Phishing Scams and Phishing Reports at MillerSmiles.co.uk

     
 
Home
Search
Archives
News
Submit Scam
Articles
F.A.Q.
Forum
About Us
Contact Us
Links
 


 

View Your Account (Action Required)

Citibank


 

 
Scam Report
Date Reported: 11th July 2008 Whats this? Risk Level: MEDIUM Whats this?
 
Details
 
Email Subject:
 View Your Account (Action Required)
Apparent Sender:
 Citibank Whats this?
Return Address:
 < accounts@citibank.com > Whats this?
Email Format:  HTML Whats this?
 
URL of Web Content:
 http://ctccarpentry.com/ css/l.do.htm Whats this?
Location:
 NJ, US Whats this?
 
Scam number:
 aa-7416
 
Comments:
  • Email asks you to confirm/update/verify your account data at Citibank by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.


  • Citibank never send their users emails requesting personal details in this way.


  • The REAL URL of the spoof website is disguised as "https://web.da-us.citibank. com/cgi-bin/citifi/update/l/l.do".


  • The REAL URL of the spoof website looks nothing like the actual Citibank URL.
     
Content
 
 
 
"Dear Citibank Online Customer:"

Dear Citibank Online Customer:

It has come to our attention that your Citibank account information needs to be updated as part of our continuing commitment to protect your account and to reduce the instance of fraud on our website. Due to your recent account activity, we are kindly asking you to confirm that ONLY you manage your Citibank account, and the recent money transfers were made by you.

If you did not effectuated the money transfers, you can confirm by logging to your account and filling up the verification procedure here:
https://web.da-us.citibank.com/cgi-bin/citifi/update/l/l.do
Once you have updated your account records, your Citibank account be fully protected.

Thank you for banking with Citibank. Citibank Security
 
Website:    
 
 
  See our most recent scam reports Browse our scam report archives Search


Please send us any scam/phishing emails you have received by reporting them here

For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service

If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.

We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.