2 min read

Fraudulent scheme targeting Santander

Răzvan LIVINTZ

April 13, 2010

Fraudulent scheme targeting Santander

A new significant wave of e-mail spam purporting to verify and reinforce the “account against ID Theft” leads the credulous or inadvertent users to a collection of Web pages meant to steal and empty their bank accounts.

Alliance Leicester Phishing

The on-line forms that claim to pertain to the financial institution`s portal spoof several visual identification elements, such as the logo and general layout. Additionally, the pages are not registered onto a .co.uk domain (but .com) and are totally lacking any specific security elements, such as the locked padlock.

Alliance Leicester Phish

The phishers steal the sensitive data that the user is required to confirm via two PHP scripts: mainfile.dists.php ” used to pilfer the 8 digit customer ID, and formmailerv2.php ” which purloins the customer PIN, place of birth, mother’s maiden name, password and transfer password, telephone banking PIN, card number and CVC.

Alliance Leicester Phishing

As always, be suspicious of e-mails alleging to be from your bank ” financial institutions never contact their customers via e-mail to verify sensitive information ” and double-check the security elements of the login page of your e-banking portal. Last but not least, keep your antiphishing on and up-to-date.

Alliance Leicester Phish.png

The information in this article is available courtesy of Daniel Dichiu, BitDefender Online Threats Researcher.

tags


Author



Right now

Top posts

E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

July 29, 2021

5 min read
Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read
The Top Five Security Risks Smartphone Users Face Today

The Top Five Security Risks Smartphone Users Face Today

July 02, 2021

4 min read
Phishing Alert: Scammers Use Fake SharePoint and DocuSign Messages to Steal Users’ Login Credentials

Phishing Alert: Scammers Use Fake SharePoint and DocuSign Messages to Steal Users’ Login Credentials

July 02, 2021

3 min read
Your Doxxing Dossier Will Keep Growing Thicker Until You See the Danger

Your Doxxing Dossier Will Keep Growing Thicker Until You See the Danger

June 30, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

How to keep your Android device immune to malicious vaccine themed apps How to keep your Android device immune to malicious vaccine themed apps
Cristina POPOV

April 22, 2021

2 min read
Facebook Takes Down Two Hacking Groups Operating out of Palestine Facebook Takes Down Two Hacking Groups Operating out of Palestine
Silviu STAHIE

April 22, 2021

2 min read
Ransomware attack causes supermarket cheese shortage in the Netherlands Ransomware attack causes supermarket cheese shortage in the Netherlands
Graham CLULEY

April 13, 2021

2 min read