|
|
|
|
|
|
|
|
|
|
Dear Customer: Important Security Update.
NatWest Bank Plc
|
|
|
|
|
|
|
|
|
Date Reported: 27th November 2009 |
Risk Level: MEDIUM |
|
|
|
|
|
Email Subject: |
Dear Customer: Important Security Update. |
|
Apparent Sender: |
NatWest Bank Plc |
|
Return Address: |
Not found |
|
Email Format: |
HTML |
|
URL of Web Content: |
http://www.global-excellence.com/includes/quotes/N atwest/login.php |
|
Anchor text of URLs: |
1) https://www.nwolb.com/default.aspx?refereride nt/verification |
|
Location: |
Location not available |
|
Scam number: |
6037-80784-289890 |
|
Comments: |
- Email asks you to confirm/update/verify your account data at NatWest Bank Plc by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.
- NatWest Bank Plc never send their users emails requesting personal details in this way.
- The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!
- The spoof website this email links to was not online at time of this report, but variations of the scam which link to working websites are bound to exist, so be wary! The website may have been taken down or disabled by the hosts, but quite often these websites are hosted on the personal computer of the phishers, so may only be online at certain times.
|
|
|
|
|
|
|
|
|
Dear NatWest Online Banking Customer,
We detected irregular activity on your NatWest Check Card on 26 November, 2009.
As the Primary Contact, you must verify your account activity before you can continue using
your card, and upon verification, we will remove any restrictions placed on your account.
To review your account as soon as possible please click on the link below:
HTTPS://WWW.NWOLB.COM/DEFAULT.ASPX?REFERERIDE NT/VERIFICATION
Thank you for...
|
|
Click for full size image |
|
Website: |
|
|
|
|
Website was not online when we checked. It returned the error 403 |
|
|
|
|
|
|
|
See our most recent scam reports |
|
Browse our scam report archives |
|
Search |
Please send us any scam/phishing emails you have received by reporting them here
For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service
If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.
We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.
|
|
|
|
|
|