| Forum Home | ||||
| PC World Chat | ||||
| Thread ID: 62803 | 2005-10-20 01:57:00 | BNZ Phishing Scam | Billy T (70) | PC World Chat |
| Post ID | Timestamp | Content | User | ||
| 397796 | 2005-10-20 01:57:00 | Another Local bank phishing scam, not as good as the Bank Direct version though. An Error Has Occurred We were unable to process your recent transactions on your account. To ensure that your account is not suspended, please update your information. wwwbnz.com Access to your accounts is protected by your password. To keep your password safe: Never leave your computer unattended while logged on to Internet Banking Always log off Internet Banking when you have finished your banking Your password must be 6 to 8 characters, contain at least one number and one letter, and is case sensitive Make your password difficult to guess by using a combination of letters and numbers Do not use your date of birth, telephone number, address, your name or the name of a friend, relative or pet in your password Change your password regularly, at least once every two months is recommended Do not use your password for anything else (eg. your email account) Ensure that you are not observed entering your password wwwbnz.com Observe the missing dot between www & BNZ, and of course it is .co.nz, not .com so they are probably not locals. The site is down already! Cheers Billy 8-{) |
Billy T (70) | ||
| 397797 | 2005-10-20 05:21:00 | Right, will keep my eye open for that. :waughh: | Cicero (40) | ||
| 397798 | 2005-10-20 05:42:00 | Thanks, getting used to this on pressf1 (no reason to stop posting it ) noticed the missing dot straight off due to many warnings about exactly this i.e. Scour through the addy/URL. Got something similar from my ISP recently from "webmaster@(myISP).co.nz, totally authentic looking but a fake. (OK not a bank phish but an ISP hijack authority one) |
mark c (247) | ||
| 397799 | 2005-10-20 06:23:00 | Interesting, that site is a copy of National Bank (or NBNZ) not the BNZ. Also http://www.trademenz.net |
Jeremy (1197) | ||
| 397800 | 2005-10-20 06:34:00 | Also http://www.trademenz.net Reasonably good Jeremy but doesn't give the fields for each of the two boxes kind of gives it away. Most of us would expect it to say Username and Password. Bit sloppy but still would catch a lot. This stuff has been around for a long time. They used to make up copies themselves but now AFAIK they take a copy and somehow redirect you. P.S. Godfather made lots of informative posts about this. |
mark c (247) | ||
| 397801 | 2005-10-20 08:06:00 | bnz.com (http://www.bnz.com/) looks more scary :rolleyes: I wonder when the BNZ, for example, will have a much more secure authentication system. |
gibler (49) | ||
| 397802 | 2005-10-20 08:18:00 | bnz.com is Business Net Solutions, some chinese outfit, nothing to do with bnz.co.nz if that's what you were thinking of. | mark c (247) | ||
| 397803 | 2005-10-20 08:36:00 | Interesting. A whois research on wwwbnz.com gives this: wwwbnz.com = [ 210.55.168.70 ] domain: wwwbnz.com owner: Bank of New Zealand organization: Bank of New Zealand email: bnzservice@yahoo.com address: PO Box 2392 address: Location 0500C11 city: WELLINGTON state: -- postal-code: 93920 country: NZ phone: 64 4 4716188 admin-c: nzts_notify@bnz.co.nz0 tech-c: bnzservice@yahoo.com0 billing-c: bnzservice@yahoo.com0 nserver: ns1.merlindns.org nserver: ns2.merlindns.org status: lock created: 2005-10-19 22: 52: 05 UTC modified: 2005-10-19 23: 00: 11 UTC expires: 2006-10-19 18: 52: 03 UTC Do we REALLY think BNZ would be using a yahoo email address.....? And a postal code of 93920 (California)? Talk about covering the bases.... |
godfather (25) | ||
| 397804 | 2005-10-20 10:09:00 | Yeah anything with a webmail email addy like that in it I would be suspicous of for a start, coz I have tried that kind of trick myself, (just harmlessly with freinds.) | mark c (247) | ||
| 397805 | 2005-10-21 01:05:00 | " ... We were unable to process your recent transactions on your account. To ensure that your account is not suspended, ... According to the radio news this morning, BNZ took down their own site for a while "as a precaution". The spokesman didn't say what he thought the precaution would protect against. So the bank made itself "unable to process transactions", thus making the false statement true and adding to confidence in the fraud. :D I suppose it didn't occur to anyone to put a warning on the real site. :horrified :groan: |
Graham L (2) | ||
| 1 2 | |||||