Date Reported 26th January 2005
Apparent Sender Huntington Bank
Return Address Huntington Bank < support@huntington.com >
Subject Huntington Bank - Persoanl Security Alert
Format HTML
Method Spoof email links to a spoof webpage where victim is prompted to enter their details believing the site is genuine. Details are then forwarded to a local script and captured.
Bogus Web Content? Yes
URL of web content http://207.230.107.161/onlinebanking.huntigton.com/l
RISK LEVEL MEDIUM
WARNINGS 1. Email claims to be from Huntington Bank asking you to confirm your account data by clicking on the link. You will be taken to a spoof login page where your details will be captured by the phishers.
2. Huntington Bank never send users emails requesting details in this way.
3. URL disguised as https://onlinebanking.huntington.com/security/login.jsp. Looks secure (https) but is not!
4. Website traced to Cupertino, USA.
5. There is a lot of bad grammar and wrong spellings used in the email and the website - a sure sign of a scam.
" To provide our customers the most effective and secure online access to their accounts, we are continually upgrading our online ervices. "
If you have received this email, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content or the same but with the fake page(s) hosted by a different provider. Also, once you have received one of these hoaxes, it is also common place to receive at least another one and usually a day or two after the first, although not necessarily from the same apparent sender.
|
