Threat Analysis: Global Bank Phishing – Fake “Token” Verification & 2FA Code Harvesting This phishing campaign impersonates Global Bank, a financial institution operating in Panama and other Central American countries. The scam is designed to capture the victim’s dynamic password (token) —the one-time two-factor authentication (2FA) code used to authorize transactions and logins. This code …
Continue reading “Global Bank (Panama) phishing page detected”
Threat Analysis: Crédit Agricole Phishing – Fake “SecuriPass” Security Update Scam This phishing campaign impersonates Crédit Agricole, one of the largest banking groups in France. The page claims that security updates have been made and urges the victim to click a link to “reinforce” their SecuriPass (the bank’s real security feature). The page outlines a …
Continue reading “Crédit Agricole Banque & Assurances phishing page detected”
Threat Analysis: Banco BPM Phishing – Multi-Step Credential, Phone Number & OTP Harvesting This phishing campaign impersonates Banco BPM, one of Italy’s largest banking groups. The scam uses a multi-page flow to capture the victim’s online banking credentials, phone number, and OTP (one-time password) —the two-factor authentication code. By harvesting all three, attackers can bypass …
Threat Analysis: HDFC Bank Phishing – Fake NetBanking Login Page This phishing campaign impersonates HDFC Bank, a major Indian financial institution. The page mimics the bank’s NetBanking login interface to steal customers’ Customer ID/User ID and Password/IPIN (Internet Personal Identification Number). How it works:The victim receives a phishing email, SMS, or other message claiming a …
Threat Analysis: La Banque Postale Phishing – Fake “Certicode Plus” Security Update Scam This phishing campaign impersonates La Banque Postale, a major French bank. The message claims that regulatory changes require the victim to accept new conditions and “activate” their Certicode Plus—a legitimate security feature used by the bank for transaction verification. The threat of …
Thank you for sharing these four screenshots. They show a multi-step phishing campaign impersonating Nickel, a French neobank (a subsidiary of BNP Paribas) that offers fee-based bank accounts typically sold in tobacco shops. The scam is designed to capture the victim’s identifier, access code, SMS verification code, and full card details—enabling full account takeover and …
Threat Analysis: Banco G&T Continental Phishing – Credential & SMS Token Harvesting This phishing campaign impersonates Banco G&T Continental, one of the largest banks in Guatemala. The scam uses a multi-page flow to capture the victim’s online banking credentials and then the SMS token (two-factor authentication code) , allowing attackers to bypass security measures and …
Continue reading “Banco G&T Continental phishing page detected”
Threat Analysis: Indiana DWD Unemployment Benefits Phishing – Fake Uplink CSS Login Page This phishing campaign impersonates the Indiana Department of Workforce Development (DWD) and its unemployment insurance portal (Uplink CSS). The page is designed to steal claimants’ login credentials—specifically the email address and password used to access unemployment benefits. Scammers target unemployment systems because …
Continue reading “The Indiana Department of Workforce Development phishing page detected”
Threat Analysis: Banco Galicia Phishing – Fake “Acceso” Login Page This phishing campaign impersonates Banco Galicia, one of the largest banks in Argentina. The page mimics the bank’s login interface to steal customers’ DNI (national identification number), Usuario Galicia (username), and Clave Galicia (password) —the three pieces of information typically required to access online banking. …
