- Popular
- Most Commented

Online Threat Alerts (OTA)

An anti-cybercrime community alerting you to scams and frauds.

"National Commercial Bank Alert - Action Required" Phishing Emails

0
0
2,348
0

Feb. 22, 2017 2017-02-22T14:45:37-05:00
Feb. 22, 2017 2017-02-22T14:48:03-05:00

Online Threat Alerts (OTA)

National Commercial Bank Alert - Action Required Phishing Emails

The email message below with the subject: "National Commercial Bank Alert - Action Required," which appears as if it was sent by the National Commercial Bank (NCB), is a fake. The fake message is a phishing scam that contains an attached form that request the recipients' NCB online account information. If recipients submit their account information on the fake form, it will be sent to the cybercriminals behind the phishing scam, who will use the same information to gain access to their accounts. Once the cybercriminals have gotten access to the accounts, they will steal money from them and use them fraudulently. Therefore, recipients of the same email message are asked to delete it and should not follow the instructions in it.

Advertisements - Continue reading below

A Sample of the "National Commercial Bank Alert" Phishing Email

From: NCB Jamaica [mailto:no-reply@jncb.com]
Sent: Tuesday, February 21, 2017 1:48 PM
Subject: National Commercial Bank Alert - Action Required
Attachment: InternetProfile.html

Changes to your rates

Dear Customer,

At NCB Jamaica, we regularly review our customer records to ensure we have the most recent and up to date information.

To complete the process, we just need to verify that this email address belongs to you.

· Please find the Attached HTML Document

and follow the easy instructions

Have a question?

No worries! Call one of our Customer Service Representatives on (868) 62-FIRST (623-4778) . We're here from 8am to 7pm Monday to Friday.

Thanks,
Marisa Grieco
Customer Operations Manager
NCB

NCB Jamaica and most other legitimate companies will never send email messages to their customers asking them to open a HTML document in order to verify their email addresses or update their records. Therefore, recipients of unexpected or suspicious email messages with attachment ending with ".html" or ".htm" are asked to contact the organizations the email messages appear to have been sent from, in order to verify their authenticity, before they attempt to open the attachment.

Remember, although the "From" address of an email message contains the email address of a legitimate organization; it doesn’t necessarily means it was sent by that organization. There is a technique called Email Spoofing, which allows the sender of an email message to change the "From" address of an email message, to make the same message appear as if it came from someone else.

For example:

I can send an email message to a friend and change the “From” email address of the same message to "president@whitehouse.gov." Once my friend receives the email message, he/she will think the email message came from the president of the United States, when it was actually sent by me. So, never rely on the “From” or sender’s email address to determine if an email message is legitimate or not.

Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search engine. Search

Write your comment or view the ones below. +

Save

Was this article helpful?

Advertisements - Continue reading below

Comments, Answers, Reviews or Questions

To protect your privacy, please remove sensitive or identifiable information from your comments, questions, or reviews. Please keep conversations courteous and on-topic.

Write Your Comment, Answer, Review or Question

Enter comment, answer, review or question.

Trending Now

Samsung Mobile Promo Draw Lottery Scam - Lottery - Donation

There is no "Samsung Mobile Promo Draw" lottery. Therefore, the email message below, which claims that the recipients are lucky winners of the Samsung Mobile Promo Draw, is a scam that is being sent by lottery scammers to their potential victims. Therefore, recipients of the fake email message should not respond to it or follow the instru ...

18,390
166

.JAR Java Archive Virus Email Message Attachments - Virus - Malware - Spyware

Online users, do not open email attachments with file extensions or names ending with ".jar". This is because cybercriminals are sending out fake emails to potential victims with a malicious Java file (.jar) attached. The fake emails have a deceptive message, which instructs the recipients to open the same attached malicious Java file. Bu ...

10,843
19

Is ryml.me a Scam? Received Parcel SMS Text Message - Questions and Answers

I received the text below, which appears to have been sent from Royal Mail. The link in the text goes to the website ryml.me, which is owned by Royal Mail. But, I want to be sure that the text is not a scam. The text message came from telephone number 769256245. ...

13,340
10

Is The $750 Shein Gift Card a Scam? Flash Rewards System - Scamming - Fraud

It seems that the Flash Rewards system is a scam. They have promotional deals that you complete in order to get a gift card. The scam is, they say you must complete X number of deals in a specified timeframe (ie 20 days). It's fast to complete deals, but they don't credit you right away. It may take a week or more to get credited. And, you ...

41,834
10

PayPal Docusign Scam Email Doc - Scamming - Fraud

The fake Docusign email, which claims PayPal customer service sent the recipients a document to review and sign, is a scam. The Docusign email scam is being sent by scammers attempting to trick potential victims into clicking the link in it. The link goes to a fake and phishing PayPal website that steals account credentials, personal, or financial ...

