Wells Fargo Report Phishing Scam

First off I should explain what phishing is. Phishing is basically the act of tricking a victim into divulging information. It involves the receiving of an email message with a link to a website where the victim would enter personal information. In this particular scam, you get an email from "Personal Banking: personalbanking@wellsfargo.com" stating that there may have been some unauthorized access to your account and that you should click the link and enter your account and verify some information. When you click the link you are taken to a site which looks identical to the Wells Fargo site.

If you look at the HTML code of the site, you'll notice that they are almost identical. One thing about this scam which was somewhat surprising is that the message made it past my G-mail spam filter. This is slightly different to scams I have seen before in that they don't ask you to reply to this email with your account number like most others, and they don't ask for passwords or anything like that. They simply request that you log in, as you normally do, which would not raise the eyebrow of normal users. On a closer inspection of the site you will notice that the forms submit the data entered (user name and password) to some foreign script and not to Well Fargo. Most probably, the scammer is having all the usernames and passwords emailed to him. After submission of your information the site responds that your password is incorrect. Here an unsuspecting victim would assume that this was because of the supposed unauthorized access mentioned in the email.

If you try to submit information a few more times, it takes you to another Wells Fargo look-alike page called "Online Banking Verification". Here they ask for SSN number, your ATM card number, the expiration date, the pin number and the CVV2# (4 digit verification). With the ATM information the scammer could max out your debit card. With all the rest of the information he has gathered it would not be at all difficult to call up Wells Fargo and basically take over your account. He could change billing addresses, get checks for you account, and simply wipe it out.

How to spot scams like this

Scams like these are usually easy to spot, but this one in particular was a bit tricky, however there are some basic methods you can use to spot these types of scams.

First of all, check the link. Although it looks like the link is going to Wells Fargo's website, if you let the mouse hover over the link for a while and look in the status bar, you will get the real address of the link. In this case the scammer used just an IP address of his domain or machine. This, however, can be overridden on the internet (if the scammer changes the status bar) and sometimes even in your email, depending on what your security settings are.

Check the address bar. In this case, the address bar reported that the website was also from the scammer's IP address. Simply put, it did not say www.wellsfargo.com. Very seldom would a scammer be able to fake this. They may, however, employ other tricks like buying a domain name with a slight spelling difference that the user might not notice or by simply loading the link in a new window and hiding the address bar altogether.

Lastly, the only full proof method to avoid becoming a victim to a scam like this is to simply call in and verify the information over the phone. Please note; do not use a phone number in the email if one is given. Open up your phone book and locate the number for your firm and ask them about it.

Just remember, if it looks funny and feels funny, it's probably a scam. Do not ever reply to such email messages for personal information as sensitive as account information and SSN.

Below is a copy of the email message for your review and amusement. The link is active, however DO NOT ENTER ANY PERSONAL INFORMATION INTO THESE FORMS. THIS IS NOT WELLSFARO'S SITE.

Kevin. A. Lloyd.

From: Personal Banking < personalbanking@wellsfargo.com >
To: me@me.com
Date: Jun 2, 2005 2:22 PM
Subject: Security Notice #291240 Wells Fargo Internet Banking account
Update Necesary!

Dear Member,
We recently reviewed your account, and suspect that your Wells Fargo Internet Banking account may have been accessed by an unauthorized third party. Protecting the security of your acount and of the Wells Fargo network is our primary concern. Therefore, as a preventative measure, we have temporarily limited access to sensitive account features. To restore your account access, please take the following steps to ensure that your account has not been compromised:

1. Login to your Wells Fargo Internet Banking account. In case you are not enrolled for Internet Banking, you will have to use your Social Security Number as both your Personal ID and Password and fill in all the required information, including your name and account number. 2. Review your recent account history for any unauthorized withdrawls or deposits, and check your account profile to make sure not changes have been made. If any unauthorized activity has taken p! la ce on your account, report this to Wells Fargo staff immediately.

To get started, please click on the link below:

https://online.wellsfargo.com/signon?LOB=CONS

We apologize for any inconvenience this may cause, and appreciate your assistance in helping us maintain the integrity of the entire Wells Fargo system. Thank you for your prompt attention to this matter.

