Warning all Citibank users

Another Spoof Email and Phishing Scam report by MillerSmiles.co.uk - click this image to go to our home page.

Warning all Citibank users
5th April 2004

please forward any scams you've received to spoof@millersmiles.co.uk

Report Summary
Date Reported	5th April 2004
Apparent Sender	Citibank
Return Address	Citibank<user-supports02@citibank.com>
Subject	Warning all Citibank users
Format	HTML image only
Method	clicking any where on the image leads to bogus web content
Bogus Web Content?	Yes
URL of web content	pop up opened in front of genuine page - http://isapi100.info/confirm.htm
RISK LEVEL	Medium
WARNINGS	1. Exploits URL Spoofing (canonicalisation) in Internet Explorer browsers - run Windows Update to ensure your browser is patched. 2. Employs script to open the genuine Citibank home page as a backdrop to the bogus page.

Another instance of bogus content being presented in a pop up style window in front of genuine web content...

This spoof Citibank email (see image below) is in HTML format but contains an image only (no text) and clicking any where ont hat image will open a forged web form in a 'pop up' style window in front of the genuine citi.com home page.

The email is coded to exploit the URL spoofing vulnerability in IE browsers (use link right to test your browser).

Any information submitted is processed through a script located on the same server as the bogus content.

If you have received this email, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content or the same but with the fake page(s) hosted by a different provider. Also, once you have received one of these hoaxes, it is also common place to receive at least another one and usually a day or two after the first, although not necessarily from the same apparent sender.

The Spoof Email ...

Warning all Citibank users - spoofed email.

The bogus web page ...

Warning all Citibank users - forged web apge.


Stay informed of the latest Spoof Email Phishing Scams with either of our FREE alert services... Email Alerts Add your email address to our email alert service... Subscribe Privacy Policy RSS News Feed Tap into our Scam Alert service using your News Reader or Aggregator (including My Yahoo!). Scam Alert News Feed You can even put the latest alerts on your own web site.

Library of Spoof Email Phishing Scams Brief guide to Phishing Full article on spoof email scams Spoof URL Checker Link Checker Browser URL Spoofing Vulnerability Check Latest browser bug aids Phishing Scams - beware!

Click the arrow to return to previous page Home Guides... Book Terminology How to identify a first edition book Auction Watcher List of the main Auction Sites world wide
<table border='0' cellpadding='0' cellspacing='0' width='120' height='243'> <!--DWLayoutTable--> <tr> <td><a href='http://www.amazon.co.uk/exec/obidos/redirect-home/millersmile09-21' target=_top ><img src="http://images-eu.amazon.com/images/G/02/associates/recommends/default_120x243.gif" width=120 height=243 border="0" access=regular></a></td> </tr> <tr> <td height="1"><img src="../spacer.gif" alt="" width="120" height="1"></td> </tr> </table>

Warning all Citibank users 5th April 2004

Warning all Citibank users
5th April 2004