My name is Ram Rachum, and I'm a Python software developer based in Israel.

This is my personal blog. I write about technology, Python, programming and a bunch of other things.

GitHub profile

Personal Website

7th February 2013

Text

First phishing attempt that targets Israeli bank

Over the years I’ve gotten thousands of phishing attempts to my mailbox, but now for the first time I get one that’s masquerading as an Israeli bank, Bank Leumi:

image

The copy looks surprisingly good. To those of you who don’t read Hebrew, it’s pretty standard stuff: Due to some unspecified security problems, we need you to give us all of your secret banking information, kthxbye.

But of course, if the lack of punctuation marks didn’t give this away as a phishing attempt, the link to http://adf.ly/IjI32 surely does.

That webpage, intended to collect the victim’s personal banking information, also looks surprisingly legit:

image

Of course, the domain mpibullion.com doesn’t belong to Bank Leumi, so there’s no doubt that this is a scam. The link to Verisign simply links to the certificate for Leumi’s actual website.

All in all, a well executed scam.

Comments
All content in this website is copyright © 1986-2011 Ram Rachum.
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License, with attribution to "Ram Rachum at ram.rachum.com" including link to ram.rachum.com.
To view a copy of this license, visit: http://creativecommons.org/licenses/by-sa/3.0/