Debunking email hoaxes and exposing Internet scams since 2003!

Hoax-Slayer Logo Hoax-Slayer Logo

Home    About    New Articles    RSS Feed    Subscriptions    Contact
Bookmark and Share

Issue 137 - August 2012 (2nd Edition) - Page 31

Telstra Bill Account Update Phishing Scam

Issue 137 Start Menu

Previous Article            Next Article

Email purporting to be from Australian telecommunications provider, Telstra, claims that the company has detected a billing error or was unable to process a recent payment and the recipient is therefore required to click a link and update billing information or risk interruption to service.

Brief Analysis
The email is not from Telstra and the claim that there is a problem with a payment is untrue. The message is a phishing scam designed to trick Telstra account holders into supplying personal and financial information to Internet based criminals.

Bookmark and Share
Detailed analysis and references below example.

Scroll down to submit comments
Last updated: July 31, 2012
First published: 19th July 2010
Article written by Brett M. Christensen
About Brett Christensen and Hoax-Slayer

(Submitted, July 2012)
Subject: Services Cancellation Notice

Telstra BigPond Billing and Account Management
BigPond Billing Alert - Credit Card Authorization Failure ( CaseID - 9219579 )

Dear BigPond valued member,
During our monthly account maintenance and verification procedures, our billing and account management department was unable to authorize your current payment method information.

This might be due to one or more of the following reasons:

1. A recent change in your personal registered user information ( i.e. change of address, phone number, credit card )
2. Submitting invalid information during the initial registration or upgrade process.
3. An inability to accurately verify your BigPond billing information due to an internal error within our billing processors.

Please use the following link and update your billing information :

[Link removed]

NOTE! If your account information is not updated within the next 48 hours then your ability to use any services provided by BigPond such as broadband, wireless, adsl, cable, dialup and email might become restricted.

Thank you for using BigPond !

Please do not reply to this e-mail, as this is an unmonitored alias.
BigPond is a Registered trade mark of Telstra Corporation Limited. ABN 33 051 775 556.

Signature: NZ8fc41slde1a2WtcCHrlF3nJeE3CpSHjJwdoyRcMkYKnEZMBmR

(Submitted, July 2010)
Subject: Telstra Bill - Account Update Needed

Dear Customer,
This e-mail has been sent to you by Telstra BigPond to inform you that we were unable to process your most recent payment of bill.This might be due to either of the following reasons:

1. A recent change in your personal information. (eg: billing address, phone)
2. Submitting incorrect information during bill payment process
3. An inability to accurately verify your selected option of payment due to an internal error within our processors.

Due to this, to ensure that your service is not interrupted, we request you to confirm and update your billing information today by clicking here. If you have already confirmed your billing information then please disregard this message as we are processing the changes you have made. Kind regards,
Telstra BigPond Billing Department, 2010. All rights reserved

Detailed Analysis
This email, which purports to be from Australian telecommunications giant, Telstra, informs the recipient that the company was unable to process a recent bill payment. The email claims that, unless the account holder follows a link in the message to confirm and update billing information, his or her Telstra service may be interrupted. The email arrives complete with the Telstra logo and a seemingly genuine Telstra sender address.

However, the email is certainly not from Telstra and the information about a payment problem is a lie. In reality, the email is a phishing scam designed to trick Telstra customers into handing over their personal and financial information to Internet criminals. The link in the phishing scam email is disguised to make it appear that it leads to the genuine Telstra site. The sender address of the email is also disguised in such a way that it appears to have originated from Telstra.

The following screen shots illustrate how the scam works.

When a recipient clicks on the link on the scam email as instructed, he or she is taken to the website shown in this screen capture:

Telstra Phishing Scam Login Page

If a victim enters the requested login details and clicks the "Next" button, he or she will then be taken to the following online form:

Telstra Phishing Scam Bogus Web Form

If the victim supplies all of the requested information and again clicks the "Next" button, he or she is taken to a final "Confirmation" message:

Telstra Phishing Scam Bogis Confirmation Page

The phishing website uses Telstra logos, graphics and formatting to make it appear more genuine to potential victims. Once a victim reaches the final "confirmation" page shown in the above screenshot he or she is automatically redirected to the real Telstra website, which furthers the illusion that the bogus web pages are part of the company's genuine site.

