Alerts

Service Credit Union

Date:08.28.2006

Threat Type: Phishing Alert

Websense® Security Labs™ has received reports of a new phishing attack that targets customers of Service Credit Union. Users receive a spoofed email message claiming that a new security system is being implemented, so account details need to be confirmed in order to activate the new security. features. The email provides a link to a phishing site that attempts to collect the user's account information.

This phishing site is hosted in China and was up at the time of this alert.

Phishing email text:

Dear Service Credit Union Customer,
Due to recent fraudulent activities on some of Service Credit Union online accounts we are launching a new security system to make Service Credit Union online accounts more secure and safe. Before we can activate it we will be checking all Service Credit Union online accounts to confirm the authenticity of the holder. We will require a confirmation that your account has not been stolen or hacked. Your account has not been suspended or frozen.

To confirm your account status please Login < LINK REMOVED >

      -complete the required information to authenticate and reset your account

      -make sure your account balance has not been changed

      -make sure your details have not been changed

      -review recent transactions in your account history for any unauthorized
      transfer

If you find any type of suspicious activities please contact us immediately. Please include in your message your account number, your account name and the unauthorized transfer date & time.

Please do not reply to this message. For any inquiries, contact Customer Service.

Service Credit Union Copyright © 2006

Phishing screenshots: