Category Archives: Bank phishing

Threat Analysis: Daviplata Phishing – Credential & SMS Code Harvesting This phishing campaign impersonates Daviplata, a widely used digital wallet and mobile payment platform in Colombia, operated by Davivienda Bank. The scam uses a multi-page flow to capture the victim’s document number, Daviplata password, and the SMS verification code—the three elements needed to access the …

Continue reading “Daviplata phishing page detected”

Threat Analysis: Generic Banking Phishing – Credential & SMS Code Harvesting This phishing campaign impersonates a financial institution (likely a bank or digital wallet in Latin America, based on the Spanish language and the “reactivar” – reactivate – pretext). The scam uses a multi-page flow to capture the victim’s username, password, and SMS verification code …

Continue reading “Bancolombia phishing page revealed”

Then visitor will be redirected to the official website of Citizens Bank. Threat Analysis: Citizens Bank Phishing – Full Identity & Financial Data Harvesting This phishing campaign impersonates Citizens Bank, a prominent bank in the United States. The scam uses a multi-page flow to capture: This combination of data enables attackers to commit identity theft, …

Continue reading “Citizens Bank phishing page detected”

Threat Analysis: Bank of America Phishing – Email Credential & Card Data Harvesting This phishing campaign impersonates Bank of America, targeting Spanish-speaking customers. The scam uses a multi-page flow to capture: By compromising both the email account and the payment card, attackers can gain persistent access to sensitive communications and conduct unauthorized transactions. How it …

Continue reading “Bank of America pishing pages in Spanish detected”

Threat Analysis: Crédit Agricole Phishing – Multi‑Stage SécuriPass & Credential Theft This phishing campaign impersonates Crédit Agricole. The scam uses a long, multi‑page flow to capture: By harvesting both the SMS and email codes, attackers can bypass multiple security layers and gain full account access. How it works:The victim receives a phishing email claiming they …

Continue reading “Credit Agricole Bank phishing page detected”

Threat Analysis: BAC Credomatic Phishing – Fake “Banca en Línea” Login Page This phishing campaign impersonates BAC Credomatic, one of the largest banks in Central America. The page mimics the bank’s “Banca en Línea” (Online Banking) login interface to steal customers’ username and password. It also includes a “Usar Token” option, suggesting the attacker may …

Continue reading “BAC Credomatic phishing page detected”

Thank you for sharing these three screenshots. They show a multi-step phishing campaign impersonating Banreservas (Banco de Reservas de la República Dominicana) , the largest bank in the Dominican Republic. The scam is designed to capture the victim’s online banking username, password, and then their email credentials along with the numeric code from their “tarjeta …

Continue reading “BanReservas phishing page detected (Banco de Reservas de la República Dominicana)”

Threat Analysis: Bam (Banco Agrícola) Phishing – Username Harvesting (First Stage) This phishing campaign targets customers of Bam – Banco Agrícola, a major bank in Central America (particularly El Salvador). The page mimics the bank’s “Bamvirtual Personas” login interface. It only asks for a username at this stage, but the captured username will be used …

Continue reading “Banco Agromercantil phishing pages detected”