Phishing Scams and Phishing Reports at MillerSmiles.co.uk

     
 
Home
Search
Archives
News
Submit Scam
Articles
F.A.Q.
Forum
About Us
Contact Us
Links
 


 

Acknowledge: Confirm Credit Card on File
(Ticket# LTK6402087861X)

First CU


 

 
Scam Report
Date Reported: 13th December 2005 Whats this? Risk Level: MEDIUM Whats this?
 
Details
 
Email Subject:
 Acknowledge: Confirm Credit Card on File (Ticket# LTK6402087861X)
Apparent Sender:
 First CU Whats this?
Return Address:
 First CU Billing Department < billing@f1rstcu.coop > Whats this?
Email Format:  HTML Whats this?
 
URL of Web Content:
 http://webteller.f1rstcu.net/servlet/com.sos. webteller.accountaccess.LoginFrame.Type-login.htm Whats this?
Location:
 Unknown Whats this?
 
Scam number:
 aa-1760
 
Comments:
  • Email asks you to confirm/update/verify your account data at First CU by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.


  • First CU never send their users emails requesting personal details in this way.


  • The REAL URL of the spoof website is disguised as "https://www.webteller.firstcu.coop/servlet/ com.sos.secure.WebTellLogin".


  • The spoof website this email links to was not online at time of this report, but variations of the scam which link to working websites are bound to exist, so be wary! The website may have been taken down or disabled by the hosts, but quite often these websites are hosted on the personal computer of the phishers, so may only be online at certain times.


  • The REAL URL of the spoof website has been chosen to look very similar to the actual First CU URL. Do not be fooled!
     
Content
 
 
 
"During our regularly schedule account maintenance and verification we have detected a slight error in your billing information on file with First CU."


 
Website:    
 
Spoof website not online at time of report...

 
  See our most recent scam reports Browse our scam report archives Search


Please send us any scam/phishing emails you have received by reporting them here

For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service

If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.

We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.