Bulk e-mail solicitations are sent to inboxes hoping to capture the recipients' attention and trust. In one version, the e-mail alleges that service will be interrupted unless you provide more information and provides a link to what appears to be the legitimate businesses site. The site redirects the recipient to a fraudulent Web site intended to fool the customer into thinking they are doing a good thing by updating their information. The personal, identifying information you provide can give thieves instant access to your accounts.
The following is a sample of these kinds of phishing scams:
Dear (Company) member,
We recently reviewed your account, and we need more information about your business to allow us to provide uninterrupted service.
Until we can collect this information, your access to sensitive account features will be limited. We would like to restore your access as soon as possible. We apologize for the inconvenience. Please visit the: (https:// company Web site link) and complete the steps to remove limitations. Verify your identity is a security measure that will ensure that you are the only person with access to the account. Completing all of the checklist items will automatically restore your account access.
Thanks for your patience as we work together to protect your account.
Sincerely,
(company name)
"Phishing scams are proliferating the Internet, blanketing e-mail accounts in hopes of taking advantage of a few trusting souls," Carter said. "Providing frequent reminders about how phishing works and emphasizing that companies you do business with do not solicit this kind of personal, identifying information over the Internet is important in fighting the battle against fraud."
Most financial institutions have warnings on their Web sites indicating that they will never send e-mails requesting customers update financial account information and have an e-mail address for customers to forward messages believed to be fraudulent.
"Victims of identity and financial theft often find that repairing the damage is frustrating and time consuming," Carter added. "We have to hammer the message home that providing personal information to unknown sources and trusting that each solicitation is real, is dangerous and places your financial health in jeopardy."
