Here is a great example of a banking "phishing" (pronounced "fishing") email. Even if you don't have an account with this company, you tend to want to click on the link to make sure some unknown debit is not going to be credited to your bank account. Tricky. I put in the email where the links really get redirected to. Always helpful to pass your mouse over a link and NOT click on it, just to see if the link displayed matches the link it actually gets redirected to.
Return-path: [ADPClientServices@adp.com]
Received: from [139.5.58.137] (account ADP_FSA_Services@ADP.com HELO
From: "ADP_FSA_Services@ADP.com" [ADPClientServices@adp.com]
Subject: ADP Funding Notification - Debit Draft
Your Transaction Report(s) have been uploaded to the web site:
https://www.flexdirect.adp.com/client/login.aspx [Links to http://gizeminxsaat.com.tr/42enqxV20/index.html]
Please note that your bank account will be debited within one banking
business day for the amount(s) shown on the report(s).
Please do not respond or reply to this automated e-mail. If you have any
questions or comments, please Contact [Links to http://gizeminxsaat.com.tr/42enqxV20/index.html] your ADP Benefits Specialist.
Thank You,
ADP Benefit Services
This appears to be a popular one. I've received it over 5 times in the last week. And I'm not even a target as I have no services with ADP. The scammer must just be carpet-bombing emails out there.
ReplyDeleteReturn-path: [ADP_FSA_Services@ADP.com]
Received: from [120.58.195.98] (helo=ksjixq.ygvzktwpvnfhsf.va)
Subject: ADP Funding Notification - Debit Draft
Your Transaction Report(s) have been uploaded to the web site:
https://www.flexdirect.adp.com/client/login.aspx [Actually links to http://moldxvin.cz/vJAxhZo1A/index.html]
Please note that your bank account will be debited within one banking
business day for the amount(s) shown on the report(s).
Please do not respond or reply to this automated e-mail. If you have any
questions or comments, please Contact [Actually links to http://samuel-demo.com/Z3x0Y2xdtM/index.html] your ADP Benefits Specialist.
Thank You,
ADP Benefit Services
Ok, here's one I received this morning and I *was* the target of the scammer, as I am a Bank of America customer and I do online banking often. so I actually had to to look at this one twice. I moved my cursor over the link without actually clicking on it and viewed the url in the lower left hand corner and sure enough the link went to a completely different place and that was the tip-off. I then viewed the full email headers to confirm and sure enough it came from another place.
ReplyDeleteAt least they got me to look twice.
Message-Id: [E1Sr9Zs-000340-E3@server2.internetmarketingcircle.com]
Received: from nobody by server2.internetmarketingcircle.com
Subject: Bank of America Alert: Sign-in to Online Banking Locked
From: Bank of America Alert [onlinebanking@ealerts.bankofamerica.com]
Dear Valued Member,
We noticed invalid login attempts into you account online from an unknown IP address .
Due to this, we have temporarily suspended your account.
We need you to update your account information for your online banking to be re-activated
please update your billing information today by clicking
here www.bankofamerica.com/secured/updates (actually links to http://ahed-jadid.com/cometchat/lang/black.html) After a few clicks,
just verify the information you entered is correct.
Sincerely,
BOA Member Services Team
P.S. The link in this message will be expire within 24 Hours . You have to update your payment information
© 2012 BOA LLC. All Rights Reserved.