Catch and Release Phishing

Guess what, I’m a Central Bank customer.  Oh wait, no I’m not.  But some Phishing scam people are sending emails to people at Mizzou email addresses hoping that at least a few are members of the local bank.  They have created a site that sure does look like Central Bank’s site care of an address that appears to be www.centralbank.net but is really 

http://www.centralbank.net7idpersonalbanking-secure-survey-id-98275.50secure.net.jikao.com.tw/.https://www.centralbank.net/  

They ask for your login ID, I put in “calloway42” and hit login.  What do you know, I’m in!  

Notice the Phishing warning haha.  But I “logged in” and got to this next screen asking me for my opinion on some random things and then my account number, expiration dates and pin number.  

I’m pretty sure that I would need to provide a username and password to log into my account, at the least, and then they would already have this information.  With my bank, Bank of America, I have to have a user account ID, a pin number, a picture identifier and finally a code that is sent to my cellphone each time I try to log in just to make positively sure only I can log into my account.  If you want to do that, you gotta know those three items AND have my cellphone with you.

Oh well, it’s always fun to almost be phished.  Also of note, none of the phishing pages were secure.  Not the best phishing scam I’ve ever seen.

Ok, off to get my Lasik surgery!  

Leave a Reply

Your email address will not be published. Required fields are marked *