Alerts

Bank of Austria Creditanstalt

Date:08.16.2006

Threat Type: Phishing Alert

Websense® Security Labs™ has received reports of a new phishing attack that targets customers of Bank of Austria Creditanstalt.

Users receive a spoofed email message claiming that many fraudulent transactions have been discovered, and that users must follow new security procedures. The URL provided by the email is a phishing site that attempts to collect users' account information such as TAN and PIN number.

This phishing site is hosted in the Hong Kong Special Administrative Region of China.

Translated sample Phishing email text:

Dear Bank Austria Creditanstalt AG customers,
Please read this message carefully!
Online-banking using numbered TANs is regarded as one of the safest online-banking authorization methods worldwide.
However, there have been a number of fraudulent attempts to transfer money from Bank Austria Creditanstalt customers to foreign countries.
Unfortunately, we are currently unaware of the process that the fraudsters are using.
Our security team has decided on new measures, in order to protect our customers from fraudsters. These measures are an urgent requirement (a necessity) for all Bank Austria Creditanstalt customers.
Please follow this link to authenticate your Bank Austria Creditanstalt account -
< LINK REMOVED >
Beware! All Bank Austria Creditanstalt accounts that cannot be verified within a day will be blocked!

Phishing Screenshots: