Post by kas on Apr 18, 2016 3:22:08 GMT -5
This one is typical of fake bank spam... it tries to get you to click their link to bring you to a site that looks like a real bank site .. but it isn't. It is meant to steal your information.
This one I don't even HAVE an account at that bank. This is the header (shows sender, recipient (which I OMITTED), IP etc:
As a general rule NEVER click on links sent from even your OWN bank in email. Always go directly to the bank website and login there. Banks always send you the same email within your bank account page that you can see there when you log in. This way you are not tricked by fake bank emails.
This one I don't even HAVE an account at that bank. This is the header (shows sender, recipient (which I OMITTED), IP etc:
From Alert Cibc Wed Apr 13 14:10:59 2016
X-Apparently-To: OMITTED; Wed, 13 Apr 2016 14:11:02 +0000
Return-Path: <root@9099580.securefastserver.com>
X-YahooFilteredBulk: 86.106.131.141
Received-SPF: none (domain of 9099580.securefastserver.com does not designate permitted sender hosts)
X-YMailISG:
X-Originating-IP: [86.106.131.141]
Authentication-Results: mta1613.mail.gq1.yahoo.com from=seccuritycbc.com; domainkeys=neutral (no sig); from=seccuritycbc.com; dkim=neutral (no sig)
Received: from 127.0.0.1 (EHLO 9099580.securefastserver.com) (86.106.131.141)
by mta1613.mail.gq1.yahoo.com with SMTPS; Wed, 13 Apr 2016 14:11:02 +0000
Received: from 9099580.securefastserver.com (localhost.localdomain [127.0.0.1])
by 9099580.securefastserver.com (8.14.4/8.14.4) with ESMTP id u3DEAxKB001621
for <OMITTED>; Wed, 13 Apr 2016 10:10:59 -0400
Received: (from root@localhost)
by 9099580.securefastserver.com (8.14.4/8.14.4/Submit) id u3DEAxXF001620;
Wed, 13 Apr 2016 10:10:59 -0400
Date: Wed, 13 Apr 2016 10:10:59 -0400
Message-Id: <201604131410.u3DEAxXF001620@9099580.securefastserver.com>
To: OMITTED
Subject: Restore Account Access OMITTED
X-PHP-Originating-Script: 0:sd.php
From: Alert Cibc <cibealertz@seccuritycbc.com>
Content-type: text/html; charset=utf-8
Content-Transfer-Encoding: 8bit
Content-Length: 2426
X-Apparently-To: OMITTED; Wed, 13 Apr 2016 14:11:02 +0000
Return-Path: <root@9099580.securefastserver.com>
X-YahooFilteredBulk: 86.106.131.141
Received-SPF: none (domain of 9099580.securefastserver.com does not designate permitted sender hosts)
X-YMailISG:
X-Originating-IP: [86.106.131.141]
Authentication-Results: mta1613.mail.gq1.yahoo.com from=seccuritycbc.com; domainkeys=neutral (no sig); from=seccuritycbc.com; dkim=neutral (no sig)
Received: from 127.0.0.1 (EHLO 9099580.securefastserver.com) (86.106.131.141)
by mta1613.mail.gq1.yahoo.com with SMTPS; Wed, 13 Apr 2016 14:11:02 +0000
Received: from 9099580.securefastserver.com (localhost.localdomain [127.0.0.1])
by 9099580.securefastserver.com (8.14.4/8.14.4) with ESMTP id u3DEAxKB001621
for <OMITTED>; Wed, 13 Apr 2016 10:10:59 -0400
Received: (from root@localhost)
by 9099580.securefastserver.com (8.14.4/8.14.4/Submit) id u3DEAxXF001620;
Wed, 13 Apr 2016 10:10:59 -0400
Date: Wed, 13 Apr 2016 10:10:59 -0400
Message-Id: <201604131410.u3DEAxXF001620@9099580.securefastserver.com>
To: OMITTED
Subject: Restore Account Access OMITTED
X-PHP-Originating-Script: 0:sd.php
From: Alert Cibc <cibealertz@seccuritycbc.com>
Content-type: text/html; charset=utf-8
Content-Transfer-Encoding: 8bit
Content-Length: 2426
As a general rule NEVER click on links sent from even your OWN bank in email. Always go directly to the bank website and login there. Banks always send you the same email within your bank account page that you can see there when you log in. This way you are not tricked by fake bank emails.