Cimb bank phishing emails

While checking my email I found some very interesting emails that had the subject “URGENT : Your account has been locked!?”. Curiously I open the email and found the email seem like originated from CIMB bank and everything seem like legitimate. But after checking the email header, it reveal that this was one of those sinister phishing emails !

! PLEASE BE CAREFUL WHEN EVER YOU SUBMIT PRIVATE INFORMATION ON THE INTERNET

Original email

URGENT : Your account has been locked!?
From: ??? Cimb Bank (directaccess@cimb.com)
Medium risk You may not know this sender. Mark as safe|Mark as unsafe
Sent: ??? Thu 12/18/08 3:38 AM
To: ??? xxxxx@hotmail.com

Dear CIMB Bank customer,

We are hereby notifying you that we’ve recently suffered a DDos-Attack on one of our’s Internet Banking server. For security reasons you must complete the next steps to verify the integrity of your CIMBClicks account. If you fail to complete the verification in the next 24 hours your account will be suspended.

Here’s how to get started:

1. Log in to CIMBClicks online account (click here).

2. You must request for TAC online via CIMBClicks – your TAC will be sent via SMS to the mobile phone number you registered at the ATM.
( you can find the “request TAC” button in the left menu of your account )

3. Logout from your account and close the browser.

4. When you have received the TAC (Transaction Authorization Code) on your mobile phone, Log in to our secured verification server and submit the requested information(Account user ID, password and TAC).CLICK HERE to go on our secured server.

5. Please allow 48 hours for processing.

Please comply and thanks for understanding.
? 2008 CIMB Bank

Note: Please do not reply to this email.
This mailbox is not monitored and you will not receive a response.

Email header

X-Message-Delivery: Vj0xLjE7dXM9MDtsPTA7YT0wO0Q9MjtTQ0w9NA==

X-Message-Status: n:0

X-SID-PRA: Cimb Bank <directaccess@cimb.com>

X-Message-Info: 6sSXyD95QpV9b1HIovoQ3yEqm18bmFywfTcVjlyzhlTpe72ULF4Zm0qCAcYbqzFTWHNDbI6ZUh/rCLwV1US5aL3FeGOTm8h5

Received: from 98402-app1.bevivid.co.uk ([212.100.249.99]) by bay0-mc2-f10.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2668);

Tue, 16 Dec 2008 23:38:05 -0800

Received: (qmail 25814 invoked by uid 48); 15 Dec 2008 05:40:14 +0000

Date: 15 Dec 2008 05:40:14 +0000

Message-ID: <20081215054014.25806.qmail@98402-app1.bevivid.co.uk>

To: xxxxx@hotmail.com

Subject: URGENT : Your account has been locked!

From: Cimb Bank <directaccess@cimb.com>

Reply-To:

MIME-Version: 1.0

Content-Type: text/html

Content-Transfer-Encoding: 8bit

Return-Path: anonymous@98402-app1.bevivid.co.uk

X-OriginalArrivalTime: 17 Dec 2008 07:38:05.0261 (UTC) FILETIME=[65F2FFD0:01C9601A]

December 19, 2008 | Filed Under Life, Tech 
Your Ad Here

Comments

Leave a Reply

You must be logged in to post a comment.

server space web hosting transition backup Tech Ed SEA 2008 Tech·Ed SEA 2008 Limited Edition T-shirt MPLS freebies Microsoft TechEd SEA 2008 IP Bgp hosting Wine Registry Tweak blogging VMware phishing DHCP contest Putty Freeware Photography router Security Ubuntu Linux Cisco Microsoft Network