Bill Williams (IT): Support Site
Bill Williams (IT): Support Site

[home] | [profile] | [register] | [help] | [Contact Us]

[Security Tips]
       this page
Security Tips   [Tell someone about this]
By Don't Believe it!
Bill Williams

Edit MessageUploaded - 31 Mar 2010 02:21

Don't believe a word of it! It's a FAKE. It's what we call a PHISHING attempt.

If you were to click on the given link, the fake website will record your account details and password & steal your money.


Security of Your Information:

Online Security: Keeping yourself protected - As you'd expect for a bank, we take security very seriously indeed. That's why we've helped to set up a special website devoted to the subject. You might not always be aware of it, but we spend a lot of time in the background making sure you're safe. Our security experts really are the invisible heroes of first direct - and they'll always be working to make sure you're kept perfectly safe.

Our Guarantee - It's our job as a bank to make sure both you and your money are kept safe, and so we've invested heavily in measures to make sure that happens. But if the worst were to come to the worst and you had money taken From your account as the result of a computer crime, we promise to Pay you Back.

For this reason it is vital that you follow the Online Verification to review your Initial Online Details with us, for verification and the safety of your money.

Internet Banking - Log on

Colette G. Collins

Because we want to make sure we're doing a good job, we may monitor or record our calls. We hope you don't mind.


Revised on 31 Mar 2010

Bill Williams

Edit MessageUploaded - 31 Mar 2010 02:22

Another fake Phishing attempt. Do not open any such attachment.


Dear HSBC Online User,

We regret to inform you that access to your online account has been locked.

This happened because of too many failed log-in attempts.

To restore your online account access you can:

1. Visit your local branch and complete the Unlock My Account form (takes several days)

2. Complete the Unlock My Account form online, by downloading and completing the attached form (instant)

Quality service and the security of your account are of great importance to us.

We appreciate each opportunity to serve you.


Customer Service

Please do not reply to this e-mail.

Copyright © HSBC Bank plc 2002 - 2010


Bill Williams

Edit MessageUploaded - 31 Mar 2010 02:23

his is FAKE too.


Apple Store
Call 1-800-MY-APPLE

Dear Customer,

To view the most up-to-date status and make changes to your
Apple Online Store order, visit online your Order Status .

You can also contact Apple Store Customer Service at 1-800-676-2775 or visit online for more information.

Visit the Apple Online Store to purchase Apple hardware, software, and third-party accessories.
To purchase by phone, please call 1-800-MY-APPLE.

Copyright 2010 Apple Inc. All rights reserved.


Bill Williams

Edit MessageUploaded - 31 Mar 2010 02:24

This is how to be test whether such messages are probably fake.

1. be sure your Status bar is turned on in your email program or browser program. {use it's HELP facility to find out how to do that}. The Status bar is usually at the bottom of the Email or browser window and shows messages such as "Connecting to" or "Done".

2. Hover your mouse over every link in the suspect message. The target web page will be shown in the status bar.

3. If the target address does not look like what you expect from the main text of the message (e.g. for the above message) then the message is a fake.

A fairly sure sign that a URL is fake is if the URL contains the "@" sign in the middle of the address. If a URL contains the "@" sign, the browser ignores everything to the left of the link. For example, if you go to a Web site that is
you are not going to the Paypal site at all. Legitimate sites and companies use a domain name as part of their name rather than the "@" sign.

A dead giveaway for a fake URL or a fake Web site is basic spelling mistakes in the Web address itself. Some URLs look very much like the name of a well-known company, but there may be letters transposed or left out. An example might be "" instead of "" These slight differences can be easy to miss, and that's what phishers are counting on.

The popular Paypal site is a common target for phishers and scammers. Even if a URL contains the word "paypal," it may not be the authentic Paypal site. Some common URLs that will NOT lead you to the real Paypal site are: and


Bill Williams

Edit MessageUploaded - 31 Mar 2010 02:25

Your ordinary Common or Garden phishing attempt:

Dear Valued Client

Due to a recent security check on HSBC online banking,we require you to confirm your details by clicking on the logon link below


Failure to do this within 24hrs will lead to access suspension

Sorry for the inconvienence


HSBC Online Banking

The logon actually goes to:
which belongs to:
Javier Vazquez

124 Neville Park Blvd

Toronto, Ontario M4E3P8


not HSBC at all.


Bill Williams

Edit MessageUploaded - 31 Mar 2010 02:26

Yet another fake, which preys on the fact that you get worried about Phishing attacks.
Cunning and NASTY!


Avoid Phishing Attcks:

Internet Banking Solution: Avoid phishing attacks - When you bank online, you trust that your funds and personal information are secure. That's why we work very hard to make first direct and all of our online services, sites you can visit and use with confidence. In Online Banking, our system encrypts all of your information.

It is unreadable to any unauthorized viewing or use, especially during transmission. Due to the Online Fraud which seems to be on the increase, here are the systems we have in place to protect all that you have entrusted us with, Logon below:

Internet Banking - Log on

Kind regards,
Serena K. Jones

Because we want to make sure we're doing a good job, we may monitor or record our calls. We hope you don't mind.
first direct is a division of HSBC Bank plc. © HSBC Bank plc 2009. All Rights Reserved. Member HSBC Group.

The Log on link goes to a website on not HSBC.

That domain belongs to a person called Jared Jared in Alaska.


Bill Williams

Edit MessageUploaded - 31 Mar 2010 02:27

FAKE! Don't let a genuine image fool you.


Your Egg Banking statement is online.

Hello – your statement's arrived. So, go and take a look, it's there to keep you in the know by detailing your transactions. Please remember to always keep your receipts safe, check them off against your statement and dispose of them carefully. If you spot a transaction that you don't recognise you can get help from the link on your statement, if anything still seems wrong contact us straight away.

Please Login below to Review Your Statement. Log in
Egg home

Egg credit cards are issued by Egg Banking plc. Egg Banking plc is registered in England and Wales. Registered number 2999842. Registered office: Citigroup Centre, Canada Square, London E14 5LB. Egg Banking plc is authorised and regulated by the Financial Services Authority.

Egg Banking plc subscribes to the Banking Code; copies of the code are available on request.
For further information or to view the Banking Code visit


Bill Williams

Edit MessageUploaded - 30 Nov 2013 12:50

Fake notice from a credit card company...
Note that BOTH links go to dodgy or compromised websites, don't click EITHER one.


Dear Valued Customer,

This is a short email to let you know that your RBS Credit Card Online Services security details was recently changed on Saturday, November 30, 2013 at 10:32: AM. Please confirm that this request was made by you.

Yes, I made this request.

No, I did not make this request.

Best wishes

David Wayne
Head of Credit Card


To search for
a particular item or
a particular place
type a word or the
name of the place
in the find box near
the top of page
and click the
FIND button.


Home Page.

Click to Add Comments.

Implemented by Bill Williams (IT)
based on ASP Forum.