We are seeing quite a few Barclaycard phishing attempts today trying to get your Barclaycard details. These are not very well crafted and look nothing like any genuine Barclaycard emails. Do not click any links in these emails. Hover your mouse over the links and you will see a web address that isn’t Barclaycard. Immediately delete the email and the safest way to make sure that it isn’t a genuine email from Barclaycard is to type the Barclaycard web address in your browser. and then log in to the account that way.
Today’s version is the New Protecting Measure in an attempt to make it more believable and attractive for you to click the link & give your details.
Subjects for this Barclaycard phishing spam run include
- Urgent Attention Needed
- New Protecting Measure
- Please confirm your address
- Please confirm your details
Email looks like
Dear Barclaycard client, It has come to our attention that many of our customer’s credit cards have been attacked by third parties, therefore resulting in unauthorized transactions. To protect our customers we are updating our database to a more secure one. All our clients are required to confirm their billing information by taking 2 minutes of their time and filling our online form: Click here to access the online form We are sorry for any inconvenience. Thank you, Barclaycard Services.
The link in this one is to http://4xlcrh1lfo.atillakoc.com/clients/? another one was to http://g6qh0p5rr9.aligizer.com/clients/? and I am starting to hear about loads of others using what look like they are hijacked/compromised subdomains of a real website. All of them use a random subdomain and then the website name and then /clients/?
the site looks like
Following the link in this Barclaycard or other spoofed emails takes you to a website that looks exactly like the real Barclaycard site. You are then through loads of steps to input a lot of private and personal information. Not only will this information enable them to clear out & use your Barclaycard account, but also your Bank Account, and potentially your email details and webspace ( if you have it) They want enough information to completely impersonate you and your identity not only in cyberspace but in real life.
Please read our How to protect yourselves page for simple, sensible advice on how to avoid being infected or having your details stolen by this sort of socially engineered malware.
All of these emails use Social engineering tricks to persuade you to open the attachments that come with the email or follow links in them . Whether it is a message saying “look at this picture of me I took last night” and it appears to come from a friend or is more targeted at somebody who regularly is likely to receive PDF attachments or Word .doc attachments or any other common file that you use every day. Or whether it is a straight forward attempt, like this one, to steal your personal, bank, credit card or email and social networking log in details. Be very careful when unzipping them and make sure you have “show known file extensions enabled“, And then look carefully at the unzipped file. If it says .EXE .SCR or .COM then it is a problem and should not be run or opened.