An
Email with the Subject "Protect Your Online Account Access Now" was
received in one of Scamdex's honeypot email accounts on Fri, 23 May 2008 06:52:33 -0700
and has been classified as a Phishing, ID Theft Scam Email.
The sender shows as Halifax Bank Online Protection <Protection_alart@halifax.co.uk>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
halifaxbankaccountaccesssecureonlinebank nhalifax bank halifax bank halifax bankrusersecurity(ssl)
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => scams@scamdex.com
[delivery-date:] => Fri, 23 May 2008 06:52:33 -0700
[received:] => Array
(
[0] => from [205.234.132.8] (helo=dallas.servershost.net)by gogol.o7e.net with esmtps (TLSv1:AES256-SHA:256)(Exim 4.68)(envelope-from )id 1JzXh5-0001QN-MPfor scams@scamdex.com; Fri, 23 May 2008 06:52:33 -0700
[1] => from nobody by dallas.servershost.net with local (Exim 4.68)(envelope-from )id 1JzXgx-0006M9-8gfor scams@scamdex.com; Fri, 23 May 2008 08:52:19 -0500
)
[to:] => scams@scamdex.com
[subject:] => Protect Your Online Account Access Now
[x-php-script:] => www.fungonewrong.com//index.php for 65.49.14.28
[from:] => Halifax Bank Online Protection
[mime-version:] => 1.0
[content-type:] => text/html; charset=iso-8859-1
[content-transfer-encoding:] => 8bit
[reply-to:] => Halifax Bank Online Protection
[x-priority:] => 1
[x-msmail-priority:] => High
[x-mailer:] => Microsoft Office Outlook, Build 11.0.5510
[x-mimeole:] => Produced By Microsoft MimeOLE V6.00.2800.1441
[date:] => Fri, 23 May 2008 08:52:19 -0500
[x-antiabuse:] => Array
(
[0] => This header was added to track abuse, please include it with any abuse report
[1] => Primary Hostname - dallas.servershost.net
[2] => Original Domain - scamdex.com
[3] => Originator/Caller UID/GID - [99 32003] / [47 12]
[4] => Sender Address Domain - dallas.servershost.net
)
[x-source:] =>
[x-source-args:] => /usr/local/apache/bin/httpd -DSSL
[x-source-dir:] => fungonewrong.com:/public_html
[x-spam-status:] => No, score=5.7
[x-spam-score:] => 57
[x-spam-bar:] => +++++
[x-spam-flag:] => NO
[x-o7e-flag:] => J-3509981-042508::(dallas.servershost.net) [205.234.132.8]
[message-id:] => REIDs3x1239839788.M754364P32690V-S3X
[x-scamdex-scores:] => S:40 P:47 A:43 L:37 E:42 G:36
[x-scamdex-classtype:] => P
[x-scamdex-classscore:] => 47
[x-scamdex-totscore:] => 245
[x-scamdex-kw:] => Halifax,access,account,bank,inc.,promotion,report
[x-scamdex-dir:] => C
[x-scamdex-id:] => C1239839788.M754364P32690V
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
We have
implemented security measures consistent with our
internal information security practices to help us keep your
information secure.
These measures include technical and procedural steps to protect
your data from misuse, access or disclosure, loss,
alteration or destruction.
One of these security measures is to prevent an unauthorized access
and data modification, Halifax Bank Digital
Banking offers
a multistage security system including specially developed user
authorization mechanism, regulations on user access rights,
secure data transmission
protocol (SSL), security certificate, as well as other security
guarantees.
You should complete Halifax Bank digital banking update
on a regular basis.
Click on "NEXT" to complete Halifax Bank
digital banking update.
We have
implemented security measures consistent with our
internal information security practices to help us keep your
information secure.
These measures include technical and procedural steps to protect
your data from misuse, access or disclosure, loss,
alteration or destruction.
One of these security measures is to prevent an unauthorized access
and data modification, Halifax Bank Digital
Banking offers
a multistage security system including specially developed user
authorization mechanism, regulations on user access rights,
secure data transmission
protocol (SSL), security certificate, as well as other security
guarantees.
You should complete Halifax Bank digital banking update
on a regular basis.
Click on "NEXT" to complete Halifax Bank
digital banking update.
Next
