|
|
Date Reported: 6th January 2018 |
Risk Level: MEDIUM-HIGH |
|
|
|
|
|
Email Subject: |
YOUR ONLINE ACCESS HAS BEEN SUSPENDED |
|
Apparent Sender: |
HSBC Bank plc |
|
Return Address: |
postmaster@melius-it.pl |
|
Email Format: |
HTML |
|
URL of Web Content: |
http://security.hsbc.co.uk.gsa.idv.cmd.idv.saassec uritycommand.saassecuritycommand.saassecuritycomma nd.saassecuritycommand.saassecuritycommand.technet working4u.com/hsbcpersonal/ |
|
Anchor text of URLs: |
1) https://www.hsbc.co.uk/1/2/welcome-gsp?initia lAccess=true&IDV_URL=hsbc.MyHSBC_pib |
|
Location: |
LOS ANGELES, CALIFORNIA, UNITED STATES |
|
Scam number: |
26246-620726-778059 |
|
Comments: |
- Email asks you to confirm/update/verify your account data at HSBC Bank plc by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.
- HSBC Bank plc never send their users emails requesting personal details in this way.
- The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!
|
|
|
|
|
|
|
|
|
HSBC Bank at your service 24/7
To ensure your HSBC emails are delivered to your inbox, please add hsbc@information.hsbc.co.uk to your address book
Dear Customer
To ensure your protection, we've now disabled access to your HSBC Internet Banking You now need to re-set your security.
You won't be able to gain access to certain features of online services until you've done this.
We've recently been reviewing all our HSBC customers accounts to mak...
|
|
|
|
Website: |
|
|
|
|
|
|
|
Please send us any scam/phishing emails you have received by reporting them here
For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service
If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.
We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.
|