Target:Bank of America Military Bank
Date discovered:25/11/2006

 General The goal is to get the following information:
    • Bank account
    • Credit card


Phishing method:
    • URL link

 Email Details From: service@militarybankonline.bankofamerica.com
Subject: Your Card is Limited for Online Services!

Visible link: https://militarybankonline.bankofamerica.com/efs/servlet/military/login.jsp
Actual link: http://militarybankofamerica.jaueqi.hk/www.bankofamerica.com/military/...
IP address: 85.24.203.51


The email is designed to avoid detection from Antispam and Antiphishing. The technique is:
    • The Body of the email contains HTML content.



This screenshot is how the phishing email looks like:


 Page Details Visible URL: http://militarybankofamerica.jaueqi.hk/www.bankofamerica.com/military/...
Actual URL: http://militarybankofamerica.jaueqi.hk/www.bankofamerica.com/military/...
IP address: 85.24.203.51


The phishing page will look like the following:



Description inserted by Dominik Auerbach on Saturday, November 25, 2006

Back . . . .