13th December 2003
(followed by a
case number and
the date sent)
text and a
link to a fake
billing form page
Spoofed Web page/site?
forged AOL Billing
page with web form
requiring AOL user
name & password,
name & address,
Bank & Credit or
Web page/site origin
Identity Theft method
Web form information
is captured and
relayed to the
scammers via a CGI
form processing service
netfirms.com, while you
are sent to a
genuine AOL page
Bank Email Scam
See our guide to
See our guides to
Billing Problem Email Phishing Scam
13th December 2003
This AOL Billing Problem Email is a scam
This email is a ruse to get you to give up your name,
address, AOL username, password, credit or debit card and bank details
The email contains a link to a
forged AOL billing form, where the above details are requested.
This fake AOL form is hosted by cjb.net (a free URL
hosting or forwarding service).
Any information entered into this bogus AOL form is
captured and sent on, using a form processing CGI script
located at netfirms.com, to the scammers' Netscape email address - firstname.lastname@example.org.
This happens invisibly, and the user will only see a genuine AOL page
We also found a message embedded in the code of the
fake AOL page, which said " Official AOLBillingCenter
LAST Version : July 25 2003. Sorry guys, this page is as good as it gets,
i hope you enjoyed the ride :*( ". A somewhat
cheeky note by the scammers which should remind us of the often sheer
audacity of their scams.
informed of the latest Spoof Email Phishing Scams with either of our FREE alert services...
Add your email address to our email alert service...
Tap into our Scam Alert service using your News Reader or Aggregator (including
Scam Alert News Feed
You can even put the latest alerts on your own web
remember that it
is very common for these email phishing scams to be redistributed at a
later date with only slightly different content or the same but with the fake
page(s) hosted by a different provider. Also, once you have received one of these
hoaxes, it is also common place to receive at least another one and
usually a day or two after the first, although not necessarily from the same
apparent sender. Be on your guard!
Take a good look at the following images, because
this email phishing scam may be coming to an inbox near you!
The Email ...