FI fraud: Standard Bank customers target of novel phishing fraud
The latest attempt to gather information from customers of South Africa's Standard Bank combines several successful techniques to hook victims - and then uses a novel way of getting their information
It's well known in the financial sector that many customers will do almost anything if there is something free as a result, even if it's only a ball point pen.
And so the promise of a Mastercard "Gift Card" pre-loaded with Rand 30,000 is a powerful incentive to respond to the e-mail.
All the customer has to do is swipe their existing card five times and you "have won" not only the card to use to buy clothes but in addition a breakfast-time consultation with a star stylist - who will then actually spend the day shopping with you.
Wow. Who could resist?
With a link to an insecure directory at www.jottit.com (which fakes an https certificate the real hook is to call a telephone number in the mail, which is loaded with links to real pages at standardbank.co.za.
Download PDF version of this page