I received an email from “HSBC Bank plc. <service.alert@hsbc-online.co.uk>” with an email subject of “HSBC Bank plc – iBanking Online Alert“. I immediately became suspicious of this email because I used to have a HSBC account but not anymore. And I being a Malaysian getting alert email from HSBC UK? That doesn’t make sense at all!

I knew immediately that this is a phishing email which targets it’s recipients to disclose their HSBC Online Banking login information! As I am already aware of phishing tactics, I can avoid being cheated into disclosing my online bank login information, but how about people who are not aware of this? That is why I’m writing this to educate people about this problem.

Below is how the phishing email looked like:

I will tell you why the email above is a scam. First, my email client Thunderbird have already suggested that this email might be a scam. Second, when you mouse-over “http://www.hsbc.co.uk/1/2/” link, you can see that the actual link shown at the bottom bar is actually “http://millionairetranscripts.com/audio/u/“. That shows that the sender is hiding the actual URL address and that is usually done due to bad intentions! If you can’t see the actual URL at the bottom, you can right-click the URL in the email and click “Copy Link Location” and paste into Notepad to see the actual hidden URL address.

When I clicked “http://www.hsbc.co.uk/1/2/” link, it opened my internet browser and loaded “http://millionairetranscripts.com/audio/u/” which redirected the address to a very long URL “http://mangiaonthird.com/bb/xx/CAM10.ph…..“. And guess what, the page looks exactly like the actual HSBC Online Banking website!

If you are a computer user who don’t usually check the URL address, you might be cheated into typing your actual HSBC Online login information at this phishing website. The owners of this website will then have your login details after which they can login into your HSBC online banking account and maybe transfer all your money out!

This does not only happen to HSBC bank, it can happen to any bank. The reason HSBC is targeted is maybe due to the availability of this bank in many countries around the world, thus multiplying the chances of getting victims.

Always remember, if you receive an email from any bank, do not click the link but type the actual URL address in your internet browser yourself! Do not become a victim of phishing websites. And please share this page information with your friends, this information might save many people. If you would like to get updated with tips like this whenever I post them, please subscribe here http://feedburner.google.com/fb/a/mailverify?uri=prajishsankar&loc=en_US.


Related Posts with Thumbnails