Alerts

AmSouth Bank

Date:04.19.2006

Threat Type: Phishing Alert

Websense® Security Labs™ has received reports of a new phishing attack that targets customers of AmSouth Bank. Users receive a spoofed email message, which claims that the security on their account will not be guaranteed unless the information on the account is updated. This message provides a link to a phishing website that prompts users to enter account information.

This phishing site is hosted in the United States and was down at the time of this alert.

Phishing Email:

Dear AmSouth Bank customer,

We at AmSouth Bank, would like to remind you that your AmSouth Bank
Account has not been updated to the latest Online Access Agreement for
AmSouth Bank Online Services.

In order for us, at AmSouth Bank to guarantee your online security, you
need to update your account information. We urge you to partner with us
to prevent consumer fraud, by going through the 2 steps AmSouth Bank
Account Confirmation process. This operation involves logging in and
confirming your identity over a secure connection at:

< URL REMOVED > 

After completing this process, you will be informed that your account
has been updated and you will be redirected to the actual Online Access
Agreement, for you to review.

Thank you for choosing AmSouth Bank as your Financial Institution.

When you use AmSouth Bank Online (r) or AmSouth Bank Business Online
(r)
Banking, we guarantee that you will be covered 100% for any funds
improperly removed from your AmSouth Bank accounts, while we are
handling your transactions, subject to your responsibility, described
below.
(c) 1999 - 2005 AmSouth Bank. All rights reserved.

Phishing screenshot: