26/24). Bank of America - HTML.Phishing.Bank-213
This email targets customers of Bank of America.
Message Details
| Malware Name: | HTML.Phishing.Bank-213 |
| Origin: |  Macau |
| Date first seen: | 01/02/2007 02:45:48 |
| From: | "Bank of America" <support@bankofamerica.com> |
| Subject: | Important Notice Account Security |
Attacker's URLs
The following table shows the details of the URLs used by the attacker. These could either be the fake website of the attack, or a site which redirects to the attackers fake site. Sometimes the attacker will use an additional site for hosting resources such as images.
The table shows the current status of the site: if it is still reachable (
), or if it has been shut down (
). If the site has not been confirmed as a phishing site it is shown with the symbol 
. The time when the site was first observed is shown, together with the time that the site was shut down, if applicable. Do not visit the attackers site as it may contain malware. You can get more details on the site by clicking on the 
symbol.
| Status | First observed | Shut Down | Internet Address | URL | |
|---|---|---|---|---|---|
|
31/01/2007 19:10:14 | 08/02/2007 09:37:09 |  218.200.132.133 |
http://218.200.132.133/images/profile/step1.htm | |
Message Text
The text below shows the message content, rendered in a safe way. It does not show images or HTML formatting, but the text is the same as that contained in the phishing email. Each clickable link is shown as a reference. You can see the way the URL is presented in the main body of the text, while the actual URL activated by the link is shown below the main body.
[mhd_reg_logo.gif]
In attention of Bank of America customers,
As the Internet and information technology enable us to expand our services,
we are committed to maintaining the trust customers have placed in us for
protecting the privacy and security of information we have about you. In
order to protect your information against unauthorized access, identity
theft and account fraud we earnestly ask you to update your profile.
To get started, please click the link below:
[1]https://bankofamerica.com/onlinebanking/?adlink=0003020520000000a584
If you received this notice and you are not the authorized account holder,
please be aware that it is in violation of our policy to represent oneself
as another Bank of America user. Such action may also be in violation of
local, national, and/or international law. Bank of America is committed to
assist law enforcement with any inquiries related to attempts to
misappropriate personal information with the intent to commit fraud or
theft. Information will be provided at the request of law enforcement
agencies to ensure that perpetrators are prosecuted to the fullest extent of
the law.
Thanks for your patience as we work together to protect your account.
Regards,
Customer Support Center.
This site is directed at or made available to persons in the United States
only. Persons outside the United States may visit [2]International Banking.
Products and services described, as well as associated fees, charges,
interest rates, and balance requirements may differ among geographic
locations. Not all products and services are offered at all locations.
Member FDIC.
© 2007 Bank of America
References
1. http://218.200.132.133/images/profile/step1.htm
2. http://218.200.132.133/images/profile/step1.htm