Debunking email hoaxes and exposing Internet scams since 2003!

Hoax-Slayer Logo Hoax-Slayer Logo

DividerDivider
Home    About    New Articles    RSS Feed    Subscriptions    Contact
DividerDivider


Site Navigation










Very.co.uk Shopping Voucher Phishing Scam

Outline
Email purporting to be from UK Shop Direct Group's online retailer Very, claims that the company is giving away £50 shopping vouchers and urges recipients to click a "log on" link to activate their free voucher.



Brief Analysis
The message is not from Very and there is no such voucher giveaway. The email is a phishing scam designed to trick users into submitting their personal and financial details to Internet criminals.

Bookmark and Share
Detailed analysis and references below example.

Enter your email address to subscribe to the Hoax-Slayer Newsletter:






Last updated: August 28, 2012
First published: August 28, 2012
Article written by Brett M. Christensen
About Brett Christensen and Hoax-Slayer


Example

Subject: Voucher for you

Very Logo

Dear Customer,

We are giving away free £50 shopping voucher which will reflect in your account,
this is due to the recent system breakdown we had which has caused alot of delays
for our customers.

We sincerely apologise for this break down, please follow the link
below to activate your voucher.

Please do not reply to this message. For questions, please call Customer Service.
We are available 24 hours a day, 7 days a week.

Copyright © 1999-2012 Shop direct. All rights reserved.




Detailed Analysis
According to this email, UK online retailer Very is currently giving away £50 shopping vouchers. The message claims that the company is offering the vouchers in way of apology because of delays experienced by customers during a recent system breakdown. Recipients are asked to click a login link to activate their voucher. Another version of the message which also purports to be from Very claims that customers must click a link to reinstate their Very account access.

However, the emails are not from Very or any other legitimate entity. In fact, the messages are phishing scams designed to trick users into submitting their personal and financial information to cybercriminals. Those who fall for the ruse and click the link to activate their voucher or reinstate account access will be taken to a fraudulent website that asks them to provide username and password credentials as well as credit card details and other personal information. All information submitted will be collected by the criminals operating the phishing attack and may subsequently be used to commit credit card fraud and identity theft.

Strangely enough, due either to laziness or incompetence on the part of the scammers, links in some instances of these emails lead to an unrelated scam website designed to steal information from customers of the Santander Bank. Although the scam emails ask uses to login to their Very account, victims are actually taken to a bogus bank website and asked to "verify" their Santander account by providing a large amount of personal or financial information. Clearly, both phishing attacks are operated by the same group of online criminals.

Phishing is an extremely common type of Internet fraud that continually targets customers of many different companies and financial institutions all around the world. Users should be wary of any unsolicited emails that claim that they must click a link or open an attachment to login to their account and provide information. It is always safest to access any of your online accounts by entering the web address into your browser's address bar rather than by clicking a link in an email.

Bookmark and Share


References

Santander Online Banking Software Upgrade Phishing Scam
Phishing Scams - Anti-Phishing Information






Last updated: August 28, 2012
First published: August 28, 2012
Article written by Brett M. Christensen
About Brett Christensen and Hoax-Slayer