Eight new variants of Barclays bank phishing attack

By | September 15, 2006

The phishing attack against clients of Barclays Bank is not letting up. According to anti-virus vendor Panda Software, those responsible for this threat have launched at least eight new variants of the email that tries to redirect users to spoof web pages designed to steal confidential data.

Similarly, and in order to prevent the attack from being fully neutralized, they have set up four new domains hosting fraudulent web pages. Some of these new domains also host spoof Volksbank web pages.

However, despite the appearance of these new variants and domains, there has been a slight decrease in the number of phishing emails in circulation targeting Barclays Bank clients which, at present, make up 54 percent of the total received by PandaLabs.

This attack is based on spoof emails which are made to appear as if they have been sent from Barclays Bank. The (random) subjects used include: Barclays bank official update, Barclays bank – Security update, Please Read orVerify your data with Barclays bank.

The message (which imitates the corporate image of the bank) asks users to confirm their login details due to a software upgrade and provides a link for them to go to the bank´s website. This link however does not point to Barclay´s web page.

Leave a Reply