Need help? Ask the community or hire an expert.
Go to Avira Answers
Target:Del Norte Credit Union
Date discovered:04/10/2006

 General The goal is to get the following information:
     Bank account
     Credit card
     Personal data


Phishing method:
     URL link

 Email Details From: do-not-replay@dncu.org
Subject: Del Norte Credit Union Notification

Visible link: http://www.dncu.org/login.aspx?update
Actual link: http://www.dncu.org.hi-position.com/dive/login.html
IP address: 208.51.26.100


The email is designed to avoid detection from Antispam and Antiphishing. The technique is:
     The Body of the email contains HTML content.



This screenshot is how the phishing email looks like:


 Page Details Visible URL: http://www.dncu.org.hi-position.com/dive2/index.html
Actual URL: http://www.dncu.org.hi-position.com/dive2/index.html
IP address: 208.51.26.100


The phishing page will look like the following:



Description inserted by Dominik Auerbach on Wednesday, October 4, 2006

Back . . . .