First Name
City
State
Email Address
First Name
City
State
Email Address
Sign Up for Our
Informative
Newsletter
Example of a "Phishing" Scam
Dear Valued Customer,
Your access to Online Banking Service has been suspended. Due to a miss-match access code between your Security information. To enable you continue accessing your online account it will only take you few minutes. Follow the reference below and you will be guided to where you can gain an instant verification process.
https://wilmingtontrust.com/wtcom/login.jsp
IMPORTANT - You are strictly advised to match your Sensitive Details correctly to avoid service denial.
Thank you for helping us to protect you.
Wilmington Trust
I received an email today informing me that access to my Online Banking Service has been suspended and it appeared to be from Wilmington Trust Bank in Wilmington, Delaware.
After looking at the email thoroughly I was pretty sure that it wasn't actually from Wilmington Trust and that someone was trying to get sensitive account information.
The URL that was shown in the email is actually the correct URL to get to the log-in page of Wilmington Trust's website: https://wilmingtontrust.com/wtcom/login.jsp. However when I hovered my cursor over the Wilmington Trust URL, a different URL appeared. The actual URL, the place it would have taken me if I didn't take a minute to think about it was http//:www.koreainworld.co.kr/board/data/Wilmington-online/Wilmington.htm
I started thinking about several factors; was this email really from Wilmington Trust, what online banking service could have been suspended, or was this even a reasonable email for me to receive?
We did have a loan with Wilmington Trust that was paid off last summer, but we didn't have an online access to that loan account. At this point I was pretty sure this was a PHISHING email.
I started looking for more evidence to prove my suspicions and that's when I noticed the differences in the URL's. I had remembered reading about these types of phishing emails and that there is usually poor grammar or misused words, so I decided to reread the entire email slowly as if I were proof reading it. That's when I noticed that the second sentence isn't a complete sentence but a fragment ("Due to a miss-match access code between your Security information"), and the third sentence is also a fragment and is missing the word "to", ("To enable you continue accessing your online account it will only take you few minutes.").
I forwarded the email to the Wilmington Trust Fraud Division. I'm not sure what can be done to stop this particular person or group of people, but I am sure that the very second a phishing email scam is stopped, there's another just being started.
I wonder how many people fell victim to this scam by clicking on the link in the email, filling in account information, entering passwords and even pin numbers. It is quite concerning when you think about the people who were fooled by this email and may have thousands of dollars stolen from their accounts. Are those people on their own? Should Wilmington Trust take responsibility? Does this fall under the FDIC insurance? Are these the questions that are on the minds of any victims?
I am writing this to make more of you aware of the PHISHING scams that are out there. So remember if you receive an email that appears to be from a financial institution asking you to confirm account information, think before you click on that link! Make that call instead!
I received the above email recently informing me that access to my Online Banking Service has been suspended and it appeared to be from Wilmington Trust Bank in Wilmington, Delaware.
After looking at the email thoroughly I was pretty sure that it wasn't actually from Wilmington Trust and that someone was trying to get sensitive account information.
The URL that was shown in the email is actually the correct URL to get to the log-in page of Wilmington Trust's website: https://wilmingtontrust.com/wtcom/login.jsp. However when I hovered my cursor over the Wilmington Trust URL, a different URL appeared. The actual URL, the place it would have taken me if I didn't take a minute to think about it was http//:www.koreainworld.co.kr/board/data/Wilmington-online/Wilmington.htm
I started thinking about several factors; was this email really from Wilmington Trust, what online banking service could have been suspended, or was this even a reasonable email for me to receive? At this point I was pretty sure this was a PHISHING SCAM email.
I started looking for more evidence to prove my suspicions and that's when I noticed the differences in the URL's. I had remembered reading about these types of phishing emails and that there is often poor grammar or misused words, so I decided to reread the entire email slowly, as if I were proof reading it. That's when I noticed that the second sentence isn't a complete sentence at all but a fragment ("Due to a miss-match access code between your Security information"), and the third sentence is also a fragment and is missing the words "to" and "a", ("To enable you_continue accessing your online account it will only take you_few minutes.").
I forwarded the email to the Wilmington Trust Fraud Division. I'm not sure what can be done to stop this particular person or group of people, but I am sure that the very second a phishing email scam is stopped, there's another just being started.
I wonder how many people fell victim to this scam by clicking on the link in the email, filling in account information, entering passwords and even pin numbers. It is quite concerning when you think about the people who were fooled by this email and may have thousands of dollars stolen from their accounts. Are those people on their own? Should Wilmington Trust take responsibility? Does this fall under the FDIC insurance? Are these the questions that are on the minds of any victims?
While individuals are normally protected from such losses, businesses have no such protection. Some banks say they will reimburse a business account for their losses, but there is no legal mandate for them to do so, and as the total losses increase I would expect their committment to fade.
I am writing this to make more of you aware of the PHISHING scams that are out there. So remember, if you receive an email that appears to be from a financial institution asking you to confirm account information, think before you click on that link! Make a phone call instead and check that phone number to make sure it is correct before dialing!
©2012 Networking Delaware, LLC
(302)
368-8630
Networking
Delaware
I.T. Services