Yesterday I was targeted for with a "phishing" scam attempt on my Master Debit Card, but I didn't bite. No it isn't mis-spelled, and phishing is fishing—but for your credit card and/or pin number.
These people are pretty clever, and even included my banks logo on the email to make it look official. The email reproduced is below. Oh and when has your bank ever refered to you as a number? They know what your name is.
Dear Customer 224157,
Online Support are remind you that on Apr. 26, 2005 our Account Review Team identified some uncommon activity in your Debit Card account. In accordance with Associated Bank's Client Agreement and to ensure that your online account hasn't been compromised, access to your savings account was limited. Your account access will remain blocked until this question has been decided. If your online access to remain limited for a long period of time may effect in further restrictions on the use of your bank account and possible account closure.We recommend you to sign on and fulfil the steps requisite to restore your online access immediatelly.
Sign on to Banking Account
Associated Bank, is committed to maintaining a safe environment for our customers. To protect the confidence of your online account, employs some of the most leading safety systems in the world and our anti-fraud teams hourly screen the Bank system for fraud activity.
Thank you for your prompt attention to this problem. Review Team apologize for any inconvenience.This is a security measure meant to help protect you and your account.
Have a nice day,
Associated Banc-Corp, Online Banking Customer Support
Don't bother with the "Sign on to Banking Account" link as it no longer works. Probably not because I reported it, but because their MO is to keep moving and changing URL's.
When the link
did work the page that displayed looked just like my Associated Bank online login screen, again with logo and similar layout. But it wasn't asking for my username and password, it WANTED MY CARD AND PIN NUMBER! Not to mention there was no secure server lock in the lower right corner.
My suspicion was already running quite high
before I opened the page, and I had no intention of dealing with it online, but out of curiosity I wanted to see where it was leading. Now my blood was boiling.
Imediately I called the bank just in case they filched any information from amazon or paypal—the only two online sources that have any of my banking information. Everything was secure as I suspected.
Then I forwarded a copy of the email to the abuse department at my ISP email service, and also forwarded a copy to the FTC at
SPAM@UCE.GOV
You can read "
How Not to Get Hooked by a ‘Phishing’ Scam" at the FTC Consumer Alert website. They also have a complaint form if you ever get "phished." Just remember
your bank will never ask for your card or pin numbers online, in emails, or by phone.
