Best Viewed With Firefox, Chrome or Safari
Copyright (c) 2006-2016 Coenraad de Beer
Cyber Top Cops - The Cyber Security Experts
Bringing Law and Order to the Cyber World
Copyright © 2006-2016 Coenraad de Beer

About Us Contact Us Support Us
Custom Search
Bookmark and Share RSS Feeds


BancorpSouth Phishing Scams

PLEASE NOTE: BancorpSouth is not responsible for these e-mail scams. Organisations and individuals, pretending to be BancorpSouth, initiate them. All trademarks and related logos are either trademarks or registered trademarks of their respective owners, or their licensors. Cyber Top Cops is in no way affiliated with BancorpSouth. The "Received From" e-mail address mentioned for each e-mail on this page, is a spoofed e-mail address and is not the true origin of the scam e-mail.

Date: 11 August 2007
Received from "[!]Clients' support " <>
Subject: [!]Transfer Management BancorpSouth Operations

Dear Member:

Thank you for choosing BancorpSouth Management. Unfortunately there has been a
problem processing your last transfer information for the month of August,2007.

Please review our requirements at BancorpSouth account management. You will be able
to update your transfer information quickly and easily using our secure server
web form. Please understand that without promptly updating your private
information, your BancorpSouth service may be discontinued. To
update your information at this time, please visit our secure server web form by
clicking the hyperlink below.

BancorpSouth Online Services

We appreciate your business and hope to keep you as a customer for life.
BancorpSouth is so easy, no wonder it's number 1 !

If you have any questions please feel free to contact the Cash Management Operations Department at [DELETED].

Thank you,

Ralph Price
1st Vice President
Cash Management Operations

© 2007 BancorpSouth Online, Inc. All Rights Reserved

This is one sophisticated phishing e-mail. The telephone number did not correspond to any BancorpSouth telephone number so we deleted it for security reasons. By supplying a fake BancorpSouth telephone number, the scammer ensures that his victims turn to the "right" people for help. Never phone a telephone number supplied in suspicious e-mails like this one, rather look for the telephone number of the relevant department on the organisation's official website. If in doubt, contact the customer service department of the company in question and supply them the details of the e-mail. They will be able to confirm whether such an e-mail has been sent out to their clients. Remember, if you are a client of a company, you have probably received some correspondence from them via postal mail, so use the telephone numbers printed on these documents. Be careful though, phishing scammers can forge offline correspondence too, given the fact that they have your postal address too.

The phishing link in this e-mail has been disguised with an onMouseOver JavaScript event in order to display the URL "" in the status bar of the window if the victim hovers his/her mouse over the link. Checking the URL in your status bar has always been a popular method for revealing the true destination of the link. This might fool people with outdated e-mail clients, but an e-mail client like Mozilla Thunderbird has JavaScript disabled by default, so this technique has no effect on users using the latest version of Thunderbird.

Date: 4 July 2007
Received from "John Blackburn" <>
Subject: BancorpSouth reminder


Dear Client,

Our company continuously keeps abreast of the recent achievements in the field of network piracy control and takes appropriate preventive measures for providing maximum protection of our clients from encroachment of swindlers.

Since tomorrow, the system of access to operating fields of our clients will be transferred to a system of coding with a floating number. It means that your password and ID will not change. However. they will be registered in the system differentially. The only prerequisite consists in the following: you have to register the first sourse key in the system and it will generate further re-encoding. In order to fulfill it, just follow the link and enter your access code and ID in the appropriate fields.

Please, pay attention to the fact, that all fields must be completed, otherwise the system will block transition to the next level, and you will not be able to work with your personal data.

If all necessary fields are completed and your password and ID concur with those registered in the system, you will get access to the operating field. After that your personal identification key will be successfully registered in the system. No other efforts from your side are necessary.

If for any reason you have not succeed in getting access to the system, please, double check validity of data entered. Should all the data be valid but access is still forbidden, please contact our technical support department.

Thanks for understanding and support.
IT Security Department

The "From" address betrays the intent of this e-mail. Why on this earth would BancorpSouth use an e-mail account from an online recruitment website to send important e-mails to their clients? The bottom line is, BancorpSouth will never send e-mails like these.

[Back To Banking Phishing Scams Page]