Chinese phishing attack hits Bank of Scotland

Link to software update tries to fool users into handing over passwords for online bank accounts.

A phishing attack is being launched against Bank of Scotland customers from a web site based in China.

The attack comes from emails that have been widely spammed out claiming that online customers of Bank of Scotland (BOS) need a software upgrade and directing the recipient to a new web page.

"The Bank Of Scotland Technical Department is performing a scheduled software upgrade to improve the quality of the banking services," it reads.

"By clicking on the link below you will begin the procedure of the user details confirmation."

The page has been carefully designed to look legitimate and asks for business or personal login details.

"The phishing site is hosted in China and was up at the time of this alert," said internet monitoring firm Websense, which issued the alert.

The Anti-Phishing Working Group warned in May that phishers are increasingly looking to move away from attacking online payment services like PayPal and concentrating on online banks. BOS is the UK's largest mortgage and savings provider and has assets of over 540 billion.

Featured Resources

The challenge of securing the remote working employee

The IT Pro Guide to Sase and successful digital transformation

Free Download

VMware Cloud workload migration tools

Cloud migration types, phases, and strategies

Free download

Practices for maximising the business value of digital infrastructure Consumption-as- a-Service subscriptions

IDC PeerScape

Free Download

Container network security guide for dummies

Enforcing Kubernetes best practices

Free download

Most Popular

How to move Microsoft's Windows 11 from a hard drive to an SSD
Microsoft Windows

How to move Microsoft's Windows 11 from a hard drive to an SSD

4 Jan 2022
Microsoft Exchange servers break thanks to 'Y2K22' bug
email delivery

Microsoft Exchange servers break thanks to 'Y2K22' bug

4 Jan 2022
Solving cyber security's diversity problem
Careers & training

Solving cyber security's diversity problem

5 Jan 2022