Emails apparently coming from the British mutual financial institution called the Nationwide Building Society try to dupe users into handing over their account credentials.
The emails (via
millersmiles.co.uk) look something like this:
Dear Valued customer,
Your Nationwide Bank account has been accessed from an unauthorized
location. Your account need verification. Please follow the reference link below to verify your account. Click Here To Proceed
Thank you for your Co-operation
Nationwide Building Society-Internet Banking
The link from the email points to a compromised WordPress site from Chile that has been altered to host a malicious webpage which urges victims to provide their usernames and passwords.
Users are advised to keep in mind that legitimate institutions never send out poorly written messages to request sensitive information. Also, remember that the majority of “account verification” and “security update” emails are part of malicious cybercriminals schemes.