Phishing Attack Linked to Russian Server
Posted by: Timothy Weaver on 07/25/2017 10:43 AM
[
Comments
]
Hackers have not given up phishing attacks.
According to HackRead, a new campaign is underway that is targeting Bank of America customers. The purpose seems to be to steal credit card details and personal information. What HackRead also found out was that the attack is hosted on a Russian server.
The phishing email is a come-on asking if the victim wants their credit limit raised:
“You have same usage limits in order to protect your priority. The limits will be lifted after confirming your informations. You need just to confirm your information by follow the next steps: 1. Click the link below to open a secure browser window. 2. Confirm that you’re the owner of the account, and then follow the instructions,” the email reads.
The poor English should be a dead giveaway, but if a victim is duped into clicking on the provided link, they will be sent to a website that asks for logging in with Online IDs and passcode.
If the victim provides the information, a second form will then appear and ask for names, address, city, mobile number, card number, expiry date and CVV number.
Although it is not clear if the hackers behind the attack are Russians or are in any way linked to the government, the hosting provider has been notified, but it is not certain that they will take any action.
Source: SoftPedia
According to HackRead, a new campaign is underway that is targeting Bank of America customers. The purpose seems to be to steal credit card details and personal information. What HackRead also found out was that the attack is hosted on a Russian server.The phishing email is a come-on asking if the victim wants their credit limit raised:
“You have same usage limits in order to protect your priority. The limits will be lifted after confirming your informations. You need just to confirm your information by follow the next steps: 1. Click the link below to open a secure browser window. 2. Confirm that you’re the owner of the account, and then follow the instructions,” the email reads.
The poor English should be a dead giveaway, but if a victim is duped into clicking on the provided link, they will be sent to a website that asks for logging in with Online IDs and passcode.
If the victim provides the information, a second form will then appear and ask for names, address, city, mobile number, card number, expiry date and CVV number.
Although it is not clear if the hackers behind the attack are Russians or are in any way linked to the government, the hosting provider has been notified, but it is not certain that they will take any action.
Source: SoftPedia
Comments
