Target:Clydesdale Bank
Date discovered:03/11/2006

 General The goal is to get the following information:
    • Bank account


Phishing method:
    • URL link

 Email Details From: Securityalert@cbonline.co.uk
Subject: Upgrade your online access with the new Clydesdale scurity Firewall

Visible link: https://home.cbonline.co.uk/cgi-bin/serverlet/login.html?message=update_Act
Actual link: http://www.sx-school.net/cgi-bin/cbonline.co.uk/cgi-bin/AUTH/get_detail.html
IP address: 219.232.224.92


The email is designed to avoid detection from Antispam and Antiphishing. The technique is:
    • The Body of the email contains HTML content.



This screenshot is how the phishing email looks like:


 Page Details Visible URL: http://www.sx-school.net/cgi-bin/cbonline.co.uk/cgi-bin/AUTH/get_detail.html
Actual URL: http://www.sx-school.net/cgi-bin/cbonline.co.uk/cgi-bin/AUTH/get_detail.html
IP address: 219.232.224.92


The phishing page will look like the following:




Description inserted by Dominik Auerbach on Friday, November 3, 2006

Back . . . .