Need help? Ask the community or hire an expert.
Go to Avira Answers
Target:Yorkshire Bank
Date discovered:17/11/2007

 General The goal is to get the following information:
    • Bank account


Phishing method:
    • 'Click here' link

 Email Details From: Service@yorkshire.co.uk
Subject: Unauthorized Transactions on your Internet Banking

Visible link: Click Here
Actual link: http://ukupdates.ns7-wistee.fr/yorkshire.co/yorkshire.co.uk/login.html
IP address: 87.98.220.13


The email is designed to avoid detection from Antispam and Antiphishing. The technique is:
    • The Body of the email contains HTML content.



This screenshot is how the phishing email looks like:


 Page Details Visible URL: http://ukupdates.ns7-wistee.fr/yorkshire.co/yorkshire.co.uk/login.html
Actual URL: http://ukupdates.ns7-wistee.fr/yorkshire.co/yorkshire.co.uk/login.html
IP address: 87.98.220.13


The phishing page will look like the following:




Description inserted by Dominik Auerbach on Sunday, November 18, 2007

Back . . . .