.co. za]
Sent: 27 July 2010 03:17 AM
To: xxxxx@xxxxxxxxxxx.xxx
Subject: Standard Bank : Security Update Notification
<http://www.standardbank.co. za/>
<http://www.standardbank.co. za/site/homepage/header.jpg>
Secure message received:
We request information from you for the following reason: Unauthorized
login attempt.
Please visit your account and make necessary steps before your account is
locked for security reasons.
<http://www.treedesign.co.kr/ zboard/icon/private_image/ redirect.php>
If this is an unauthorised login attempt, we strongly advise that you
immediately log on to profile and change your password.
It is recommended that you regularly change your password and keep your
passwords unique from all other passwords.
Online Banking Team.
If you click on the embedded link (which is obviously dodgy), it brings up a slightly modded version of the Standard Bank site, complete with links back to the real Standard Bank site... so it all seems pretty real.
I then tried typing in some profanities into the login boxes, and lo and behold, I got this screen...:
-----Original Message-----
From: Standard Bank [mailto:ibsa@standardbank.co.
Sent: 27 July 2010 03:17 AM
To: xxxxx@xxxxxxxxxxx.xxx
Subject: Standard Bank : Security Update Notification
<http://www.standardbank.co.
<http://www.standardbank.co.
Secure message received:
We request information from you for the following reason: Unauthorized
login attempt.
Please visit your account and make necessary steps before your account is
locked for security reasons.
<http://www.treedesign.co.kr/
If this is an unauthorised login attempt, we strongly advise that you
immediately log on to profile and change your password.
It is recommended that you regularly change your password and keep your
passwords unique from all other passwords.
Online Banking Team.
If you click on the embedded link (which is obviously dodgy), it brings up a slightly modded version of the Standard Bank site, complete with links back to the real Standard Bank site... so it all seems pretty real.
I then tried typing in some profanities into the login boxes, and lo and behold, I got this screen...:
So regardless of what you type into the login boxes, this screen pops up, to try and make you think that something is actually going on, while the only thing really happening is that your details have now been logged and captured, for use by some jellyfish somewhere on the planet.
No offence intended to real sea-faring, stinging-type jellyfish of course...
Be careful out there, internet-goers and email-receivers.