HMRC Phishing Email and Web site

dp · January 08, 2009, 07:38:15 PM

Date:01.06.2009

Threat Type: Phishing Alert

Websense® Security Labs™ ThreatSeeker™ Network has discovered a phishing site emulating the Web site belonging to HM Revenue & Customs (HMRC), the UK government's taxation authority. The fake site is hosted in Denmark and uses the same stylesheet and graphics as the real HMRC Web site.

Recipients first receive an email advising them that they are due a tax refund. This email contains a link to the phishing Web site. The phishing site aims to collect personal information such as name, address, and credit card information. Upon submitting the data, the user is redirected to the real HMRC site.

http://securitylabs.websense.com/content/Alerts/3276.aspx

Corrine · January 08, 2009, 09:35:34 PM

<OT: Thank you, DP. Good to see you here!>

Eric the Red · January 08, 2009, 11:01:16 PM

This only applies to persons who pay taxes to the United Kingdom's "Her Majesty's Revenue & Customs" and that organisation does not use e-mail to notify tax payers of potential refunds,

The official word from HMRC may be found here.

Frands · January 09, 2009, 08:38:36 PM

:shock: :shock: :shock: It is unusual that a site like this is hosted by a danish hosting company. I would like to know the name of it :thud:

Frands · January 11, 2009, 01:30:59 PM

Hi :)

Info:

The server that hosted the fake phishing site has been closed down on January the 9th by the Danish authorities. Hopefully the Danish authorities will make a track back to the hackers, but that I will not be able to get some information about ;)

http://www.cphpost.dk/news/international/43968-copenhagen-server-responsible-for-british-scam.html

HMRC Phishing Email and Web site

dp

Corrine

Eric the Red

Frands

Frands