Seeing more Phishing fraud emails from spoofed “alert@Fidelity.com” addresses where the underlying IP’s tend to be coming from telcos in India.
Typical email includes a somewhat poor copy of the Fidelity logo and language such as:
We’re making some exciting changes that will make your online banking experience even better, We therefore request your to verify your location.
A copy of the actual email:
Phishing Example - Fidelity Alerts
Phishing Example - Fidelity Alerts
The only real excitement is on the part of the con artist who’s trying to get you to provide your Fidelity username and password. The included hyperlink is displayed as:
“Go To Verification Process”
But it links to servers such as:
http://login.fidelity.com.k210f867.net/ftgw/Fas/Fidelity/RtlCust/Login
And while this link does include “login.fidelity.com” that’s just what we call “URL Bait” to make it appear to be a legitimate Fidelity link and to obfuscate the true domain “k210f867.net” which is just one of many servers hosting this scam.
No comments:
Post a Comment