Issue 139 - September 2012 (2ndt Edition) - Page 22
American Express 'Security Verification' Phishing Scam
Email purporting to be from American Express claims recipients must open an attached file and fill in a form in order to verify their American Express account information.
The email is not from American Express. It is a phishing scam designed to trick recipients into divulging financial and personal information to Internet fraudsters.
Detailed analysis and references below example.
Scroll down to submit comments
Last updated: September 3, 2012
First published: September 3, 2012
Article written by Brett M. Christensen
About Brett Christensen and Hoax-Slayer
Subject: Your American Express Membership Security Verification®
During your regulry scheduled accounts manintenance verification procedure,we have detected a slight error regarding your American Express Account.
This might be due to one of the following reasons.
1. A recent change in your personal information (i.e address changing)
2. Submitting invalid information during sign up process
3. Multiple failed logins in your personal account
4. An inability to accurately verify your selected optional payment due to an internal error within our system
Please verify your information by Downloading the Attachment file and open in a browser to Continue
*If your account information is not verified within 48 hours then your ability yo access your account will be restricted.
American Express Company
Copyright © 2012 American Express Company. All right reserved.
Screenshot of attached file:
According to this email, which claims to be from American Express, a "slight error" has been detected in the recipient's American Express account that needs to be rectified. The message claims that, unless the recipient opens an attached file and verifies account information within 48 hours, access to the account will be restricted.
However, the email is in fact a scam and has no connection with American Express whatsoever. Those who fall for the ruse and open the attached file will be asked to provide a large amount of personal and financial information via a web form that opens in their browser. The supposed "Card Membership Verification" form asks for credit card details, including the card's ATM PIN as well as the user's social security number and other identifying information along with address and contact details. The form even asks the user to provide a password for his or her email account.
But, alas, all of the information submitted on the fake form will be sent to online criminals and subsequently used to steal the identities of victims as well as use their credit card details to conduct fraudulent transactions.
The scammers may also hijack the email accounts of victims and use the compromised accounts to conduct further spam and scam campaigns.
American Express would never
ask its customers to verify account details by filling in an unsecure form contained in an email attachment or accessed via a clicked link. Nor would any other legitimate financial entity. Such phishing scams are very common
. Other credit cards service providers, including Visa
, are also regularly targeted in similar phishing scams. Be wary of any email purporting to be from a financial service provider that claims that you are required to verify your account by clicking a link or opening an attachment. This is a very common criminal ploy. If you receive such an email, do not click on any links or open any attachments that it contains.
It is always safest to login to your online accounts by entering the account web address into your browser's address bar.
Phishing Scams - Anti-Phishing Information
Verified By Visa Phishing Scam
Pages in this issue:
- PayPal 'Refund Pending' Phishing Scam
- Tom Kenny, Voice of SpongeBob Is NOT Dead
- Facebook Post Claims Dog Saved Puppies From House Fire
- HM Revenue & Customs Income Tax Repayment Phishing Scam
- Did Samsung Pay a $1 Billion Fine to Apple in 5 Cent Coins?
- Student Finance England 'Payment Cancelled' Phishing Scam
- All-In-One Shopping Voucher Malware
- Morgan Freeman is NOT Dead
- NatWest 'Account Locked' Phishing Scam
- 'Causes' Petition Calling To End Using Dogs As Shark Bait
- Young Football Player Not Allowed to Wear Pink Gloves For Breast Cancer
- Photo Sharing Request for 'Pray For Rosalie'
- Misleading Warning about Missed Calls From +375 and +371 Numbers
- 'Catholic Charities Organization' Money Laundering Scam
- Facebook Survey Scam - Free $500 Woolworths Gift Voucher
- 'Windows Live Update' Sector Zero Virus Hoax
- Killer Piranha Attack Images
- Circulating Image Implies Heineken Supports Dog Fighting
- Another Sick Baby Hoax - Like, Comment or Share to Help Baby With Large Mass on Her Back
- ACMA 'Security Upgrade' Phishing Scam
- 'Circle of Safety' - Child Stuck in Wheel Well Photograph
- American Express 'Security Verification' Phishing Scam