Lloyds TSB online users are the target of this clever Phishing Scam...

This spoofed email (see image below) purports to be from Lloyds TSB and is in HTML format (although the entire email body is in fact an image which will trigger the fraudulent web pages if click on). As in some previous examples (particularly Citibank Phishing Scams,) the fraudsters have coded their bogus web content to open the genuine site page in one browser window and the bogus web page in another pop-up style window in front of it to give the appearance of a pop up that is related to the genuine page (see image below).

By viewing the properties of bogus web page (which contains a form to provide account user, password, name and date of birth information) viewers will see that the the page actually resides at a domain called userdll.info which resolves to an individual in the USA and clearly has nothing to do with Lloyds TSB at all.

Lloyds TSB online are aware of this email and have placed a warning message on their front page, the same page that is dispalyed as a backdrop to the bogus page, but unfortunately the forgery covers up the notice.

Any information submitted is processed through a script located on the same server as the bogus content.

If you have received this email, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content or the same but with the fake page(s) hosted by a different provider. Also, once you have received one of these hoaxes, it is also common place to receive at least another one and usually a day or two after the first, although not necessarily from the same apparent sender.

The Spoof Email ...

The bogus web page (as you can see, the genuine Lloyds page is opened as a back drop to the forged page)...