As I mentioned above, KiwiBank phishing scams are arriving in my inbox most days. But here's another
that deserves an honourable mention, purely for its wonderfully complete incompetence. Check this out.
Dear Valued Customer :
We recently have determined that different computers have logged in your Bank of America Online Banking account, and
multiple password failures were present before the logons. We now need you to re-confirm your account information to us.
If this is not completed by November 01, 2011, we will be forced to suspend your account indefinitely, as it may have been
used for fraudulent purposes. We thank you for your cooperation in this manner. In order to confirm your Online Bank
records, we may require some specific information from you.
To restore your account, please Sign in to Online Banking.
thank you for using Kiwi Bank Online Service.
It must take a while to setup a phishing scam, even if you have existing templates. You'd have to set up the actual phishing
site (this one is based in... (drum roll) Romania!
You knock up the draft email, there are thousands of compromised
computers to prep so they'll send your spam and when you finally hit the "Go" button you'd want to feel sure that it was all
going to fly.
So just imagine the bad boys sitting around in a dasha on their Saturday night... counting income from previous phishes, a
few beers sitting on the table, some European soccer on the TV and Demetri hits the "Go" button. All is good.
Then one of the other scammers has a look and says, "WTF? Bank of America? KiwiBank?"
Demitri may have very recently been demoted.