26/6). Bank of America - HTML.Phishing.Bank-213
This email targets customers of Bank of America.
Message Details
| Malware Name: | HTML.Phishing.Bank-213 |
| Origin: |  Chile |
| Date first seen: | 19/12/2006 05:20:44 |
| From: | "Bank Of America" <support@bankofamerica.com> |
| Subject: | Maintaining the trust of our customers! |
Attacker's URLs
The following table shows the details of the URLs used by the attacker. These could either be the fake website of the attack, or a site which redirects to the attackers fake site. Sometimes the attacker will use an additional site for hosting resources such as images.
The table shows the current status of the site: if it is still reachable (
), or if it has been shut down (
). If the site has not been confirmed as a phishing site it is shown with the symbol 
. The time when the site was first observed is shown, together with the time that the site was shut down, if applicable. Do not visit the attackers site as it may contain malware. You can get more details on the site by clicking on the 
symbol.
| Status | First observed | Shut Down | Internet Address | URL | |
|---|---|---|---|---|---|
|
17/12/2006 09:41:02 | 18/12/2006 15:20:01 |  66.70.207.183 |
http://www.visionofnature.com/.verification/www.bankofamerica.com/BOA/sslencrypt218bit/online_banking/ | |
Message Text
The text below shows the message content, rendered in a safe way. It does not show images or HTML formatting, but the text is the same as that contained in the phishing email. Each clickable link is shown as a reference. You can see the way the URL is presented in the main body of the text, while the actual URL activated by the link is shown below the main body.
[bmhd_logo.gif]
Dear Customer,
As the Internet and information technology enable us to expand our services,
we are committed to maintaining the trust customers have placed in us for
protecting the privacy and security of information we have about you. In
order to protect your information against unauthorized access, identity
theft and account fraud we earnestly ask you to update your profile.
If you received this notice and you are not the authorized account holder,
please be aware that it is in violation of our policy to represent oneself
as another Bank of America user. Such action may also be in violation of
local, national, and/or international law. Bank of America is committed to
assist law enforcement with any inquiries related to attempts to
misappropriate personal information with the intent to commit fraud or
theft. Information will be provided at the request of law enforcement
agencies to ensure that perpetrators are prosecuted to the fullest extent of
the law.
To confirm your On-Line Safety Account Information please click the link
below.
[1]https://militarybankonline.bankofamerica.com/efs/servlet/military/login.j
sp
Please note:
If we don't receive your account verification within 72 hours from you, we
will further lock down your account untill we will be able to contact you by
e-mail or phone.
2007 Bank of America Administration. All rights reserved.
[eq_off.gif]
References
1. http://www.visionofnature.com/.verification/www.bankofamerica.com/BOA/sslencrypt218bit/online_banking/