FI Frauds:Phishing attack on customers of Lloyds TSB
An attack on customers of the UK's LloydsTSB has an especially disturbing aspect.
The spam-scam is pretty standard. Of course, any notification from a bank would not be addressed "Dear Valued Customer." It's a first-line give-away. But what is disturbing is that the plain text mail did not obscure the target website where victims land: instead the domain is "account-lloydstsb.com"
That domain has been registered by domain registrar Melbourne IT. It was registered on 7 July and as of today that registration is showing as live. Mails were being distributed within hours of the registration being completed.
The proximity of the fake landing site to the name of a real bank is disturbing and raises the question as to why, given the demands on financial institutions for the use of data-matching to prevent multiple accounts and suspicious transactions, Domain Registrars are not all subject to a similar requirement as a step to preventing fraud.
----------------
Online Banking Notification
Lloyds TSB | For the journey
Dear Valued Customer,
Your access to our internet banking service has been suspended,
In order to regain access to our internet banking service, you are required to
verify your
account security details to our new security system.
Click here [link removed] to verify your
account, And make sure your security details are filled correctly.
Sorry for the inconvenience,
We hope you find our Internet Banking service easy and convenient to use.
*Yours sincerely*
Ashley Machin
*Ashley Machin,
Digital Banking Director*
If you no longer wish to receive emails from Lloyds TSB unsubscribe here (opens
in a new window)
Download PDF version of this page