A couple of new versions of the classic Nationwide phishing scams are hitting inboxes, trying to trick recipients into visiting websites that host malicious login pages.
The first one reads:
The statement for your account ending in 1718 is now available online. Log in to Online Banking to view your statement and pay your bill. [Link]
The link leads to the website of a US aircraft brokerage company which has been compromised and altered to serve a webpage cleverly designed by the attackers.
The second one is somewhat more complex:
Dear Account Holder,
Your online access to online banking has been suspended due to security reasons.
To have your online your account reinstated, we need to verify your identity.
You are required to authenticate your details to restore your access to online banking.
Log On Here to confirm your identity and continue with safe Internet Banking.
You are required to match your information correctly during this process.
This time, the hijacked site on which the phony online banking login page is hosted belongs to a publication from Colombia.
In both cases, if victims click on the links and provide their details on the fake Nationwide sites, they risk losing their financial assets.
At press time, the sites had managed to remove the malicious files, but that doesn’t mean that the campaign has met its end. In such spam waves the domains can change hundreds of times and, in some cases, the cybercriminals even prefer to set up their own ones.
The best way to protect yourself against such threats is to hover over the links with your mouse before clicking on them. If the URL looks suspicious, you’re probably dealing with a scam.
Via: Aircraft Brokerage and News Sites Hijacked to Serve Nationwide Phishing Scam
Tidak ada komentar:
Posting Komentar