< Issue 137 - August 2012 (2nd Edition) - Page 2 Debunking email hoaxes and exposing Internet scams since 2003!

Hoax-Slayer Logo Hoax-Slayer Logo

DividerDivider
Home    About    New Articles    RSS Feed    Subscriptions    Contact
DividerDivider


Site Navigation










Issue 137 - August 2012 (2nd Edition) - Page 2

Nationwide Phishing Scam Emails

Issue 137 Start Menu

Previous Article            Next Article

Outline
Series of emails purporting to be from UK based financial institution, Nationwide urge recipients to click links in the messages in order to rectify supposed account problems.



Brief Analysis
The emails do not come from Nationwide. Instead they are sent by online criminals intent on tricking Nationwide customers into divulging their account login details.

Bookmark and Share
Detailed analysis and references below example.

Enter your email address to subscribe to the Hoax-Slayer Newsletter:






Last updated: August 14, 2012
First published: August 14, 2012
Article written by Brett M. Christensen
About Brett Christensen and Hoax-Slayer


Examples

Subj: Nationwide Account Notification

Dear Valued customer,

We are committed to protect your account
with the best technology adopted to keep your details safe
and dedicated teams to monitor online activities and intercept any suspicious actions.

Click Here To Proceed

Thank you for your Co-operation
Customer Service

Nationwide Building Society-Internet Banking


Subj: Nationwide Account Notification

Dear Nationwide customer,

Due to the fraudulent activities noticed on our online banking, we have decided to make an Update page for your account for security reasons
and to prevent you and your account from fraudulent activities. This update is compulsory for every customer.

As part of our ongoing commitment to provide safe online experience and protection to all our customers,
we are requiring each Customer to Update their account using the new secured servers.

Please Update your online banking account by clicking on the secure link provided below:

[Link removed]

Thanks for your co-operation.

Fraud Prevention Unit
Legal Advisor
© Nationwide Bank plc 2012


Subj: Nationwide:Important Alert

Dear Customer:

Your Secure login details seem to have been compromised.

Please log in to the secure link below, and verify your security

details to avoid an unnecessary suspension of your account.

To log in and verify your account click go here :

Online Banking Secure Login Page

Note:

This e-mail was sent on behalf of the online banking community, If you do not have an online banking with Nationwide Internet Banking ignore this message.

Thank you.
Customer Service
Nationwide Internet Banking, Member FDIC.
© 2012 Nationwide Internet Banking Corporation. All Rights Reserved.


Subj: Important Information!


Important Information

Dear Customer,

You have an incoming payment slated for your account. This transaction cannot be completed due to errors present in your account information's .

Please note that the we shall have no liability if you are unable to use Internet Banking because of the failure of any machine, data processing system or transmission link or anything else beyond our, or our agents reasonable control.

We have taken reasonable steps to ensure that electronic mail and other transmissions passing over the Internet are not interfered with by third parties. However, we cannot guarantee the privacy or confidentiality of any information passing over the internet or that it will not be interfered with.

You are required to click on the link below to fix this problem immediately.

[Link removed]

© Nationwide Building Society is authorised and regulated by the Financial Services Authority under registration number 106078. Credit facilities other than regulated mortgages are not regulated by the Financial Services Authority. You can confirm our registration on the FSA’s website, www.fsa.gov.uk or by contacting the FSA on 0300 500 5000.




Detailed Analysis
Customers of UK based building society Nationwide, have recently been targeted in a series of phishing scams. Emails warning of various Nationwide account security or payment issues have been randomly distributed to many thousands of inboxes. The urgent sounding messages ask recipients to click a link in order to rectify the problem and warn that failure to comply with the requests may result in account suspensions or compromised account security. Some variants ask users to open an attached file rather than click a link.

Clicking the link or opening the attachment reveals a fraudulent Nationwide "login" website. The fake pages on the site ask users to submit their Nationwide customer number followed by the memorial data, banking pin and passnumber associated with the account. The fake pages include seemingly genuine Nationwide graphics, logos and formatting to make them appear legitimate. After victims have submitted the requested login details on the fake website, they will be automatically redirected to the real Nationwide website.

Meanwhile, the scammers are able to collect all of the submitted details and use them to hijack the real Nationwide accounts of their victims. Nationwide has published information about such phishing attacks on its website.

Phishing is a very common criminal ploy that targets customers of many financial institutions all around the world. Legitimate banks or other online services are very unlikely to send generic emails that urge users to click a link or open an attachment to rectify an account problem. If you receive such an email, do not click any links or open any attachments that it may contain.

It is always safest to access your online accounts by entering the account web address into your browser's address bar rather than by clicking a link in an unsolicited email.

Bookmark and Share



References
Nationwide - Online fraud
Phishing Scams - Anti-Phishing Information

Previous Article            Next Article

Issue 137 Start Menu

Pages in this issue:
  1. Anti Text-Driving Message - Car Wedged Under Truck Image
  2. Nationwide Phishing Scam Emails
  3. Faux Image - Double Sunset on Mars
  4. Microsoft Cyber-Crime Department Phishing Scam
  5. Does A Photo Depict A Puppy Being Forced to Drink Vodka?
  6. Post Circulating Claims Hotel Made Disabled US Veteran Crawl Down Stairs
  7. AFL vs NRL - Wrongdoings of Australian Members of Parliament Hoax
  8. Three.co.uk Phishing Scam
  9. Another Facebook Sick Baby Hoax - Baby With Brain Cancer
  10. Circulating Opinion Piece - 'Democratic, Republican Liberal-Progressive's Worst Nightmare'
  11. Fake Three (Or Seven) Headed Snake Image
  12. Misleading Health Advice Email - 'Mayo Clinic on Aspirin and Heart Attacks'
  13. Facebook Survey Scam - Free Argos Gift Card
  14. 'Email Deactivation Warning' Phishing Scam
  15. Anti-Obama Youtube Video Compiles Multiple Conspiracy Theories
  16. Fake AT&T Bill Emails Point To Malware
  17. Messages Claim Coca Cola to be Banned In Bolivia
  18. 'Free Apple Product' Text Message Survey Scam
  19. Circulating Warning - Facebook May Close Down Animal Rescue Account'
  20. 2012 FIFA World Cup Online Lottery Advance Fee Scam
  21. Email Claiming US Gold Medal Gymnast Gabrielle Douglas Faces Lifetime Ban Used to Spread Malware
  22. Bigpond Security Service Phishing Scam
  23. Wrestling Star John Cena is NOT Dead
  24. Hoax - NASA Predicts Total Blackout of Planet in Dec 2012
  25. Wrestling Star Undertaker is NOT Dead
  26. Colin And Chris Weir Donation Programme Advance Fee Scam
  27. US EPA Regulations Force Power Plant Closures
  28. 'View Facebook Followers' Scam Targets Twitter Users
  29. Lloyds TSB 'New Banking Authentication' Phishing Scam
  30. Faux Image - Pilots Protesting Chemtrails
  31. Telstra Bill Account Update Phishing Scam
  32. McDonald's Signboard Supporting Chick-Fil-A
  33. ABSA 'Authorized EFT Payment Received' Phishing Scam
  34. Hoax Picture - Obama Holding Phone Upside Down
  35. 'eBay Item Not Received' Phishing Scam Email
  36. Wells Fargo 'Security Check' Phishing Scam
  37. False Warnings - 'Cleaning out Friends List' Questions on Facebook Contain Viruses or are Posted by Hackers