From: St. George Internet Banking <onlineservice@stgeorge.com.au>
Date: Sat, 08 Dec 2007 08:27:06 -0800
A Scam Email with the Subject
"IMPORTANT: Multiple Logon Attempts!"
was received in one of Scamdex's honeypot email accounts on
Sat, 08 Dec 2007 08:27:06 -0800 and has been classified as a
Phishing, ID Theft Scam.
The sender was
St. George Internet Banking <onlineservice@stgeorge.com.au>,
although it may have been spoofed.
Scam Tag Cloud
bankip addressthird partyaccountserviceinternetaccessinvestigationverifyonlineonline bankbank nst.george bank will securityfs
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email. Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate agencies.
return-path:
<nobody@host25.ipowerweb.com>
envelope-to:
scams@HUN1P0T
delivery-date:
Sat, 08 Dec 2007 08:27:06 -0800
to:
scams@HUN1P0T
subject:
IMPORTANT: Multiple Logon Attempts!
from:
St. George Internet Banking <onlineservice@stgeorge.com.au>
mime-version:
1.0
content-type:
text/html
content-transfer-encoding:
8bit
date:
Sat, 08 Dec 2007 08:24:43 -0800
message-id:
<SCX4ID@1204769176.M495652P20228V>
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
We recently noticed quite a number of unusual
log-in attempts into your St.George Online Banking Account from an
IP address different from your own we have on file,So we noticed
that your account is having some insufficient security problems for
it to have been accessed by a third party without your
authorization.
If you recently accessed your account on a
travel trip, the Sign on in attempts might have been made by you.
However, if you are the rightful account holder, follow the link
below and make sure you update your online banking informations,as
we try to verify your identity and put an extra security on your
online banking account.
The log-in attempt was made from:
IP address: 71.229.9.95 ISP host:
c-71-229-9-95.hsd1.al.bigbong.net.au
If you decide to ignore
this request, we will temporarily lock your online account access
and conduct further investigations.
We ask that you allow at
least 72 hours for the case to be investigated.
