Phishing in the Big Pond
Published on 2nd July 2010 by Brett M. Christensen
Like many other online entities, Australian based Internet Service Provider, BigPond has lately been targeted by phishing scammers. I have recently received a number of submissions similar to the example below. The emails, which look like official BigPond messages and often contain seemingly genuine BigPond logos, claim that the recipient must log on to his or her account to rectify a problem. However, the messages are not from BigPond at all. Instead, they are phishing scams designed to trick users into submitting their username and password along with other sensitive information such as credit card details and address, contact and identification details. Clicking the link in the email opens a bogus website, which has been created to closely resemble a genuine BigPond page.
An example of one of these BigPond phishing scam emails:
BigPond billing department is sending you this e-mail to notify you that we are unable to verify your BigPond account profile due to a recent change in your address,email,phone number.
Due to this issue you are requested to confirm your bigpond account profile By Clicking Here.
If you have already confirmed your billing information then please disregard this message as we are processing the changes you have made.
Be wary of any email that claims that there is a problem with your account that requires you to click a link or open an attachment to supply login credentials and/or other private personal information. Legitimate organizations, including Bigpond do not ask customers to supply such information via unsolicited emails.
Phishing Scams - Anti-Phishing Information