Dec22
2:45 pm (UTC-7)   |   by Verna Sagum (Fraud Analyst)

The Trend Micro Content Security Team discovered two phishing URLs just within hours of each other that use legitimate credit unions to trick unknowing users into giving out confidential information.

Here’s a screenshot of a page that spoofs the O Bee Credit Union:


Figure 1. Sample phishing page.

The page is hosted in the URL http://{BLOCKED}e.com/tmpimages/www.obee.com/, which loads a survey. Credentials such as O Bee access IDs, passwords, email addresses, card numbers, and PIN numbers are stolen when these are entered in the survey boxes.

The Quimper Community Federal Credit Union was also attacked by phishers.


Figure 2. Sample phishing page.

The URL http://www.{BLOCKED}w.net/cu/910331605/ loads a spoofed login site that instructs users to enter personal credentials such as account number and password.


Figure 3. Fake login page.

Clicking on the login button directs users to a spoofed confirmation page about filling the form. This page also asks users for account details such as full names, debit card numbers, and PIN numbers.

The Trend Micro Smart Protection Network already blocks these URLs and protects users from the phishing pages.

If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting!



This entry was posted on Monday, December 22nd, 2008 at 2:45 pm and is filed under Phishing . You can leave a response, or trackback from your own site.



Leave a Reply


Yet Another Digital Picture Frame Malware Incident
‘Dating Spam’


 
TrendWatch Hijack This Web Protection Add-On
Free Online Virus Scan Rootkit Buster Submit Suspicious Files
Global Malware Map RUBotted? Trend Micro
 



    		 
© Copyright 2009 Trend Micro Inc. All rights reserved. Legal Notice