A Scam Email with the Subject
"Wachovia Connection banking notification mail: New Certificates 2008"
was received in one of Scamdex's honeypot email accounts on
Thu, 06 Mar 2008 04:19:57 -0800 and has been classified as a
Generic Scam.
The sender was
"Wachovia Connection banking Consumer support" <support@wachovia.com>,
although it may have been spoofed.
Scam Tag Cloud
wachoviabankpasswordwindrawsafeaccountnotificationcustomeraccesscustom transferonlinemailuser will securityachcooperationhttp://wc.wachovia.com/online
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email. Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate agencies.
return-path:
<support@wachovia.com>
envelope-to:
419@HUN1P0T
delivery-date:
Thu, 06 Mar 2008 04:19:58 -0800
received:
from inet20908nh-3.eranet.pl ([213.158.196.111])by bartok.HUN1P0T with esmtp (Exim 4.68)(envelope-from <support@wachovia.com>)id 1JXF4T-0007qZ-Gxfor 419@HUN1P0T; Thu, 06 Mar 2008 04:19:57 -0800
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
All Users - Must Accept New Digital Security Certificate 2008 (SecurityISO 27001
Certification Consulting)
Customers of numerous banks have been victims of ACH and wire transfer fraud in
recent weeks, resulting in the origination of unauthorized ACH entries and wire
transfers from customers' computer systems.
Wachovia Enhanced Security Authentication
We have enhanced the Wachovia security access to further safeguard access
to your account information.
Starting from tomorrow system of access to work fields is transferred to coding with a
certificate. It means that your password
and ID will not be changed but will be logged differentially. The only necessary conditions includes the following:
you only need to log the first source-certificate which will generate further conversion.
Thereto you have to follow the link http://wc.wachovia.com/online and enter your access code and ID in the appropriate fields.
We would like to draw your attention to the fact that all fields must be filled out, otherwise the system will block escape to the next level
and you can not start work with your personal data.
Should all necessary fields be filled in and password and ID concur with those registered in our system, you will get access to the work
field.
After that your personal identification Certificate will be successfully logged in the system. No other operations from your part are required.
Thank you for cooperation and support.
IT Security Department