All information, including login details, entered on the bogus web pages can be collected by criminals and used for credit card fraud and identity theft.

During a phishing attack, scammers will send out many thousands of such bogus email messages. Given Telstra's extensive customer base throughout Australia, many recipients will hold a Telstra account, for fixed phone or mobile service and/or for Internet service via Telstra BigPond. Thus, even if only a handful of the large number of Telstra customers that are likely to receive this scam email actually fall for the ruse and supply the requested information, the scam will pay off very well for these scammers.

Telstra (or BigPond) will never send customers unsolicited emails requesting them to provide financial and personal information via links in the message. Phishing is a very common type of scam that targets customers of many companies and financial institutions all around the world. If you receive any unsolicited email from a company or other institution that asks you to click an included hyperlink or open an attached file and provide sensitive personal information, then you should view the message with the utmost suspicion. If you have any doubts at all about the veracity of the email, contact the institution directly to check. Never click on a link in an email in order to access the website of a bank or other institution that may be the target of scammers. The safest method is to manually enter the URL of the institution's website into your browser's address bar.

Bookmark and Share References
Phishing Scams - Anti-Phishing Information
Phishing in the Big Pond
Telstra: What types of Telstra and BigPond hoax emails are currently circulating?

Previous Article            Next Article

Issue 137 Start Menu

Pages in this issue:
  1. Anti Text-Driving Message - Car Wedged Under Truck Image
  2. Nationwide Phishing Scam Emails
  3. Faux Image - Double Sunset on Mars
  4. Microsoft Cyber-Crime Department Phishing Scam
  5. Does A Photo Depict A Puppy Being Forced to Drink Vodka?
  6. Post Circulating Claims Hotel Made Disabled US Veteran Crawl Down Stairs
  7. AFL vs NRL - Wrongdoings of Australian Members of Parliament Hoax
  8. Phishing Scam
  9. Another Facebook Sick Baby Hoax - Baby With Brain Cancer
  10. Circulating Opinion Piece - 'Democratic, Republican Liberal-Progressive's Worst Nightmare'
  11. Fake Three (Or Seven) Headed Snake Image
  12. Misleading Health Advice Email - 'Mayo Clinic on Aspirin and Heart Attacks'
  13. Facebook Survey Scam - Free Argos Gift Card
  14. 'Email Deactivation Warning' Phishing Scam
  15. Anti-Obama Youtube Video Compiles Multiple Conspiracy Theories
  16. Fake AT&T Bill Emails Point To Malware
  17. Messages Claim Coca Cola to be Banned In Bolivia
  18. 'Free Apple Product' Text Message Survey Scam
  19. Circulating Warning - Facebook May Close Down Animal Rescue Account'
  20. 2012 FIFA World Cup Online Lottery Advance Fee Scam
  21. Email Claiming US Gold Medal Gymnast Gabrielle Douglas Faces Lifetime Ban Used to Spread Malware
  22. Bigpond Security Service Phishing Scam
  23. Wrestling Star John Cena is NOT Dead
  24. Hoax - NASA Predicts Total Blackout of Planet in Dec 2012
  25. Wrestling Star Undertaker is NOT Dead
  26. Colin And Chris Weir Donation Programme Advance Fee Scam
  27. US EPA Regulations Force Power Plant Closures
  28. 'View Facebook Followers' Scam Targets Twitter Users
  29. Lloyds TSB 'New Banking Authentication' Phishing Scam
  30. Faux Image - Pilots Protesting Chemtrails
  31. Telstra Bill Account Update Phishing Scam
  32. McDonald's Signboard Supporting Chick-Fil-A
  33. ABSA 'Authorized EFT Payment Received' Phishing Scam
  34. Hoax Picture - Obama Holding Phone Upside Down
  35. 'eBay Item Not Received' Phishing Scam Email
  36. Wells Fargo 'Security Check' Phishing Scam
  37. False Warnings - 'Cleaning out Friends List' Questions on Facebook Contain Viruses or are Posted by Hackers