Irish Bank hit by ‘undetectable’ phishing scam

FRAUDSTERS are targeting Ireland’s biggest bank, AIB,  in a virtually undetectable internet scam. The bank admits it does not know and cannot find out how many of its customers are affected by the fraud.

If you have an account at AIB, click here for Important InformationAIB Bank

Cheats have found a way of overcoming security measures on AIB’s genuine website to fool customers into divulging their account details and passwords.

They are infecting customers’ computers with a “parasite” virus which activates the moment they visit AIB’s secure internet banking site and go to the “log-in” page.

t the log-in stage they are presented with a “ghost” AIB page asking them for their registration number, full security code, mobile phone number and credit card details.

However, customers cannot immediately tell the page is bogus as the website address in their browser is exactly the same as AIB’s security-assured website.

The only way they have of knowing the page is fake is if they are aware that AIB’s standard log-in page never asks for PIN access codes in full.

AIB, which is Ireland’s biggest company, said only a few customers have reported noticing the scam, but said bosses could not find out how many were being targeted.

The Spoof login page
Last night consumer rights campaigners called for urgent action from AIB to publicise and tackle the “breath-taking” new scam.

“This fraud just shows the capability, determination and intellect of the people involved in the scam,” said Mr Dermott Jewell of the Consumers’ Association of Ireland.

“The banks are going to have to invest a significant amount of time and expertise to deal with this — a simple warning to customers will not do.”

Customers were being increasingly encouraged to go online to do their banking and had to have confidence they were not being defrauded, he said.

The “ghost” scam is a new form of the phishing con, which uses e-mails to trick consumers into visiting a bogus website to give over their bank details.

Savvy customers can tell the “phishing” website is fake because the internet site’s address differs from the normal one used by their bank and is often not a secure site.

This new scam does not rely on email, but tricks customers by making them believe they are entering details onto a genuine site. Armed with customer’s account details, passwords and credit card numbers, the fraudsters can log on to the genuine site and plunder the accounts of victims.

AIB has yet to send out individual warning messages to internet customers, who occasionally get notices and messages from the bank once they log in.

But customers visiting the bank’s main website — — can read the bank’s warning about the scam and see an example of the “ghost” page. “This is not an AIB screen: it is a fraudulent attempt to obtain your personal details,” the warning read.

“The attempted fraud is caused by a virus which installs rogue software on a customer’s computer and then presents a fraudulent screen asking for personal details. Only customers who have this virus on their computers will be affected.

“However, unfortunately, AIB cannot detect which customers have been affected.”

* Any AIB customer who spots a fake page is asked to telephone the bank on 1890 24 24 24.

Net loss: how scam works

* The scam works by infecting a customer’s home or work computer with a virus while they are surfing the internet.

* The virus installs hidden software that is triggers into life once the customer visits the log-in page on AIB’s main website for internet banking.

* The software superimposes a fake website over the genuine AIB website and tricks consumers into divulging their account details.

* Savvy consumers have previously been able to spot similar scams by spotting that the address bar on their web-browser has sent them to a rogue page.

* The new scam means the address in the browser stays the same as the genuine secure site, fooling consumers into thinking the bogus site is safe.

Leave a Comment

Your email address will not be published. Required fields are marked *