HMRC Phishing Email and Web site

Started by dp, January 08, 2009, 07:38:15 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

dp

Date:01.06.2009

Threat Type: Phishing Alert

Websense® Security Labs™ ThreatSeeker™ Network has discovered a phishing site emulating the Web site belonging to HM Revenue & Customs (HMRC), the UK government's taxation authority. The fake site is hosted in Denmark and uses the same stylesheet and graphics as the real HMRC Web site.

Recipients first receive an email advising them that they are due a tax refund. This email contains a link to the phishing Web site. The phishing site aims to collect personal information such as name, address, and credit card information. Upon submitting the data, the user is redirected to the real HMRC site.

http://securitylabs.websense.com/content/Alerts/3276.aspx
Microsoft MVP - Consumer Security since 2004
DP's Security Bits

Corrine

<OT: Thank you, DP.  Good to see you here!>


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Eric the Red

This only applies to persons who pay taxes to the United Kingdom's "Her Majesty's Revenue & Customs" and that organisation does not use e-mail to notify tax payers of potential refunds,

The official word from HMRC may be found here.
"The time to start running is around about the "e" in "Hey, you!" "

Frands

 :shock: :shock: :shock: It is unusual that a site like this is hosted by a danish hosting company. I would like to know the name of it :thud:
Our greatest glory is not in never falling but in rising every time we fall.
- Confucius
-----
Trend Micro Internet Security


Home Forums:
https://www.landzdown.com/
http://securitygarden.blogspot.dk/
https://www.classicrockforums.com/

Frands

Hi :)

Info:

The server that hosted the fake phishing site has been closed down on January the 9th by the Danish authorities. Hopefully the Danish authorities will make a track back to the hackers, but that I will not be able to get some information about ;)

http://www.cphpost.dk/news/international/43968-copenhagen-server-responsible-for-british-scam.html
Our greatest glory is not in never falling but in rising every time we fall.
- Confucius
-----
Trend Micro Internet Security


Home Forums:
https://www.landzdown.com/
http://securitygarden.blogspot.dk/
https://www.classicrockforums.com/