Confirm Your Account Profile
[Previous Example] [Share This Page] [Back To The Main SHPAMEE Index] [Next Example]
VERY IMPORTANT INFORMATION, READ THIS FIRST: The example and associated information published on this page are subject to the SHPAMEE Terms Of Use. Please familiarise yourself with these terms before viewing or using any information on this page.
Header:
From - Sat Dec 29 13:55:49 2012
X-Account-Key: account9
X-UIDL: x
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
X-Mozilla-Keys:
Delivered-To: x
Received: by 10.223.204.199 with SMTP id fn7csp485554fab;
Sat, 29 Dec 2012 03:19:45 -0800 (PST)
X-Received: by 10.152.105.203 with SMTP id go11mr33623325lab.53.1356779985466;
Sat, 29 Dec 2012 03:19:45 -0800 (PST)
Return-Path: <www-data1@hosting1.pnz.ru>
Received: from hosting1.pnz.ru (hosting1.pnz.ru. [85.234.33.66])
by mx.google.com with ESMTP id n2si54972635lbk.32.2012.12.29.03.19.44;
Sat, 29 Dec 2012 03:19:45 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of www-data1@hosting1.pnz.ru designates 85.234.33.66 as
permitted sender) client-ip=85.234.33.66;
Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of www-data1@hosting1.pnz.ru
designates 85.234.33.66 as permitted sender) smtp.mail=www-data1@hosting1.pnz.ru
Received: from www-data1 by hosting1.pnz.ru with local (Exim 3.35 #1 (Debian))
id 1TouS8-0005ed-00
for <x>; Sat, 29 Dec 2012 15:19:44 +0400
To: x
Subject: Confirm Your Account Profile
From: SunTrust Online <onlineservice@suntrust.com>
Message-Id: <x@suntrust.com>
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: 8bit
Sender: www-data1 <www-data1@hosting1.pnz.ru>
Date: Sat, 29 Dec 2012 15:19:44 +0400
X-Account-Key: account9
X-UIDL: x
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
X-Mozilla-Keys:
Delivered-To: x
Received: by 10.223.204.199 with SMTP id fn7csp485554fab;
Sat, 29 Dec 2012 03:19:45 -0800 (PST)
X-Received: by 10.152.105.203 with SMTP id go11mr33623325lab.53.1356779985466;
Sat, 29 Dec 2012 03:19:45 -0800 (PST)
Return-Path: <www-data1@hosting1.pnz.ru>
Received: from hosting1.pnz.ru (hosting1.pnz.ru. [85.234.33.66])
by mx.google.com with ESMTP id n2si54972635lbk.32.2012.12.29.03.19.44;
Sat, 29 Dec 2012 03:19:45 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of www-data1@hosting1.pnz.ru designates 85.234.33.66 as
permitted sender) client-ip=85.234.33.66;
Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of www-data1@hosting1.pnz.ru
designates 85.234.33.66 as permitted sender) smtp.mail=www-data1@hosting1.pnz.ru
Received: from www-data1 by hosting1.pnz.ru with local (Exim 3.35 #1 (Debian))
id 1TouS8-0005ed-00
for <x>; Sat, 29 Dec 2012 15:19:44 +0400
To: x
Subject: Confirm Your Account Profile
From: SunTrust Online <onlineservice@suntrust.com>
Message-Id: <x@suntrust.com>
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: 8bit
Sender: www-data1 <www-data1@hosting1.pnz.ru>
Date: Sat, 29 Dec 2012 15:19:44 +0400
Body:
Dear Customer,
You've changed your mailling address and we want you to confirm if it's you..,
But if you don't make any changes in your account
Click on sign in, in your Online Banking page for quick and easy
process to Re-Update your Online Security Access .
Sign in to Online Banking
Thanks for taking the time to Update your Online Security - Endeavour to fill in your Memorable word correctly
© 2012 All Rights Reserved
Comments:
Related Cyber Criminal Profiles:
No related profiles found.Similar Spam Examples:
Bank of America Alert Account Has Insufficient FundBanking Phishing Scam - Your Chase Credit Card Account
Banking Phishing Scam - Natwest - Reactivate your Online Access
Chase Banking Phishing Scam - ACTION REQUIED: Notice for your account
Orchard Bank Phishing Scam Account Alert Statement Available
Related Malware Samples:
No related malware samples found.[Previous Example] [Share This Page] [Back To The Main SHPAMEE Index] [Next Example]
So they know that the customer's mailing (please note, with one 'l') address have changed, yet they don't know the customer's name, they simply address him/her as Dear Customer. It is like walking up to a random person in the street and telling that person, hey I know you have changed your e-mail address, I just want to make sure if it is you...
The scammer must have hit a blank here, spammer's block, or whatever you want to call it. If you don't make any changes... then... um... nothing! But really, if you ignore this e-mail, that's exactly what's going to happen, absolutely nothing. So take the great advice of this scammer and ignore e-mails like this one.
process to Re-Update your Online Security Access
So "Re-Updating" something is like updating an update, right?
These guys are great, they will confuse the victim so much that this phishing scam is destined to fail. What is your "Memorable word", is that another way of referring to your password, or is it just the epitaph on your tombstone? Only the phishing scammer will know.