Your account has been temporarily limited – Phishing

There’s actually a wide variety of identity Theft and Phishing Frauds that come with a subject line of:

Subject:      Your account has been temporarily limited

The latest one in the series spoofs (claims to come from) a scotiabank.com address:

From:     “Scotia OnLine” <info@scotiabank.com>

The contents of the fraudulent email continue with:

We are hereby notifying you that, after a recent review of your account activity, it has been determined that you are in violation of Scotia OnLine’s Acceptable Use Policy.

Therefore, your account has been temporarily limited for: webcam shows.

We must properly verify your account again.

Tips to unlock your Scotia OnLine account. – It’s Easy

Here’s how to get started:

1. Log in to https://www.scotiaonline.scotiabank.com/online/start.jsp

2. Follow the steps to update your personal records and you will not run into any future problems with the online service.

3. Once you have completed these steps, we will send you an email notifying that your account is available again.

4. Please allow (3) three business days for processing.

Note: Please do not reply to this email.
This mailbox is not monitored and you will not receive a response.

We especially like the part about waiting 3 days for a response, as this gives the spammer ample time to raid your account, changing passwords and transferring funds.

The trick itself is that if you mouse-over the purported link of:

  • https://www.scotiaonline.scotiabank.com/online/start.jsp

You’ll notice that “scotiabank.com” is not actually the target of that link, but instead your browser will be sent to any number of hijacked web sites, such as:

  • http://knowledgepress.com/start.jsp.php

And at this point you will be presented with a Phishing Bait log in form designed to trick you into providing your actual ScotiaBank login and password.

Notice that while the above example Phishing site has been taken down, countless other servers stand in its place.

Also note that we’re seeing identical campaigns form the following spoofed addresses:

  • “Wells Fargo Bank”<admin1@wellsfargo.com>
  • “Wells Fargo Bank”<helpdesk@wellsfargo.com>
  • “EGG Bank Plc”<admin@egg.com>

Though in each case the email itself is modified slightly to match the Phished bank’s sending address.

- -

OnlyMyEmail is an award winning hosted spam filtering service and business email hosting provider. Our enterprise cloud computing anti-spam solution, the MX-Defender, has the highest capture rate of any spam filter ever tested in the VBSpam Challenge, blocking a record setting 99.9993% of all malicious and junk email.

Our Personal spam filtering system is also a Software as a Service (SaaS) solution and has won both the PC World "World Class Award" and also the PC Magazine "Editor's Choice Award."

OME-Kids is a webmail solution that protects children from spam and other harmful emails. OME-Kids offers unique Parental Controls that allow you to choose the level of security and oversight that's right for your child.

Tags: , ,

Comments are closed.