Phishing is the name given to the practice of sending emails at random purporting to come from a genuine company operating on the internet. The emails attempt to trick the recipient into entering confidential information, such as credit card or bank details. The links contained within the message are false, and often re-direct the user to a fake web site.
The number of Phishing attacks is on the increase. Do not be fooled by these messages. Banks will never contact you by email to ask you to enter your password or any other sensitive information by clicking a link within an email message.
Even if you suspect an email message may be genuine, do not click the links within the mail message! Open a new page from your Internet browser and visit the company’s home page directly. Attempt to verify the validity of the message you received by following links from the company’s main web page. If you cannot find the information replicated on the company's web site, the email you received is most likely a Phishing attempt.
Information Services Security Team will post the most frequently received Phishing email messages here.
If you receive a message you suspect is an attempt at Phishing, please send a sample to insrvConnect@cf.ac.uk for inclusion on these pages.
Barclays Bank phishing email:
Barclays Bank PLC <account@Barclays.co.uk 20/06/2005 10:27:56
Barclays Bank PLC. always looks forward for the high security of our clients. Some customers have been receiving an email claiming to be from Barclays advising them to follow a link to what appear to be a Barclays web site, where they are prompted to enter their personal Online Banking details.
Barclays is in no way involved with this email and the web site does not belong to us.
Barclays is proud to announce about their new updated secure system. We updated our new SSL servers to give our customers a better, fast and secure online banking service.
Due to the recent update of the servers, you are requested to please update your account info at the following link.
J. S. Smith
Barclays Bank PLC.
Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your Barclays Online Bank account and choose the "Help" link on any page.
Barclays Email ID # 1009
Paypal Phishing Email:
To: [Name of Recipient Removed]
Subject: Introducing the New PayPal Security Center
Date: Fri, 22 Jul 2005 00:38:34 +0200
Dear PayPal Member,
It has come to our attention that your PayPal Billing Information records are out of date. That requires you to update the Billing Information.
Failure to update your records will result in account termination.
Please update your records within 24 hours. Once you have updated your account records,your PayPal session will not be interrupted and will continue as normal.
Failure to update will result in cancellation of service, Terms of Service (TOS) violations or future billing problems.
You must click the link below and enter your login information on the following page toconfirm your Billing Information records.
Click here to activate your account
You can also confirm your Billing Information by logging into your PayPal account at https://www.paypal.com/us/.
Thank you for using PayPal!
The PayPal Team
Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your PayPal account and choose the "Help" link in the footer of any page.
To receive email notifications in plain text instead of HTML,update your preferences here.
PayPal Email ID PP468
E-Expressprocessing Phishing Email
From: Billing <firstname.lastname@example.org>
To: [Recipient Address removed]
Date: 07/10/2005 11:05:36
Subject: Your Account Has Been Suspended
Sorry. Your account was temporally locked.The credit card transaction was declined.
This is an email receipt for your recent payment you just made.
The system reported the following error:
KEEP CRD DECLINE NOT AUTHORIZED
Receipt # [random number removed]
Billed To: [name and address details removed]
Receipt Date: 05/10/05
Total Amount: GBP 201.06
Billed To: Visa
Information regarding your personal information can be viewed login in
(Your usercode is 86260140
Your passcode is 6576723)
This site is powered by the SecureTrading payment system which means that your credit card details are fully encrypted using the most sophisticated
Abbey Phishing Email
From: Abbey Online Banking
To: [Address of Recipient removed]
Date: 14/09/2005 09:40:31
Subject: Important information update your account
Dear Abbey Customer
We regret to inform you that your Abbey account could be suspended if you don't re-update your account information. To resolve this problems please click here and re-enter your account information. If your problems could not be resolved your account will be suspended for a period of 72 hours, after this period your account will be terminated.
For the User Agreement, Section 9, we may immediately issue a warning, temporarily suspend, indefinitely suspend or terminate your membership and refuse to provide our services to you if we believe that your actions may cause financial loss or legal liability for you, our users or us. We may also take these actions if we are unable to verify or authenticate any information you provide to us.
Due to the suspension of this account, please be advised you are prohibited from using Abbey in any way. This includes the registering of a new account. Please note that this suspension does not relieve you of your agreed-upon obligation to pay any fees you may owe to Abbey.
Regards,Safeharbor Department Abbey, Inc
The Abbey team.
This is an automatic message. Please do not reply.
Dormant Account/Next of Kin Scam
REQUEST FOR YOUR PARTNERSHIP
This mail will definitely be coming to you as a surprise, but I must crave your indulgence to introduce myself to you, am Barrister << details removed >>, Legal Practitioner, based in London. However I got your contact through the International web directory. During a recent investigation, reconciliation and auditing of Barclays Bank Plc's account, they discovered a dormant account with a huge amount of Money Valued US$50,000,000.00 (Fifty Million US Dollars Only) that belongs to one of my late Clients, << details removed >> , Netherlands, who died with his family in a plane crash 14 years ago. So the fund has been dormant in his account with The Barclays Bank Plc Head Office in London without any claim of the fund, from his family or relation before now. Their discovery to this development warranted them to contact my chamber as Attorneys to the their late customer. The Banking law here stipulates that if such money remains unclaimed all these years, it will be forfeited to the Bank Treasury as an unclaimed bill. It is only a foreigner that can stand as a next of kin and it is upon this discovery that I decided to contact you to collaborate with you to pull out this dormant fund. In order to avert this negative development, going through my archives, I now remembered and brought out the last will of my late client where he was yet to fix in the name of the next of kin to the account. I now seek your permission to fix in your name in the WILL which I will redraft and have you stand in as next of kin to << details removed >>, so that the fund will be released and paid into your account as next of kin since the bank has requested me to present his WILL for transfer of funds to his next of kin. I could have done this deal alone but because of my position as his Attorney and due to the need to have a confidential dealing with someone far away from United Kingdom as any thing otherwise would eventual raise an eye brow on my side during the time of transfer. I will also get a Letter of Administration/Affidavit in your name for the legal transfer of the funds to you. However, on smooth conclusion of this transaction, you will be entitled to 40% of the total fund, while the remaining 60% will be for me. What I want from you is for you to act as the deceased next of kin. Bear in mind that this proposal is 100% risk free and transfer will be legally done.
Kindly forward the following information in your reply mail:
1. Your full legal names, contact address, direct phone and fax numbers
2. Your occupation, date of birth, sex and marital status.
3. Your bank/account details and a copy of your International Passport.
Further information will be given to you as soon as I receive your positive response. Please reply me to: << details removed >>
Best Regards, Barrister << details removed >>