"SunTrust Bank Irregular Activity Alert" Phishing Email Messages
SunTrust Bank customers are asked to be aware of phishing email messages like the one below, which appear as an "Irregular Activity Alert". The phishing email messages claim that SunTrust Bank has detected a number of failed log-in attempts on the recipients' accounts and they have blocked their accounts. The phishing email messages then claim that the recipients need to click on a link to fix the problem before their accounts are suspended. But, the link will only take the recipients who have clicked on it, to a phishing website, looking like SunTrust Bank’s website, where they will be asked to sign-in with their account credentials. Once the victims enter their account credentials on the fake website, it will be sent to the cyber-criminals behind the scam, who will use it to gain access to their victims’ accounts, where they will steal the victims’ money and use their accounts fraudulently.
A Sample of the Phishing SunTrust Bank Email Messages
From: Online SunTrust - Nogofuckkie@online.de
Date: April 5, 2017 at 3:25:35 PM EDT
Subject: Irregular Activity Alert!!!
Suntrust (R)
We've detected a number of failed log in attempts on your SunTrust account
Status Blocked: As a precaution, we have blocked access to your account and ask you to fix this - Code -4646
Date:
04/05/2017.
Note: You have 48 hrs to fix this or face total suspension
Click Here And Fix This
We're sending this alert as a courtesy.
If you've already been through this process and are seeing this message again, it's possible that you did not give us exactly 48 hrs after your update for proper verification.
Information
Did you know Overdraft Protection can help when your account falls short?
Learn about Overdraft Protection
It is important for internet users to remember that they should never click on a link to sign into their online accounts, especially links in email messages. The safest way to sign into their online accounts is to go directly to their online account providers’ websites, by typing the addresses of the websites in their web browsers or using a popular search engine to find the websites.
For example:
SunTrust’s customers should go directly to: “https://www.suntrust.com/” in their web browsers or search for “SunTrust Bank” using a popular search engine. And, if there is something wrong with their accounts or there is something that they need to do, they will be notified right after signing in.
Recipients of the phishing SunTrust email, who have clicked on the link and have attempted to sign into the phishing website with their accounts’ credentials, should change their passwords and contact SunTrust Bank immediately.
Check the comment section for additional information, or share what you know or ask a question about this article, by clicking the 'View or Write Comment' button below.
Note: Some of the information in samples on this website may have been impersonated or spoofed.