Monday, August 25, 2008

AXIS Bank Latest Phishing Email

It has best Phishing attack as the website is very similar to Axis Bank Website.

The email id used ibrn@axisbank.com is mentioned on Axis Bank Website for reporting Spam and Queries related to online banking.

It even fooled the Header. checked the header ananlysis below.

Internet Explorer 6.0 will easily let you allow. But Firefox will catch it as Phising site and wont allow you to access it.


Original Email:





Link opened in IE:





Link opened in Firefox:






**********************************************************************************
Dear Valuable Customer,

Protect Your Account Now

When signing on to Axis Net Banking, you will be required to activate your two way online security to enable us detect unauthorized login into your account by hackers.

As an additional security measure, your access to Net Banking
has been limited. This web security measure does not affect your
phone banking or ATM banking.

Please click the link below to activate your secured login.

http://www.axisbank.com/
Thank You.

Accounts Management As outlined in our User Agreement, Axis ® Bank will
periodically send you information about site changes and enhancements.

Visit our Privacy Policy and User Agreement if you have any questions.


*************************************************************************
Header Analysis:

Received-SPF: neutral (google.com: 202.71.129.247 is neither permitted nor denied by best guess record for domain of ibrm@axisbank.com) client-ip=202.71.129.247;
Authentication-Results: mx.google.com; spf=neutral (google.com: 202.71.129.247 is neither permitted nor denied by best guess record for domain of ibrm@axisbank.com) smtp.mail=ibrm@axisbank.com

No comments: