Search our Spoof Library...
Another Spoof Email and Phishing Scam report by MillerSmiles.co.uk - click this image to go to our home page.

Citibank Security Update
29th April 2004

please forward any scams you've received to spoof@millersmiles.co.uk

Report Summary
Date Reported
29th April 2004
Apparent Sender
Citibank
Return Address
csupport6@citibank.com
Subject
Citibank Security Update
Format
HTML
Method
disguised link leads to bogus web content
Bogus Web Content?
Yes
URL of web content
http://citibank-validate.info/ which is coded and scripted to open 2 browser windows - one has the genuine citibank.com home page and the second is a forged page in a pop up style window giving the impression that the forged page is generated by the genuine page.
RISK LEVEL
HIGH
WARNINGS

1. Employs script to open the genuine citibank.com home page as a backdrop to the forged page which is opened in a pop up style window.
2. Submitted form data is captured by a local (located in the same web space as the forgery) PHP script.
3. citibank-validate.info is not a domain owned by Citibank, but has been specially created to fool email recipients into thinking that they really are visiting a genuine Citibank domain.
4. The bogus domain resolves to ultradns.net

 

" Dear Valued Customer, Our new security system will help you to avoid frequently fraud transactions and to keep your investments in safety. "...

 

If you have received this email, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content or the same but with the fake page(s) hosted by a different provider. Also, once you have received one of these hoaxes, it is also common place to receive at least another one and usually a day or two after the first, although not necessarily from the same apparent sender.

 

The Spoof Email ...

Citibank Security Update - forged email

 

The bogus web page (the pop up style window, which opens in front of the genuine page, contains the forged content) ...

Citibank Security Update - forged web content.

 

Stay informed of the latest Spoof Email Phishing Scams with either of our FREE alert services...
 

Stay informed of the latest Spoof Email Phishing Scams with either of our FREE alert services...

Email Alerts
Add your email address to our email alert service...
Subscribe

Privacy Policy

RSS News Feed
Tap into our Scam Alert service using your News Reader or Aggregator (including My Yahoo!).
Scam Alert News Feed

You can even put the latest alerts on your own web site.

Click here to learn more about RSS News Feeds and our Scam Alert Service!

Resources links - use one of the links below to access more information on Spoof Email & Phishing Scams.

Library of Spoof Email Phishing Scams

Brief guide to Phishing

Full article on spoof email scams

Spoof URL Checker

Link Checker

Browser URL Spoofing Vulnerability Check

Latest browser bug aids Phishing Scams - beware!

Destinations - other resources available on the MillerSmiles.co.uk web site.

Click the arrow to return to previous page

Home

Guides...

Book Terminology

How to identify a first edition book

Auction Watcher

List of the main Auction Sites world wide