Phishing Scams and Phishing Reports at MillerSmiles.co.uk

     
 
Home
Search
Archives
News
Submit Scam
Articles
F.A.Q.
Forum
About Us
Contact Us
Links
 


 

Your Online Account Has Been Temporarily
Prevented

Natwest


 

 
Scam Report
Date Reported: 7th December 2010 Whats this? Risk Level: MEDIUM Whats this?
 
Details
 
Email Subject:
 Your Online Account Has Been Temporarily Prevented
Apparent Sender:
 Natwest Whats this?
Return Address:
 service@embarqnatwest.co.uk Whats this?
Email Format:  HTML Whats this?
 
URL of Web Content:
 http://polidori.lu/homepage/online/natwestbank/upd
 ateaccount/Log%20in.php
  Whats this?
Anchor text of URLs:
 1) Logon Here Whats this?
Location:
 Location not available Whats this?
 
Scam number:
 14505-205228-480734
 
Comments:
  • Email asks you to confirm/update/verify your account data at Natwest by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.


  • Natwest never send their users emails requesting personal details in this way.


  • The spoof website this email links to was not online at time of this report, but variations of the scam which link to working websites are bound to exist, so be wary! The website may have been taken down or disabled by the hosts, but quite often these websites are hosted on the personal computer of the phishers, so may only be online at certain times.


     
Content
 
 

Dear Valued Customer,
For your security, Natwest Banks safeguards
your account when there is a possibility that
someone other than you is
attempting to sign on.
For immediate access to your account, please
click below to proceed.
LOGON HERE
Thank you for helping us keep your account
safe.
Natwest Online Banking
Online Security Team.

...



Click for full size image
 
Website:    
 
Website was not online when we checked. It returned the error 403
 
  See our most recent scam reports Browse our scam report archives Search


Please send us any scam/phishing emails you have received by reporting them here

For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service

If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.

We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.