8664466319 PayPal Scam and Fraudulent Email - Spamming - Adware

Scammers are using the telephone number 866-446-6319 to trick potential victims into contacting them. The scammers send out fake PayPal emails to potential victims claiming there is a fraudulent charge on their accounts and ask them to call the fake customer service telephone number for help. If contacted, the scammers will pretend to be PayPal cus ...

McAfee Scam Invoice and Fraudulent Messages - Scamming - Fraud

Scammers are sending McAfee scam invoices like the one below to potential victims. The scammers aim to frighten and trick their potential victims into calling the fake Mcafee customer or technical support telephone number in the email. Therefore, recipients of the fake McAfee are asked to delete it and should not call the fake McAfee technical supp ...

"www.cnregistry.org.cn" - it is a Fake CN and ASIA Domain Name Registration Website - Scamming - Fraud

Domain name owners be aware of fraudulent Chinese domain name registration emails like the one below that came from the fake website "www.cnregistry.org.cn". The fraudulent email messages should not be responded to, especially with personal or financial information. And, the instructions in the same fraudulent email messages should not be ...

4,000
13

KFC (Kentucky Fried Chicken) Fake and Phishing Websites - Scamming - Fraud

The fake KFC online ordering and delivering websites below were created by cyber-criminals or scammers to steal KFC customers’ credit card and personal information. KFC is aware of the fake websites and have posted a warning on their Facebook page. The fast food giant is also working hard to shut down the fake websites in order to prevent the scamm ...

2,101
2

Lesotho Scam Calls From Area Code 266 - One-Ring or Missed Call - Scamming - Fraud

It appears scammers are making One-Ring or Missed Call scam calls from Lesotho 266 area code telephone numbers, ringing their potential victims' phones once, and then hanging up. One such telephone number is +266 611 096 55. One-Ring or Missed Scam call is a telephone scam where criminals trick potential victims into calling premium-rate number ...

17,428
53

Check Your Web Browser for the SSLv3 POODLE Vulnerability or Exploit - Hacking - Cyber-attacks

The link to the test below will take a few seconds to determine if your web browser is vulnerable to the SSLv3 or POODLE exploit. Please note that JavaScript must be enabled in order for the test to work. Although SSLv3 (SSL version 3) is very old and was replaced with Transport Layer Security (TLS), it is still being widely used today. ...

3,509
0

McAfee Scam Email Cancellation Request - Scamming - Fraud

The McAfee scam email request cancellation below is just one of the many being sent by scammers to trick potential victims into contacting them. The fake invoice claims the recipients' subscription will be renewed automatically unless they turn it off in 24 hours. It then gives them a fake MacAfee customer service telephone number to call. The ...

Advertisements - Continue reading below

This Week's Most Popular

Moonton Account Scam Email Account Setting Modification

I got a Moonton email from donotreply@register-sc.moonton.com claiming someone tried to change my account settings and sent a verification code. The thing is, I do not have an account with any Moonton game. Is this some type of phishing Moonton scam or what? ...

8664466319 PayPal Scam and Fraudulent Email

Brushing Scam in a Red Package

I got a package from Amazon that I did not order. It was in a red box with a business card that had a QR CODE. I looked at my order history and I didn't see it and I knew I didn't buy it. I called Amazon and they said this is a SCAM and when you scan the QR code the scammers get access to everything in your phone. ...

Officer Schultz Scam Call - Press One for Concerned Department

Scammers are calling potential victims claiming to be Officer Sarah Schultz from a so-called legal department. The scammers claim their potential victims need to discuss their case and take action. Potential victims are then asked to press one in order to connect to a federal agent. ...

49,385
1,503

Is the MGM Data Settlement a Scam?

I just received the MGM Data Settlement email below. They are cutting me a check for $75. Easy money. Never had a problem with the breach, our data is always available these days unfortunately. You have to be diligent watching your accounts. ...

Samsung Mobile Promo Draw Lottery Scam

18,390
166

Is The $750 Shein Gift Card a Scam? Flash Rewards System

41,834
10

Economic Impact Payment Scam Text Messages

Please beware of "IRS $1,400 Economic Payment" scam texts. I got the $1,400 fraudulent rebate text message below. This clever scam aims to trick victims into handing over sensitive personal and financial information under the pretense of receiving Economic Impact Payment stimulus aid. ...

202 Area Code Scams and Calls

I have been getting a lot of 202 scam calls over the past few days. It seems scammers are using special technology to spoof the actual phone number of a government agency or call from ZIP code (202 for Washington, D.C., for example). This can trick some people into thinking the caller is from a valid source. ...

PayPal Docusign Scam Email Doc

McAfee Scam Invoice and Fraudulent Messages

Is ryml.me a Scam? Received Parcel SMS Text Message

13,340
10

Fastrak Lane Tolls Scam Text - Fine and License

The Fastrak Lane Tolls scam text message below, which claims you need to avoid a fine and keep your license, is being sent by online scammers. The text aims to frighten and trick potential victims into clicking the link in it. The link goes to a phishing website that steals personal and financial information, which will be used fraudulently by scam ...

Advertisements - Continue reading below