Malware City/Blog/

Jun
24
Filed Under:
ALERTS

Lloyds TSB on-line credentials sought by phishers

24 June 2009
Simple and efficient fraudulent scheme

Lloyds TSB is challenging the Top ten most counterfeit bank identities described in our latest E-Threats Landscape Report. This time, with a not so flashy, yet nifty unsolicited message, that requires customers to follow a link and confirm their account information, after an alleged attack.

Phishing

The link does not lead to the e-banking portal, but to a collection of Web pages that employ several visual identification components of the original Web site, namely the bank logo (a bit blurry and disproportionately resized) and the general formatting elements.

Phishing 2

The e-thieves seem to be interested only in the User ID and password, which they pilfer via login.php script, and the memorable information, which they lift using login1.php script.

Even though all menu options are available, clicking any of them will return a "404 Page Not Found" message. Moreover, one can easily see that the Web page address mimicking the genuine Web site loads from a domain registered in Brazil (.br instead of .com).

And, as usual, there are no specific security elements, one could expect to find on an e-banking site, namely SSL encryption (Secure Socket Layer) and security authentication methods (no "https" prefix and locked padlock).

Phishing




Article rating:

Balancing the keen and until late in night reading, with Internet "addiction", the genuine zeal for my bright and fervid students with the craze for the latest discoveries in science and technology, I also enjoy taking not very usual ...

Comment on this

Name:

Email:

Website:

Your email adress will not be published.