An old phishing scam that’s designed to target the customers of Bank of America is aggressively making the rounds once again.
The messages read something like this:
During our usual security enhancement protocol, we observed multiple login attempt error while login in to your online banking account. We have believed that someone other than you is trying to access
your account for security reasons, we have temporarily suspend your account and your access to online banking and will be restricted if you fail to update
Thanks again for using update
The email contains a link that points to a compromised website, which hosts a fake Bank of America login page. As you can see in the screenshot provided by PhishTank
, the malicious page almost perfectly replicates the legitimate Bank of America website.
This particular scam has been making the rounds since 2007, in many cases being utilized in phishing campaigns that targeted the customers of other financial institutions as well.
However, although the malicious notification is old, the phishing website has been adapted to ensure that it can be easily mistaken for the real deal.