Phishing Scams and Phishing Reports at MillerSmiles.co.uk

     
 
Home
Search
Archives
News
Submit Scam
Articles
F.A.Q.
Forum
About Us
Contact Us
Links
 


 

your VISA card 4XXX XXXX XXXX XXXX: possible
fraudulent transaction

VISA


 

 
Scam Report
Date Reported: 29th January 2010 Whats this? Risk Level: MEDIUM-HIGH Whats this?
 
Details
 
Email Subject:
 your VISA card 4XXX XXXX XXXX XXXX: possible fraudulent transaction
Apparent Sender:
 VISA  Whats this?
Return Address:
 Not found Whats this?
Email Format:  HTML Whats this?
 
URL of Web Content:
 http://sessionid081SPQF.cforms.visa.com.grtefra.co
 .uk/secureapps/vdir/cholderform.php?ref13782422122
 65588313858722816635194870789083922193&email=rick@
 lavelle.net
  Whats this?
Anchor text of URLs:
 1)
http://sessionid081SPQF.cforms.visa.com/secur
eapps/vdir/cholderform.php?refv51882938230201
646611414382874792608917504044897603423476710
6&email=rick@lavelle.net Whats this?
Location:
 Location not available Whats this?
 
Scam number:
 7521-99065-319842
 
Comments:
  • Email asks you to confirm/update/verify your account data at VISA by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.


  • VISA never send their users emails requesting personal details in this way.


  • The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!


     
Content
 
 


Dear VISA card holder,

A recent review of your transaction history
determined that your card was used at an ATM
located in Kenya, but for
security reasons the requested transaction
was refused. You need to complete the VISA
Card Holder Form. You can do this
by clicking the link below:

HTTP://SESSIONID081SPQF.CFORMS.VISA.COM/SECU
REAPPS/VDIR/CHOLDERFORM.PHP?REFV5188293823020
164661141438287479260891750404489760342347671
06&EMAIL=RICK@LAVELLE.NET


VISA Cards...



Click for full size image
 
Website:    
 

Click for full size image
 
  See our most recent scam reports Browse our scam report archives Search


Please send us any scam/phishing emails you have received by reporting them here

For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service

If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.

We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.