Threat Analysis: Israeli Package Delivery Phishing â Small Fee & Card Harvesting Step 1 â Fake Delivery Notice (First Screenshot)The victim receives a message claiming a package is waiting. It includes a fake tracking number and states a small fee (ILS 6.21) is required to complete delivery. The text references EMS / ECO POST to …
Author Archives: Anti-phishing
Microsoft phishing page in Spanish detected
This screenshot shows a phishing page impersonating Microsoft (Outlook / Hotmail / Office 365), targeting Spanishâspeaking users. The page is designed to steal the victimâs email address, phone number, or Skype name as the first step in a credentialâharvesting flow. Threat Analysis: Microsoft Phishing â FirstâStep Login Page How it works:The victim receives a phishing …
Continue reading “Microsoft phishing page in Spanish detected”
Fake Correos Mail page detected
This screenshot shows a package delivery phishing page targeting Spanishâspeaking users. The scam claims a delivery attempt failed and asks the victim to pay a small fee (âŹ1.99) to reschedule, capturing full credit card details in the process. Threat Analysis: Package Delivery Phishing â Small Fee & Card Harvesting How it works:The victim receives an …
Microsoft phishing page in Spanish detected
This screenshot shows a Spanishâlanguage phishing page impersonating Microsoft, asking for an unusual combination of credentials: email/phone/Skype, password, and a 4âdigit PIN. Threat Analysis: Microsoft Phishing â Credential & PIN Harvesting The page mimics Microsoftâs login interface but adds a 4âdigit PIN field, which is not part of a standard Microsoft login flow. This extra …
Continue reading “Microsoft phishing page in Spanish detected”
Credit Agricole Bank phishing page revealed
This screenshot shows a phishing page impersonating a French bank (likely CrĂ©dit Agricole or a similar institution). It uses a fake security alert related to the European PSD2 directive to pressure victims into clicking a button that leads to a fraudulent login page. Threat Analysis: French Bank Phishing â Fake âSĂ©curiPassâ Activation Scam The page …
Continue reading “Credit Agricole Bank phishing page revealed”
Fake Hongkong Post page in Chinese detected
These two screenshots show a phishing campaign impersonating Hongkong Post (éŠæžŻé”æż). The scam uses a fake delivery notification to trick victims into paying a small fee (HK$30.00) and, in the process, steals personal information and full credit card details. Threat Analysis: Hongkong Post Phishing â Fake Delivery Fee & Personal/Card Data Harvesting How it works: …
Continue reading “Fake Hongkong Post page in Chinese detected”
Fake Royal Mail page detected
These two screenshots show a phishing campaign impersonating Royal Mail, targeting users in the United Kingdom. The scam uses a fake delivery issue and a small redelivery fee to steal full credit card details. Threat Analysis: Royal Mail Phishing â Fake Redelivery Fee & Card Harvesting Step 1 â Fake Tracking Page (First Screenshot)The victim …
Fake Zajil Express page in Arabic detected
These two screenshots show a phishing campaign targeting Arabicâspeaking users, likely in Saudi Arabia (based on the country code, phone number format, and references). The scam impersonates a delivery or courier service (âzaiji-expressâ) and uses a fake delivery confirmation process to harvest personal information and full card details. Threat Analysis: Delivery Service Phishing â Recipient …
Continue reading “Fake Zajil Express page in Arabic detected”
Amazon phishing page in German detected
These four screenshots show a multiâstep phishing campaign targeting German users, impersonating the Amazon.de VISA credit card banking portal (issued by Landesbank Berlin â LBB). The scam is designed to steal online banking credentials, phone number, and SMS twoâfactor authentication (2FA) code â allowing full account takeover. Threat Analysis: Amazon VISA / LBB Phishing â …
Credit Agricole phishing page in French detected
This screenshot shows a phishing page impersonating CrĂ©dit Agricole, a major French bank. The page uses the pretext of mandatory SĂ©curiPass activation (a legitimate security feature) to pressure victims into clicking a malicious link that leads to a fake login page. Threat Analysis: CrĂ©dit Agricole Phishing â Fake SĂ©curiPass Activation Deadline The page claims that …
Continue reading “Credit Agricole phishing page in French detected”