|
Date Reported: 7th February 2010 |
Risk Level: MEDIUM-HIGH |
|
|
|
|
|
Email Subject: |
VISA 4XXX-XXXX-XXXX-XXXX: possible fraudulent transaction ID 924984217402 |
|
Apparent Sender: |
VISA |
|
Return Address: |
transactions@mail.visa.com |
|
Email Format: |
HTML |
|
URL of Web Content: |
http://transactions.cforms.visa.com.udaswy.cz/secu reapps/vdir/cholderform.php?refg234316351304517730 6457150331720789343662446945356813211&email=xc oops_1@yahoo.com.au |
|
Anchor text of URLs: |
1) http://transactions.cforms.visa.com/secureapp s/vdir/cholderform.php?ref4088991740312141207 439696517908069313655206711166348649975706941 &email=xcoops_1@yahoo.com.au, 2) http://transactions.cforms.visa.com/secureapp s/vdir/cholderform.php?ref4088991740312141207 439696517908069313655206711166348649975706941 &email=xcoops_1@yahoo.com.au |
|
Location: |
Location not available |
|
Scam number: |
7736-101655-324298 |
|
Comments: |
- Email asks you to confirm/update/verify your account data at VISA by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.
- VISA never send their users emails requesting personal details in this way.
- The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!
|
|
|
|
|
|
|
|
|
Received: Saturday, 6 February, 2010, 11:32 PM
Dear VISA card holder,
A recent review of your transaction history determined that your card was used at an ATM located in Cuba, but for security reasons the requested transaction was refused. You need to complete the VISA Card Holder Form. You can do this by clicking the link below:
HTTP://TRANSACTIONS.CFORMS.VISA.COM/SECUREAP PS/VDIR/CHOLDERFORM.PHP?REF408899174031214120 743969651790806931365520671116634864997570694 1&E...
|
|
Click for full size image |
|
Website: |
|
|
|
|
Click for full size image |