Deprecated: mysql_connect(): The mysql extension is deprecated and will be removed in the future: use mysqli or PDO instead in /home/a26f9f83/public_html/articles/includes/config.php on line 159
Wells Fargo Report Phishing Scam > NetSparsh - Viral Content you Love & Share

Wells Fargo Report Phishing Scam

First off I should explain what phishing is. Phishing is basically the act of tricking a victim into divulging information. It involves the receiving of an email message with a link to a website where the victim would enter personal information. In this particular scam, you get an email from "Personal Banking: [email protected]" stating that there may have been some unauthorized access to your account and that you should click the link and enter your account and verify some information. When you click the link you are taken to a site which looks identical to the Wells Fargo site.

If you look at the HTML code of the site, you'll notice that they are almost identical. One thing about this scam which was somewhat surprising is that the message made it past my G-mail spam filter. This is slightly different to scams I have seen before in that they don't ask you to reply to this email with your account number like most others, and they don't ask for passwords or anything like that. They simply request that you log in, as you normally do, which would not raise the eyebrow of normal users. On a closer inspection of the site you will notice that the forms submit the data entered (user name and password) to some foreign script and not to Well Fargo. Most probably, the scammer is having all the usernames and passwords emailed to him. After submission of your information the site responds that your password is incorrect. Here an unsuspecting victim would assume that this was because of the supposed unauthorized access mentioned in the email.

If you try to submit information a few more times, it takes you to another Wells Fargo look-alike page called "Online Banking Verification". Here they ask for SSN number, your ATM card number, the expiration date, the pin number and the CVV2# (4 digit verification). With the ATM information the scammer could max out your debit card. With all the rest of the information he has gathered it would not be at all difficult to call up Wells Fargo and basically take over your account. He could change billing addresses, get checks for you account, and simply wipe it out.

How to spot scams like this

Scams like these are usually easy to spot, but this one in particular was a bit tricky, however there are some basic methods you can use to spot these types of scams.

First of all, check the link. Although it looks like the link is going to Wells Fargo's website, if you let the mouse hover over the link for a while and look in the status bar, you will get the real address of the link. In this case the scammer used just an IP address of his domain or machine. This, however, can be overridden on the internet (if the scammer changes the status bar) and sometimes even in your email, depending on what your security settings are.

Check the address bar. In this case, the address bar reported that the website was also from the scammer's IP address. Simply put, it did not say www.wellsfargo.com. Very seldom would a scammer be able to fake this. They may, however, employ other tricks like buying a domain name with a slight spelling difference that the user might not notice or by simply loading the link in a new window and hiding the address bar altogether.

Lastly, the only full proof method to avoid becoming a victim to a scam like this is to simply call in and verify the information over the phone. Please note; do not use a phone number in the email if one is given. Open up your phone book and locate the number for your firm and ask them about it.

Just remember, if it looks funny and feels funny, it's probably a scam. Do not ever reply to such email messages for personal information as sensitive as account information and SSN.

Below is a copy of the email message for your review and amusement. The link is active, however DO NOT ENTER ANY PERSONAL INFORMATION INTO THESE FORMS. THIS IS NOT WELLSFARO'S SITE.

Kevin. A. Lloyd.

From: Personal Banking < [email protected] >
To: [email protected]
Date: Jun 2, 2005 2:22 PM
Subject: Security Notice #291240 Wells Fargo Internet Banking account
Update Necesary!

Dear Member,
We recently reviewed your account, and suspect that your Wells Fargo Internet Banking account may have been accessed by an unauthorized third party. Protecting the security of your acount and of the Wells Fargo network is our primary concern. Therefore, as a preventative measure, we have temporarily limited access to sensitive account features. To restore your account access, please take the following steps to ensure that your account has not been compromised:

1. Login to your Wells Fargo Internet Banking account. In case you are not enrolled for Internet Banking, you will have to use your Social Security Number as both your Personal ID and Password and fill in all the required information, including your name and account number. 2. Review your recent account history for any unauthorized withdrawls or deposits, and check your account profile to make sure not changes have been made. If any unauthorized activity has taken p! la ce on your account, report this to Wells Fargo staff immediately.

To get started, please click on the link below:

https://online.wellsfargo.com/signon?LOB=CONS

We apologize for any inconvenience this may cause, and appreciate your assistance in helping us maintain the integrity of the entire Wells Fargo system. Thank you for your prompt attention to this matter.

Sincerly,
The Wells Fargo Team

Kevin A. Lloyd:

Just launched a website, http://www.DeleteMySpam.com/, dedicated to helping to eliminate the spam crisis.

In The News:


Forbes

After Equifax, New Security Considerations Emerge
Forbes
And adding insult to injury, why should consumers be stuck with $4.1 billion in credit freeze fees even as company executives engaged in what looks to be insider trading? While we wait for Equifax to provide closure, conversations with security ...

and more »

Wall Street Journal

Police: Suspect shouted 'Hail Hitler' before shooting incident after Spencer event
ABC News
The office said in a tweet that he had brought a gun onto the campus after being hired by a media organization as security. David Notte, 34, was charged with resisting an officer without violence. Security measures were in place throughout Gainesville.
Security Is Bolstered for Speech by White Nationalist Richard SpencerWall Street Journal
UF security concerns grow for Richard Spencer speechTallahassee.com
University estimates $600K for security for Richard Spencer's speechThe Hill

all 830 news articles »

Motherboard

How I Socially Engineer Myself Into High Security Facilities
Motherboard
Sophie is a physical penetration tester and information security consultant. She specializes in social engineering security assessments including physical, voice (vishing) and text (phishing). She consults in remediation and prevention of security ...


