Have you recently received what looked like an email from your bank card company saying that they need you to verify your information? The email looks legitimate but there are some tell tail clues that it is not. First of all your credit card company will never send you an email, if they do they will address you by the name on your credit card, not Customer or Credit Card User. Second sign is take a look at To: field. You may have to add this field in order to see it. When looking at the To: field yours should be the only email address there and not someone elses address. Scammers tend to send out mass emailings which means that many email address are in the To: field. You can also look at the email header. In Outlook right click on the message line in your inbox, a dialog box will open then click on Options. That will show you the email headers and will show you what address the email is from. If it is from your credit card company you will see the credit card companies name in the domain. ie something@citibank.com.
Lastly remember whether it's a phone call or an email. NEVER, I'll say again NEVER give out any information from an email or phone call. In the case of the phone call, tell the person that before you give out any information, you will need to get their name hang up and call the 1 800 number on the back of your credit card. If it is legit, they will understand, if it is not they will get mad and try to trick you into giving out your informaiton.
Here is an example of an Internet Credit Card Scam. This is attempts to get you to log in by clicking their link. When you click on their link it first takes you to an IP address (not domain) then redirects you to a spoofed domain and pops up a little window for you to enter your account information.
Here is the link, if you click on this make sure you have your cookies turn to block or prompt. Click to protect yourself from fraudulent activity! Here is that address that link takes you to
//222.223.128.32/scripts/confirmation.htm
But then does a quick redirect to this link.
//web.da-us.citibank.com/cgi-bin/citifi/scripts/myciti/support.jsp
It looks legit but it is not. DO NOT FALL FOR THIS unless you want your charge card maxed out.
quote:
Dear Citibank Customer,
We recently noticed one or more attempts to log in to your Citibank
account from a foreign IP address and we have reasons to believe that
there was attempts to compromise it with brute forcing your PIN number.
No successful login was detected and you have full protection by now.
If you recently accessed your account while travelling, the unusual login
attempts may have been initiated by you.
The login attempt was made from:
IP address: 273.627.087.24
ISP Host: cache-892.proxyserver.cis.com
By now, we used many techniques to verify the accuracy of the
information our users provide us when they register on the Site.
However, because user verification on the Internet is difficult, Citibank
cannot and does not confirm each user's purported identity. Thus, we
have established an offline verification system to help you evaluate with
whom you are dealing with. The system is called CitiSafe and it's
the most secure Citibank wallet so far.
If you are the rightful holder of the account, click the link bellow, fill
the form and then submit as we will verify your identity and register you
to CitiSafe free of charge. This way you are fully protected from fraudulent
activity on all the accounts that you have with us.
Click to protect yourself from fraudulent activity!
To make Citibank.com the most secure site, every user will be
registered to CitiSafe.
NOTE! If you choose to ignore our request, you leave us no choice but to
temporally suspend your account.
* Please do not respond to this e-mail, as your reply will not be received.
07-25-2004 05:07 PM
