Bogus Rabobank Notifications Attack Internauts in the Netherlands
Softpedia.com reported on 17th February, 2014 stating a warning of security experts of security firm MX Lab as "Users in the Netherlands are advised to look for fake emails impersonating Rabobank, the famous Dutch Bank headquartered in Utrecht."
They observe that the fake emails come from a spoofed address: "IBAN/Rabobankoveropiban@iban.nl".
The phishing email asserts that all European expenses need a valid IBAN (International Bank Account Number) from 1st August, 2014 to be processed in the SEPA province and to be part a part and parcel of the transition, the recipient of the email needs to order for an IBAN payment card.
The URL embedded in the email leads you to a fake website but while accessing the site via Firefox (on MacOSX), it is not highlighting any possible security threat.
First, the screen welcomes the visitor and asks the visitor to click the button to continue.
Second, it asks the recipient's personal details like name, birthday, account number and expiry date.
Experts of MX Lab highlight that once the information is given to the cybercriminals, users are told to wait for 3-5 days to receive the cards which they ordered.
According to security experts, it is alarming that phishing emails campaign like above types are increasing in Netherlands which has also been echoed recently by the statistics of online media outlet Fraud Helpdesk. According to Fraud Helpdesk, nearly 28,000 online fraud cases came to light in 2013 in the Netherlands which include 22,000 cases of phishing and 6,000 cases of advance fee fraud or AFF.
As usual MX Lab recommends recipients not to comply any instructions given in email and do not submit any personal details about banking activities.
However, if the user has already become a victim of this phishing attack then he should contact Rabobank immediately to inform that his information has been compromised in a phishing incident. The victim should also forward the scam emails to firstname.lastname@example.org which will assist the Bank to investigate. Meanwhile, the Bank recommends users to visit the website of the Bank to know about safe online banking.
» SPAMfighter News - 25-02-2014