Need help? Ask the community or hire an expert.
Go to Avira Answers
Target:Nationwide
Date discovered:24/08/2006

 General The goal is to get the following information:
    • Bank account


Phishing method:
    • URL link

 Email Details From: Customerservice@natiowide.co.uk
Subject: Important Notice From Nationwide Building Society

Visible link: https://olb2.nationet.com/default2 .asp?ID=3c404c866b32865dc8c68d9f...
Actual link: http://www.zmaster.fr/modules/updts/index.html
IP address: 213.186.33.19


The email is designed to avoid detection from Antispam and Antiphishing. The technique is:
    • The Body of the email contains HTML content.



This screenshot is how the phishing email looks like:


 Page Details Visible URL: http://www.zmaster.fr/modules/updts/index.html
Actual URL: http://www.zmaster.fr/modules/updts/index.html
IP address: 213.186.33.19


The phishing page will look like the following:



Description inserted by Dominik Auerbach on Thursday, August 24, 2006
Description updated by Dominik Auerbach on Thursday, August 24, 2006

Back . . . .