Trend Micro fraud analysts recently came across spammed messages targeting customers of the Fifth Third Bank. The messages urged recipients to log in to a temporary link, http://www.53.com.{BLOCKED}.com.pl/wpserver/cmportal/cblogin.php?session=667882698791972326077742654898739&email=p2t2all@tacobell.com, in order to download and install a digital certificate that would supposedly reinforce the bank’s security. Clicking the link, however, led users to a phishing page that…
Read MoreRalph Hernandez
Fraud Analyst
Trend Micro researchers recently found spam emails fashioned to come from Federal Insurance Deposit Corporation (FDIC). The email message informs users that they should visit the “official” FDIC’s website (provided in the email) to check their Deposit Insurance Coverage. However, clicking the URL leads users to a fake FDIC website where they are ask to…
Read MoreA phishing email uses a novel-sounding concept that can sound alarming enough to get unsuspecting users to click on the available links and land themselves in danger. Trend Micro Content Security team recently came across a Bank of America phishing site which shows users that their online accounts are recently “logged on from an unregistered…
Read MoreTrend Micro Content Security recently came across an all-in-one attack that involves a fake postcard, a phishing site and, of course, a malware. A fake postcard launcher was found pretending to be Gusanito, one of the most popular Mexican greeting card services. After users click the link, the browser points to a Web site where…
Read MoreTrend Micro uncovered another phishing Web site that attempts to steal confidential credit card information. Below is a screenshot of the Web site: Using string manipulation, it is able to spoof the official Web site of the Royal Bank of Canada. Note that the said URL contains a variation on the actual domain name (“banking”…
Read More