phishing attack’ on co op

Holes_in_my_pocket

The Co-operative Bank has recently been the target of a ‘phishing attack’. ‘Phishing’ attacks happen when you receive a bogus e-mail claiming to be from a legitimate site and asking you to click on links within the e-mail. This e-mail claims to be from " Co-operative Bank", and asks you to click a link to confirm your security details. The link in the email looks genuine however if clicked it will take you to a ‘phishing website’
Please remember, we will never send you e-mails to confirm or change your security details, account numbers, card numbers, PIN numbers, or expiry dates.

fermi

If you get one then: Report a scam

If you suspect you've received an email, text message or unsolicited correspondence from a scammer claiming to be from us, please forward it to the address below.

[EMAIL="ihaveseenascam@co-operativebank.co.uk"]ihaveseenascam@co-operativebank.co.uk[/EMAIL]

Please note don’t send any confidential information such as your account details, card numbers, PINs or passwords.

fatou256

i received some of this scam e-mail on regular basis it affect all banks and building society , i even receivedd a fake one claiming to be from HMRCF saying that i have 158 pounds unclaim tax credit or tax rebate cant remember exactly ... i do not work so i am not entitled to it but i know some people would have fall for it very easily,including me.

maxmycardagain

when a bank/building society email lands with "you must login to confirm your details" just hover your mouse/cursor over the link to see the real address....

never use any email link to login, always use your regular secure link

superscaper

Holes_in_my_pocket wrote: »

The Co-operative Bank has recently been the target of a ‘phishing attack’. ‘Phishing’ attacks happen when you receive a bogus e-mail claiming to be from a legitimate site and asking you to click on links within the e-mail. This e-mail claims to be from " Co-operative Bank", and asks you to click a link to confirm your security details. The link in the email looks genuine however if clicked it will take you to a ‘phishing website’
Please remember, we will never send you e-mails to confirm or change your security details, account numbers, card numbers, PIN numbers, or expiry dates.

I don't think they're a recent target any more than any other bank. All the major banks have been subject of phishing scams for many years. There's just cyclic periods when some are more prominent to some email accounts than others.

The_Watchman_2

I have to agree, my wife received several, literally, saying if she did not respond at this (bogus) site her account would be frozen.

She is with the HSBC.

But the thing that makes me concerned is the email was from their domain, so it was either an inside job or there so called secure system was compromised for some one to set an email addy through them.

But I bet the banks are hoping us mere [STRIKE]peasants[/STRIKE] customers don’t know enough about IT to realize something is wrong when a hacker can set up an email addy, which is only possible by accessing their system, or that of their host (Unlikely as most banks will ‘Host’ their own systems).

superscaper

The_Watchman wrote: »

But the thing that makes me concerned is the email was from their domain, so it was either an inside job or there so called secure system was compromised for some one to set an email addy through them.

But I bet the banks are hoping us mere [STRIKE]peasants[/STRIKE] customers don’t know enough about IT to realize something is wrong when a hacker can set up an email addy, which is only possible by accessing their system, or that of their host (Unlikely as most banks will ‘Host’ their own systems).

How do you know the email was from their "domain"? I mean I could send someone an email right now appearing from [EMAIL="security@hsbc.co.uk"]security@hsbc.co.uk[/EMAIL]. It's the IP that matters in terms of where an email came from. Are you talking about the from/reply to field or origin data in the header? I've never known of a phishing scam to actually really uses the systems they're pretending to.

lisamummytoarchieplusbump

i get loads of these form various banks mostly halifax and abbey, they go into my junk folder automaticly anyway, but they are normaly "urgent account details need updating" or warning me that there is spam emails about and i need to log in to my account through this link to check my account.

seen as ive never been with these banks anyway i just delete.

my friends grandad recently got 40k of hes lifes savings nicked from hes bank as he got a phone call saying they was from hes bank and needed to check hes account details as someone had fraudntly took money from hes account. he can get abit confused sometimes as hes in hes 80s and gave hes details and he cant remember if he gave hes pin or not,

they have caught the people meant to be a gang of 11 doing this scam but he wont see that money again.

they send these email as if they send it to 100 people and just one person thinks it genuine and enters details then there scam works

so beware of phonecalls aswell

superscaper

lisamummytoarchieplusbump wrote: »

they send these email as if they send it to 100 people and just one person thinks it genuine and enters details then there scam works

I think it's much much worse than that. Considering with just taking spam as a whole, it only needs 1 positive response in 12.5 MILLION to be profitable. I think that really puts it into a context of why there's so much spam. So I imagine with phishing specifically, where there's a much bigger pay off for a single successful response, it only needs to be successful in a much smaller number than even general spam.

maxmycardagain

for a few minutes fun, click on the link and enter every abusive word you can as id and password and fake account details

fatou256

you can even do scam baiting which can be extremely funny .... those scammer will go at great lenght to get on some non-existant cash !

here below a link just to show how stupid are these people .....
http://419eater.com/html/hall_of_shame.htm