An
Email with the Subject "Update Your Account" was
received in one of Scamdex's honeypot email accounts on Tue, 13 May 2008 10:30:39 -0700
and has been classified as a Generic Scam Email.
The sender shows as Royal Bank Of Scotland Plc <account.review@rbs.co.uk>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
bankwinaccountclaimcustomerserviceclientcustomlegalsecureonlinemailbank online banknroyal bank royal bank royal banknsecuritydearhttp://ahomeforsale.org/d...financial financial
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => scamdex@scamdex.com
[delivery-date:] => Tue, 13 May 2008 10:30:39 -0700
[received:] => Array
(
[0] => from keywest.dnsdc7.com ([64.185.237.74])by gogol.o7e.net with esmtps (TLSv1:AES256-SHA:256)(Exim 4.68)(envelope-from )id 1JvyKg-0005a1-9efor scamdex@scamdex.com; Tue, 13 May 2008 10:30:39 -0700
[1] => from nobody by keywest.dnsdc7.com with local (Exim 4.68)(envelope-from )id 1JvyJI-0003MY-KEfor scamdex@scamdex.com; Tue, 13 May 2008 13:29:08 -0400
)
[to:] => scamdex@scamdex.com
[subject:] => Update Your Account
[from:] => Royal Bank Of Scotland Plc
[reply-to:] =>
[mime-version:] => 1.0
[content-type:] => text/html
[content-transfer-encoding:] => 8bit
[date:] => Tue, 13 May 2008 13:29:08 -0400
[x-antiabuse:] => Array
(
[0] => This header was added to track abuse, please include it with any abuse report
[1] => Primary Hostname - keywest.dnsdc7.com
[2] => Original Domain - scamdex.com
[3] => Originator/Caller UID/GID - [99 32002] / [47 12]
[4] => Sender Address Domain - keywest.dnsdc7.com
)
[x-source:] =>
[x-source-args:] => /usr/local/apache/bin/httpd -DSSL
[x-source-dir:] => tech-spark.com:/public_html
[x-spam-status:] => No, score=1.7
[x-spam-score:] => 17
[x-spam-bar:] => +
[x-spam-flag:] => NO
[x-o7e-flag:] => J-3509981-042508::keywest.dnsdc7.com [64.185.237.74]
[message-id:] => REIDs3x1239839787.M702780P32690V-S3X
[x-scamdex-scores:] => S:40 P:44 A:41 L:34 E:40 G:33
[x-scamdex-classtype:] => P
[x-scamdex-classscore:] => 44
[x-scamdex-totscore:] => 232
[x-scamdex-kw:] => account,bank,claim,customer,inc.,legal,online bank,plc,report,service,verification
[x-scamdex-dir:] => C
[x-scamdex-id:] => C1240615308.M129905P8072V
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
RBs
Financial Group always looks forward for the high security of
our clients. Some customers have been receiving an email claiming
to be from RBs Financial
Group advising them to follow a link to what appear to be a
RBs Financial Group web site,
where they are prompted to enter their personal Online Banking
details. RBs Financial Group is
in no way involved with this email and the web site does not
belong to us.
RBs
Financial Group is proud to announce about their new updated secure
system. We updated our new SSL servers to give our customers a
better, fast and secure online banking service.
Due to the
recent update of the servers, you are requested to please update
your account info at the following link.
