An
Email with the Subject "Online Banking Urgent Security Notice" was
received in one of Scamdex's honeypot email accounts on Thu, 15 Mar 2007 08:05:28 -0700
and has been classified as a Generic Scam Email.
The sender shows as Halifax Bank PLC <online_service@halifax.co.uk>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
bankhalifaxloginverificationsafeaccountcustomerserviceclientaccessurgentcustomsentonlineonline bankbank nhalifax bank securityachcooperationhttps://www.halifax-onlin...
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => submitted@scamdex.com
[delivery-date:] => Thu, 15 Mar 2007 08:05:28 -0700
[received:] => Array
(
[0] => from [216.200.145.37] (helo=omta06.mta.everyone.net)by bartok.o7e.net with esmtp (Exim 4.63)(envelope-from )id 1HRrWB-0003sh-Fifor submitted@scamdex.com; Thu, 15 Mar 2007 08:05:28 -0700
[1] => from dm53.mta.everyone.net (bigiplb-dsnat [172.16.0.19])by omta06.mta.everyone.net (Postfix) with ESMTPid A65A71C7A8; Thu, 15 Mar 2007 08:05:11 -0700 (PDT)
[2] => from thomascomedia.propagation.net (64.182.86.161 [64.182.86.161])by dm53.mta.everyone.net (EON-INBOUND) with ESMTP id dm53.45f6e8b9.60c0b0for ; Thu, 15 Mar 2007 08:05:10 -0700
[3] => from thomascomedia.propagation.net (localhost [127.0.0.1])by thomascomedia.propagation.net (8.13.4/8.13.4) with ESMTP id l2FF4xaW018539for ; Thu, 15 Mar 2007 09:04:59 -0600
[4] => (from nobody@localhost)by thomascomedia.propagation.net (8.13.4/8.13.3/Submit) id l2FF4xvf018538;Thu, 15 Mar 2007 09:04:59 -0600
)
[x-eon-delivered-to:] =>
[x-eon-dm:] => dm53
[date:] => Thu, 15 Mar 2007 09:04:59 -0600
[x-uid:] => <200703151504.l2FF4xvf018538@thomascomedia.propagation.net>
[to:] => advance@antihotmail.com
[subject:] => Online Banking Urgent Security Notice
[from:] => Halifax Bank PLC
[mime-version:] => 1.0
[content-type:] => text/html;
[content-transfer-encoding:] => 8bit
[sender:] =>
[message-id:] => <200703151504.l2FF4xvf018538@thomascomedia.propagation.net>
[x-scamdex-scores:] => S:57 P:69 A:58 L:54 E:59 G:52
[x-scamdex-classtype:] => P
[x-scamdex-classscore:] => 69
[x-scamdex-totscore:] => 349
[x-scamdex-kw:] => Halifax,access,account,bank,customer,first,inc.,login,online bank,plc,safe,sent,service,urgent,verification
[x-scamdex-em:] => advance@antihotmail.com,nobody@localhost
[x-scamdex-dir:] => P
[x-scamdex-id:] => P1204769110.M345776P20228V
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
Halifax Online Security Department has been receiving complaints
from our customers for unauthorised uses of the Halifax Online Banking accounts.
As a result we are temporarily shutting down some selected Halifax Online Banking
Accounts perceived vulnerable to this, pending till the time we carry out
proper verification by the account owner. Halifax Online Banking is committed to ensure the safeguard of
each customer personal information, making sure only authorised individuals
have access to their accounts.
As a first step to have Your Halifax Online Banking Access reactivated please
reconfirm your identity by using the link provided below.
These instructions are sent to and should be followed by all Halifax Online Banking
clients,to avoid service deactivation after the verification is completed.
We apologise for any inconveniences and thank you for your cooperation.
Halifax plc, Registered in England No.2367076. Registered Office: Trinity Road, Halifax, West Yorkshire, HX1 2RG
