|
|
Date Reported: 21st August 2009 |
Risk Level: MEDIUM-HIGH |
|
|
|
|
|
Email Subject: |
GMAC Bank is now Ally Bank |
|
Apparent Sender: |
CustomerCare@ally.com |
|
Return Address: |
Not found |
|
Email Format: |
HTML |
|
URL of Web Content: |
http://secure.ally.com.nujrew.net/allyWebClient/cc are/cform.do?id |
|
Anchor text of URLs: |
1) http://secure.ally.com/allyWebClient/ccare/cf orm.do?id 365562757362309203856839783490194925839145104 921887507&email=dsparks@cesmail.net |
|
Location: |
Location not available |
|
Scam number: |
3471-49163-228780 |
|
Comments: |
- Email asks you to confirm/update/verify your account data at CustomerCare@ally.com by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.
- CustomerCare@ally.com never send their users emails requesting personal details in this way.
- The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!
|
|
|
|
|
|
|
|
|
Dear Ally Bank (former GMAC Bank) customer,
GMAC Bank has recently changed its name to be Ally bank, and these days we introduce a new version of banking software. As you are registered to be an online account holder, please update your account records. In order to update your account, please follow the link below:
http://secure.ally.com/allyWebClient/ccare/c form.do?id 365562757362309203856839783490194925839145104 921887507 (ii) do not disclose, distribute o...
|
|
Click for full size image |
|
Website: |
|
|
|
|
Click for full size image |
|
|
Please send us any scam/phishing emails you have received by reporting them here
For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service
If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.
We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.
|