Sincerly,
The Wells Fargo Team

Kevin A. Lloyd:

Just launched a website, http://www.DeleteMySpam.com/, dedicated to helping to eliminate the spam crisis.

Daily Mail

Supreme Court rejects widow's claim in Social Security case Los Angeles Times (Mandel Ngan, AFP/Getty Images / May 22, 2012) By David G. Savage, Washington Bureau WASHINGTON — A widow who conceived a baby from the sperm of her late husband is not automatically entitled to Social Security survivors benefits to help raise the ... Supreme Court rules twins conceived posthumously can't get Social Security ...Washington Post Supreme Court limits Social Security for kids from frozen spermDenver Post Court: No Benefits For Kids Conceived After Dad DiedNPR Wall Street Journal (blog) -Examiner.com all 296 news articles »

Security beefed up at German magazine after threat Atlanta Journal Constitution By DAVID RISING AP BERLIN — Security has been stepped up for employees of a German magazine and for members of a small far-right party after a known terrorist called for them to be killed in a video online, officials said Tuesday. and more »

Washington Times

Afghans to Take Over Security Next Year, NATO Agrees New York Times CHICAGO — President Obama and leaders of America's NATO allies formally agreed on Monday to hand over the primary role in providing security in Afghanistan to the Afghans themselves next summer, beginning the end of the United States's involvement in ... NATO to turn over security to Afghans in yearWashington Times Obama confident Afghans can take security leadCBS News NATO Agrees On Afghan Security Transition In 2013San Antonio Express Gant Daily -International Business Times all 13,199 news articles »

Security company Kaspersky warns malware attacks on iOS will "mean disaster ... Computerworld (blog) Those who believe Apple doesn't take security as seriously as Microsoft have new fuel: the Kaspersky security company claims that because Apple won't allow companies to develop "true endpoint security" for iOS, iOS will become a malware target, ... Is iPatch Tuesday In Apple's Future?InformationWeek Kaspersky co-founder resorts to scaremongering over Apple's iOS antivirus banThe Next Web all 10 news articles »

Christian Science Monitor

In Afghanistan, NATO exit plan raises concerns about stability (+video) Christian Science Monitor NATO plans to transition security control to Afghan forces over the next two years, but many Afghans question their ability to hold the gains that have been made. By Tom A. Peter, Correspondent / May 21, 2012 Afghan National Army (ANA) soldiers prepare ... Humanitarian groups fear implications of Afghanistan security handoverThe Guardian (blog) NATO backs Afghan combat leadership planABC Online Afghan funding leaves NATO behindSydney Morning Herald Vancouver Sun -Sacramento Bee -STLtoday.com all 878 news articles »

PCI Compliance, Security Provider ControlScan and Merchant Services Provider ... MarketWatch (press release) ATLANTA, May 22, 2012 (BUSINESS WIRE) -- ControlScan, an expert provider of Payment Card Industry (PCI) Compliance and Security solutions for small to mid-sized merchants and the acquirers that serve them, today announced its partnership with New York ... and more »

Security hike at Long Beach High after shooting Newsday Nassau Newsday > Long Island > Nassau Print Aa Security hike at Long Beach High after shooting Published: May 22, 2012 6:59 AM By JOHN VALENTI john.valenti@newsday.com Heightened security measures were expected to be in effect at Long Beach High School ... and more »

Lattice Technology Praised by Law Enforcement Agencies for Investigative ... MarketWatch (press release) This will enable additional security and protection for the citizens of Rapid City and the surrounding area," Whelchel said. Lattice CEO Paul Burgess said, "Lattice is building an impressive reputation of providing high quality service and our superior ... and more »

Bob McDonnell's national security problem Washington Post And as a 21-year Army veteran, and the father of a daughter who served as a platoon leader in Iraq, he seemed to bring strong national security credentials to the GOP ticket. But now McDonnell's national security credentials have come into question, ... and more »

Veracode and Panel of Security Professionals to Lead Webinar on Mid-Market ... MarketWatch (press release) BURLINGTON, Mass., May 22, 2012 /PRNewswire via COMTEX/ -- Veracode, Inc., the leader in cloud-based application security testing, today announced details of the upcoming webinar, "Mid-Market Application Security -- Defend Like A Fortune 500...or ... and more »