BoA Clients Targeted with Phishing E-mail Citing Unusual Account Operation
According to security researchers, customers of Bank of America (BoA) need to be vigilant about fraudulent e-mails, which talk about unusual operation being conducted via their accounts; reported softpedia.com dated January 6, 2014.
Referring readers as BoA customers, the fake electronic mails notify that it was necessary to restrict the users' A/Cs and now they're required to do as directed within a given attachment, so total access to their accounts can be restored.
Incidentally, the attachment contains one HTML file, which lifts details from the original BoA online site as well as one compromised website supported via www.eetkroegmanu.be.
The HTML file, which's an online form, directs users towards providing their name, birth date, mother's name before marriage, SSN (social security number), driver's license code, PIN and other payment card details, contact information, account's username and password, along with more confidential information.
The scammers cleverly retrieve images from the BoA website, while use the other site for harboring the filched details. Once they gather those details, they become capable of using the same for any malicious activity, particularly ID-theft, caution the researchers.
Meanwhile, according to Bank of America, it won't ever request its customers to answer by providing their PIN, ATM, SSN and other personal information in e-mail.
BoA further outlines certain security suggestions. First, no financial institution, like BoA in the above instance, will ever assert that the user's account could get restricted else closed incase he doesn't substantiate his private details over e-mail. Second, fraudulent e-mails and spoofed online sites often have grammatical errors and other typos, and possibly little sensible text or weak visual design.
Moreover, BoA officials advise that anyone getting a doubtful appearing e-mail, which purports to be from the bank, should send it right away at the bank's e-mail id email@example.com.
Meanwhile, this isn't an only instance, during the last few years, when scammers targeted BoA clients with one huge phishing e-mail attack. Back during April 2012, fake electronic mails were spotted that posed as messages from BoA while informed of irregular activity on recipients' accounts so the latter should click and authenticate their bank login particulars.
» SPAMfighter News - 1/13/2014