Spamvertised ‘Temporary Limit Access To Your Account’ emails lead to Citi phishing emails

Spamvertised ‘Temporary Limit Access To Your Account’ emails lead to Citi phishing emails

by | Mar 8, 2012 | Industry Intel, Threat Lab

Reading Time: ~ < 1 min.

Cybercriminals are currently spamvertising a fraudulent email campaign impersonating Citi, using ‘Temporary Limit Access To Your Account‘ themed emails as a social engineering attempt to trick end users into clicking on the link found in the phishing emails.

More details:

Subject: Temporary Limit Access To Your Account

Spamvertised message: Dear Client,CitiBank Temporary Limit Access To Your Account.Reason: 1.Unauthorized login attempts.2.Billing failure.We require you to complete an account update so we can unlock your account.To start the Unlock process click on: hxxp://irta-dositecno.com/wp-content/uploads/2011/11/.43www3-credit-35-cards-86-citi-08-com/Once you have completed this process, we will send you an email notifyingthat your account is available again. After that you can access your accountonline at any time.NB:Failure to provide required information will lead to account suspension automaticallyfrom Our online database.Sincerely,Citibank Customer Services.

Spamvertised URL: hxxp://irta-dositecno.com/wp-content/uploads/2011/11/.43www3-credit-35-cards-86-citi-08-com/

Upon clicking on the link, users are exposed to a fraudulent Citibank themed web site, requesting their accounting data:

For the time being, only Google Safebrowsing’s initiative has flagged the web site as a phishing one.

Webroot SecureAnywhere customers are protected from this threat.

You can find more about Dancho Danchev at his LinkedIn Profile. You can also follow him on  Twitter.

Blog Staff

About the Author

Blog Staff

The Webroot blog offers expert insights and analysis into the latest cybersecurity trends. Whether you’re a home or business user, we’re dedicated to giving you the awareness and knowledge needed to stay ahead of today’s cyber threats.

6 Comments

  1. Mr. Fix
    Mr. Fix on March 8, 2012 at 11:47 am

    If you are told you have a problem with your Bank account in an email, don’t follow the email, instead call your bank immediately to find out from a real person what the problem is.

    • ExpectingEaster
      ExpectingEaster on March 8, 2012 at 12:47 pm

      Something similar was being sent recently to Bank of America customers as well. Be careful what you click!

  2. Helene Wallace
    Helene Wallace on March 9, 2012 at 10:31 am

    Since I was stupid enough to fill it out and submit, what do I do now to protect myself?

    • Jacob
      Jacob on March 10, 2012 at 7:14 am

      Call citibank immediately!

    • Lisa Bongiovanni
      Lisa Bongiovanni on March 12, 2012 at 1:27 pm

      The first thing to do is check your bank account and make sure there hasn’t been any unauthorized transactions. Second you should notify the bank that you responded to a phishing email that came from someone impersonating them and ask them to put a security alert on your account. Finally, you need to change the password used on the account to something not used on any other online account you have and nothing you’ve ever used before on your bank account. You’ll also want to do a scan for malware in case any may lay dormant on your machine. If you don’t already have Webroot you can get a free trial here. Hope this helps!

  3. Shaunte
    Shaunte on June 28, 2017 at 11:14 am

    Skype has established its internet-dependent customer beta for the entire world,
    after introducing it generally in the United states and U.K.
    previous this calendar month. Skype for Web also now can handle Chromebook
    and Linux for instant online messaging connection (no
    voice and video but, all those demand a plug-in installment).

    The increase of the beta provides assist for an extended listing of languages to aid
    reinforce that overseas user friendliness

Share This