|
Date Reported: 29th January 2010  |
Risk Level: MEDIUM-HIGH |
|
| |
 |
 |
| |
Email Subject: |
possible fraudulent transaction with your VISA 4XXX XXXX XXXX XXXX |
|
Apparent Sender: |
VISA |
|
Return Address: |
transactions@mail.visa.com |
|
| Email Format: |
HTML |
| |
URL of Web Content: |
http://sessionid-WEDNI8RVR.cforms.visa.com.sucipa.
vc/secureapps/vdir/cholderform.php?refW52482245111
27646019131809753&email=pmiglioren@visalia.k12
.ca.us
|
|
Anchor text of URLs: |
1)
http://sessionid-WEDNI8RVR.cforms.visa.com/se
cureapps/vdir/cholderform.php?refp96793945050
62293588884185952035011137&email=pmiglior
en@visalia.k12.ca.us |
|
Location: |
Location not available |
| |
Scam number: |
7507-98927-319614 |
| |
Comments: |
- Email asks you to confirm/update/verify your account data at VISA by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.
- VISA never send their users emails requesting personal details in this way.
- The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!
|
| |
|
|
|
 |
| |
|
| |
Dear VISA card holder,
A recent review of your transaction history
determined that your card was used at an ATM
located in Guernsey, but for
security reasons the requested transaction
was refused. You need to complete the VISA
Card Holder Form. You can do this
by clicking the link below:
HTTP://SESSIONID-WEDNI8RVR.CFORMS.VISA.COM/S
ECUREAPPS/VDIR/CHOLDERFORM.PHP?REFP9679394505
062293588884185952035011137&EMAIL=PMIGLIOREN@
VISALIA.K12.CA.US
VISA Cards Support ...
|
|
Click for full size image |
| |
| Website: |
|
|
| |
|
Click for full size image |
