Phishing Scams and Phishing Reports at MillerSmiles.co.uk

     
 
Home
Search
Archives
News
Submit Scam
Articles
F.A.Q.
Forum
About Us
Contact Us
Links
 


 

NEW MESSAGE FROM USAA

USAA


 

 
Scam Report
Date Reported: 20th May 2015 Whats this? Risk Level: MEDIUM-HIGH Whats this?
 
Details
 
Email Subject:
 NEW MESSAGE FROM USAA
Apparent Sender:
 USAA  Whats this?
Return Address:
 service@service.com Whats this?
Email Format:  HTML Whats this?
 
URL of Web Content:
 https://ci5.googleusercontent.com/proxy/oHBEB8VP6D
 GaxMPdnbnctipZ-b4Fa286pnu1Euvbzv4YYlz20zkhAnQnWDf7
 hpbwluDNOxfG_29WVAHHQZdvGDemda2hT3I=s0-d-e1-ft#htt
 p://cf.htcreative.com/insurance/logos/usaa.jpg
  Whats this?
Anchor text of URLs:
 1)
https://ci5.googleusercontent.com/proxy/oHBEB
8VP6DGaxMPdnbnctipZ-b4Fa286pnu1Euvbzv4YYlz20z
khAnQnWDf7hpbwluDNOxfG_29WVAHHQZdvGDemda2hT3I
=s0-d-e1-ft#http://cf.htcreative.com/insuranc
e/logos/usaa.jpg Whats this?
Location:
 MOUNTAIN VIEW, CALIFORNIA, UNITED STATES Whats this?
 
Scam number:
  23705-67446-264960
 
Comments:
  • Email asks you to confirm/update/verify your account data at USAA by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.


  • USAA never send their users emails requesting personal details in this way.


  • The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!
     
Content
 
 
X-Spam-Flag: YES
X-Spam-Status: Yes, score=7.6 required=5.0
tests=HTML_IMAGE_ONLY_08,

HTML_MESSAGE,MISSING_MID,SUBJ_ALL_CAPS,T_REMO
TE_IMAGE,URI_GOOGLE_PROXY,
URI_WP_HACKED autolearn=disabled
version=3.3.1
X-Spam-Report:
* 1.6 SUBJ_ALL_CAPS Subject is all capitals
* 0.0 HTML_MESSAGE BODY: HTML included in
message
* 1.8 HTML_IMAGE_ONLY_08 BODY: HTML: images
with 400-800 bytes of words
* 0.1 MISSING_MID Missing Message-Id:
header
* 1.0 URI_GOOGLE_PROXY ...

 
Website:    
 
 
  See our most recent scam reports Browse our scam report archives Search


Please send us any scam/phishing emails you have received by reporting them here

For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service

If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.

We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.

 
 
 


© Copyright 2003-2024 MillerSmiles.co.uk All Rights Reserved.

Privacy Policy - About Us - Contact Us