| |
|
|
| |
|
|
|
 |
|
| |
|
your VISA card 4XXX-XXXX-XXXX-XXXX: possible
fraudulent transaction # 3936476
VISA
|
|
|
|
 |
|
 |
| |
|
Date Reported: 12th January 2011  |
Risk Level: MEDIUM |
|
| |
 |
 |
| |
Email Subject: |
your VISA card 4XXX-XXXX-XXXX-XXXX: possible fraudulent transaction # 3936476 |
|
Apparent Sender: |
VISA |
|
Return Address: |
Not found |
|
| Email Format: |
HTML |
| |
URL of Web Content: |
http://www.tanger.com.br/.www.visa.ca/
|
|
Anchor text of URLs: |
1)
https://www.visa.com/cforms/cholderform.php?s
essionid-520470122631713147523378893378985459
21475747 |
|
Location: |
Location not available |
| |
Scam number: |
15052-214558-494704 |
| |
Comments: |
- Email asks you to confirm/update/verify your account data at VISA by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.
- VISA never send their users emails requesting personal details in this way.
- The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!
- The spoof website this email links to was not online at time of this report, but variations of the scam which link to working websites are bound to exist, so be wary! The website may have been taken down or disabled by the hosts, but quite often these websites are hosted on the personal computer of the phishers, so may only be online at certain times.
|
| |
|
|
|
 |
| |
|
| |
Dear VISA card holder,
A recent review of your transaction history
determined that
your card was used at an ATM located in Iran,
but for security
reasons the requested transaction was
refused. You need to
complete the VISA Card Holder Form. You can
do this by
clicking the link below:
https://www.visa.com/cforms/cholderform.php?s
essionid-520470122631713147523378893378985459
21475747
VISA Cards Support
Message ID:
[#6b0ba17b9fa941d2aaf0dbf65fd86ab2#]
...
|
|
Click for full size image |
| |
| Website: |
|
|
| |
|
| Website was not online when we checked. It returned the error 404 |
|
|
 |
 |
 |
|
| |
 See our most recent scam reports |
|
Browse our scam report archives |
|
Search |
Please send us any scam/phishing emails you have received by reporting them here
For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service
If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.
We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.
|
| |
|
|
|
|
