Embracing Technology

For a better understanding of Phishing, read the previous post on Phishing here: http://marvinlee.wordpress.com/2008/05/21/phishing-online-banking-id-and-password/

In recent months, there was a high number of phishing emails targeting CIMB Bank. This might only be the fact that I have an email which fall into the same scammer’s mailing list.

However, every single time when I read it, the link in the email has already turned inactive or its web content removed.

Until today, I got another one and the link is working!

I was very excited finding a phishing site which is working, not because I want to give them my money, but so that I can know more about their tactics and share with you.

1) Email with the fake link

Phishing Email

This is the first step to dupe you. They will send you an email with a fake sender email address or seemingly real one from the bank of their choice.

2) Display link is different with the actual link

Fake link source code

If you know how to view the code of the email (Right click and select View Source), you will be able to see that the actual link is going to a different website.

3) Login page to get your user id and password

Fake Login Screen

This is their phishing site, notice that the domain name is different from the actual internet banking site. The first step in getting your account, is to get your user id and password.

I simply entered an id and password, there is no validation.

If you enter a wrong password here, you should be able to figure out it’s not a real one.

4) Getting your TAC

Asking for your TAC!

Wait 10 minutes? (10 Min’s? Is that new English?)

Somebody in the background will be using your id and password, login to the real site, and request the TAC on your behalf.

This is where unwary people will key in the TAC together because if the site ask you for TAC, it’s supposed to be secured?

It’s not secured here because you have given the id and password in the first place, REMEMBER!

5) Hopefully preventing you from checking your account

Thank you for your money

Once they got your TAC, you’re done. You have unknowingly given your banking account and your hard-earned $$$$ to the perpetrators.

Moral of the story: Do not click links from email no matter how seemingly real the content is or how convincing they get you into giving your id and password.

Always login to your internet banking account via your browser by typing the actual address!

And, while I noticed this, the first thing I did was to go to the real bank site, look for their contact and forwarded the actual email I received to them. (Their site requested to forward the actual email without removing or changing anything.)

After 12 hours, I have yet to receive any acknowledgement from them that they are looking into it, it has no impact to their business or problem solved.

Maybe they are still busy identifying the perpetrators?

Anybody who are able to share contacting the bank if account has been phished and $$$$ siphoned?

2 more days to 080808. 080808.com.my has extended the closing date for its contests to 31^st August.

And, it’s giving additional three ecobuttons just for getting one person or more to join the climate change pledge campaign. Check it out here http://earth.080808.com.my