A particularly interesting email came through today. I know I haven’t really posted on much else but I have been very busy with everything. This email was well written and added a little twist. The message came from PNC, from firstname.lastname@example.org. The message had a top header claiming it had been scanned for viruses by mailscanner, with an actual link to mailscanner, and was clean. Being a PNC customer, I opened the email. The email reads (links are inactive for security reasons):
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
A new security method was developed by our IT engineers, which purpose is to protect online accounts from unauthorized usage and third party access. For this new feature to be added to our online banking system our members are required to update their profile information by clicking on the following link:
You are required to update your account one-time only and will take 3-5 minutes of your time. After completing the online forms correctly you can continue using your account as usual. Please note that failure in updating your profile will result in suspending your account.
Now the mailscanner link was legit. What was there to give this scam away? The link to go to the form. It should have went to an https address, and it didn’t. Also, it should have went to something.pnc.com or pnc.com/somestuff. It didn’t it went to a different site that was something like mouehrnejd.fr/sewef/?login=secure. If you are ever unsure of any email sent about updating bank information call your bank directly before filling out any forms or go to your banks site separate from the link you are given.