I'm not sure whether this is good or bad practice. It is a scam - so it is bad. But compared to some that arrive in my in-box, this one is well performed. Here's the email:
Note that the 'from' address looks real [the bad guys can do this fairly easily], and the message seems genuine [not full of spelling errors, as many are].
I am certain that if I clicked on the 'log in' button I would be taken to a similarly believable web page where I could enter my log in and password details - it might even ask me to confirm other personal details [eg my mother's maiden name] in the cause of this 'security check'.
So why am I so sure this is a scam?
Well, one thing is that the banks continuously tell us that they never practice this kind of thing.
But the killer is ... I don't have a Nat West account.
Note that the 'from' address looks real [the bad guys can do this fairly easily], and the message seems genuine [not full of spelling errors, as many are].I am certain that if I clicked on the 'log in' button I would be taken to a similarly believable web page where I could enter my log in and password details - it might even ask me to confirm other personal details [eg my mother's maiden name] in the cause of this 'security check'.
So why am I so sure this is a scam?
Well, one thing is that the banks continuously tell us that they never practice this kind of thing.
But the killer is ... I don't have a Nat West account.
No comments:
Post a Comment