Foreign Policy (blog)

Rational Security on The ER: The “Decertified” Edition
Foreign Policy (blog)
On this week's episode of Rational Security on The E.R., President Trump says Iran is not living up to the “spirit” of the deal to curtail its nuclear program. Russian trolls and propagandists speak out. And an American woman and her family are freed ...


Coca-Cola: Security With A Touch Of Growth
Seeking Alpha
The Coca-Cola Company has existed in its current form since 1892 and will continue creating shareholder value for many years into the future. A change in leadership and the repeal of the Chicago soda tax are both positives signals for this company that ...

and more »

AroundtheO

Widespread security threat affects all WiFi-enabled devices
AroundtheO
The multitude of devices that connect to wireless networks are vulnerable to a new kind of attack, information security researchers announced Oct. 16. The newly discovered "KRACK" vulnerability opens the possibility for cybercriminals to steal a wide ...

and more »

BBC News

Militants kill Egyptian security forces in desert shoot out
BBC News
More than 50 Egyptian security forces have died during a clash with Islamist militants in the Western Desert. The militants opened fire on the group - a mix of police and armed forces - during a raid on their hideout near the Bahariya oasis, south-west ...
At least 30 police die in clash in Egypt's Western desert: security sourcesReuters

all 44 news articles »

Newsweek

Exclusive: Ivanka Trump's Security Clearance Must Be Reviewed ...
Newsweek
Senator Ben Cardin is the first sitting senator to join a chorus of congressional Democrats calling to have the first daughter's security clearance reviewed and ...
Senator urges review of Ivanka Trump's security clearance | TheHillThe Hill
Democratic senator calls for review of Ivanka Trump's security ...Washington Examiner

all 3 news articles »

CBS Chicago

Monterrey Security Now Under State Review
CBS Chicago
“There was a Monterrey security officer that was wearing an ankle bracelet because he was making terroristic threats to the FBI,” said Greg Cook of the Minnesota Board of Private Detectives. Monterrey has used its political clout to land contracts at ...

and more »

ZDNet

Leaked: Facebook security boss says its corporate network is run ...
ZDNet
Facebook's security chief has told employees that the social media giant needs to improve its internal security practices to be more akin to a defense contractor, ...
Facebook security chief Alex Stamos leaked audiotape - CNBC.comCNBC
Facebook is struggling to meet the burden of securing itself, security ...Ars Technica

all 3 news articles »
Google News

Password Security and Safety

There is nothing more important that password security in world... Read More

Spyware Protection Software

Spyware protection software is the easiest way of removing spyware... Read More

Online Cell Phone Scams and Spam

They're out there. Individuals trying to make a quick buck... Read More

Anti-Spyware Protection: Behind How-To Tips

There is no doubt that "how-to articles" have become a... Read More

The Saga of the Annoying Adware

When we think of adware, what comes to mind are... Read More

The One Critical Piece Of Free Software Thats Been Overlooked

Can You Prevent Spyware, Worms, Trojans, Viruses, ... To Work... Read More

Web and Computer Security

Well, if that would have been said to me by... Read More

How to Fight Spyware

If you are wondering how to fight spyware for safe... Read More

Three-pronged Trojan Attack Threatens Security on the Internet

Glieder (Win32.Glieder.AK), Fantibag (Win32.Fantibag.A) and Mitglieder (Win32.Mitglieder.CT) are not names... Read More

Desktop Security Software Risks - Part 1

This is the second in a series of articles highlighting... Read More

Is the Internet Insecure Because of You?

Long gone are the days that we could feel secure... Read More

Five Excellent Indie Encryption And Security Solutions You Have Not Heard About

1. Geek Superhero http://www.deprice.com/geeksuperhero.htmGeek Superhero watches your computer for changes,... Read More

Free Antivirus Security Software: Download Now to Eliminate Spyware, Pop Up Ads, etc.

Adware. Spyware. Pesky pop up ads. Internet congestion. Computer malfunctions... Read More

IPv6 - Next Step In IP Security

IPv6, IntroductionThe high rate at wich the internet continualy evolves... Read More

Dont be a Dork ? Protect Yourself

There are folks out there who use their powers for... Read More

3 Things You Must Know About Spyware

1)Spyware is on your system. Like it or not, statistically... Read More

Parental Control - Dangers To Your Child Online & Internet Child Safety Tips

Did you know...? 1 in 5 children who use computer... Read More

Virus Prevention 101

Blaster, Welchia, Sobig, W32, Backdoor, Trojan, Melissa, Klez, Worm, Loveletter,... Read More

How Spyware Blaster Can Protect Your Computer From Harm

By browsing a web page, you could infect your computer... Read More

Are You Surfing Safe?

Ok, you've got a computer, and you get online. You... Read More

Cybercriminals Trick: Targeted Trojan-Containing Emails

Threats we ordinary Web users face online leave us no... Read More

Remove Rogue Desktop Icons Created By Spyware

If you have used a Windows machine for a while,... Read More

How to Get Rid of New Sobig.F Virus?

As you know, this time the virus under the name... Read More

How to Protect Yourself Against Online Criminals

Credit card fraud is a growing problem for online businesses... Read More

Identity Theft - Dont Blame The Internet

Identity theft ? also known as ID theft, identity fraud... Read More