%PDF-1.3 1 0 obj << /Type /Catalog /Outlines 2 0 R /Pages 3 0 R >> endobj 2 0 obj << /Type /Outlines /Count 0 >> endobj 3 0 obj << /Type /Pages /Kids [6 0 R 17 0 R ] /Count 2 /Resources << /ProcSet 4 0 R /Font << /F1 8 0 R /F2 9 0 R /F3 10 0 R /F4 11 0 R >> /XObject << /I1 16 0 R >> >> /MediaBox [0.000 0.000 612.000 792.000] >> endobj 4 0 obj [/PDF /Text /ImageC ] endobj 5 0 obj << /Creator (DOMPDF) /CreationDate (D:20250610050248+00'00') /ModDate (D:20250610050248+00'00') /Title (Report 06-2025) >> endobj 6 0 obj << /Type /Page /Parent 3 0 R /Annots [ 12 0 R 14 0 R ] /Contents 7 0 R >> endobj 7 0 obj << /Length 4358 >> stream 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 91.676 521.469 655.058 re f 0.773 0.773 0.773 rg 0.773 0.773 0.773 RG 45.266 746.734 m 566.734 746.734 l 565.984 745.984 l 46.016 745.984 l f 566.734 746.734 m 566.734 91.676 l 565.984 91.676 l 565.984 745.984 l f 45.266 746.734 m 45.266 91.676 l 46.016 91.676 l 46.016 745.984 l f 0.200 0.200 0.200 rg BT 61.016 693.716 Td /F1 14.4 Tf [(PHISHING SCAM DISGUISED AS A STANDARD BANK ACCOUNT )] TJ ET BT 61.016 676.134 Td /F1 14.4 Tf [(STATEMENT)] TJ ET 0.400 0.400 0.400 rg BT 61.016 647.326 Td /F2 9.0 Tf [(Posted on )] TJ ET BT 104.045 647.326 Td /F3 9.0 Tf [(January 01,1970)] TJ ET BT 173.588 647.326 Td /F2 9.0 Tf [( by )] TJ ET BT 188.096 647.326 Td /F3 9.0 Tf [(IT Communications)] TJ ET 0.153 0.153 0.153 rg BT 61.016 619.837 Td /F4 9.0 Tf [(We all regularly get phishing scams on our mail boxes, and normally they do not pose a threat if we are not Standard Bank )] TJ ET BT 61.016 608.848 Td /F4 9.0 Tf [(customers. However, if any of you are Standard Bank customers, then there might be a risk.)] TJ ET BT 61.016 588.859 Td /F4 9.0 Tf [(Todays phishing mail comes from a forged e-mail address like )] TJ ET 0.373 0.169 0.255 rg BT 312.593 588.859 Td /F4 9.0 Tf [(info@standardbank.co.za)] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 312.593 587.708 m 414.779 587.708 l S 0.153 0.153 0.153 rg BT 414.779 588.859 Td /F4 9.0 Tf [(.)] TJ ET BT 61.016 568.870 Td /F4 9.0 Tf [(The Subject line is usually: )] TJ ET BT 170.060 568.870 Td /F1 9.0 Tf [(Standard Bank: Account Statement June-201)] TJ ET BT 367.097 568.870 Td /F4 9.0 Tf [(7 \(or iterations of the month and year\))] TJ ET BT 61.016 548.881 Td /F4 9.0 Tf [(The body of the e-mail contains variations of the following:)] TJ ET 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 539.183 m 306.516 539.183 l 305.766 538.433 l 305.766 538.433 l f 1.000 1.000 1.000 rg 1.000 1.000 1.000 RG 305.016 536.933 m 306.516 536.933 l 305.766 537.683 l 305.766 537.683 l f 306.516 539.183 m 306.516 536.933 l 305.766 537.683 l 305.766 538.433 l f 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 539.183 m 305.016 536.933 l 305.766 537.683 l 305.766 538.433 l f 0.153 0.153 0.153 rg BT 61.016 519.142 Td /F2 9.0 Tf [(Dear Customer)] TJ ET BT 61.016 497.353 Td /F2 9.0 Tf [(Attached to this e-mail is your Standard Bank account statement.)] TJ ET BT 61.016 475.564 Td /F2 9.0 Tf [(Click the download button and follow the easy instruction.)] TJ ET BT 61.016 453.775 Td /F2 9.0 Tf [(Regards)] TJ ET BT 61.016 442.786 Td /F2 9.0 Tf [(Standard Bank)] TJ ET 0.592 0.592 0.592 rg 305.016 433.088 m 306.516 433.088 l 305.766 432.338 l 305.766 432.338 l f 1.000 1.000 1.000 rg 1.000 1.000 1.000 RG 305.016 430.838 m 306.516 430.838 l 305.766 431.588 l 305.766 431.588 l f 306.516 433.088 m 306.516 430.838 l 305.766 431.588 l 305.766 432.338 l f 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 433.088 m 305.016 430.838 l 305.766 431.588 l 305.766 432.338 l f 0.153 0.153 0.153 rg BT 61.016 413.047 Td /F4 9.0 Tf [()] TJ ET BT 61.016 393.058 Td /F4 9.0 Tf [(There will be an )] TJ ET BT 127.040 393.058 Td /F1 9.0 Tf [(HTML)] TJ ET BT 152.033 393.058 Td /F4 9.0 Tf [( file attached which if you do double-click to open up, will give you a forged login page similar to the )] TJ ET BT 61.016 382.069 Td /F4 9.0 Tf [(following, where you will be asked to fill in your bank card details, your PIN and your password and if you are fooled, the )] TJ ET BT 61.016 371.080 Td /F4 9.0 Tf [(scammers will gain access to your bank account.)] TJ ET q 375.000 0 0 206.250 61.016 153.632 cm /I1 Do Q BT 61.016 135.841 Td /F4 9.0 Tf [(The )] TJ ET BT 79.025 135.841 Td /F1 9.0 Tf [(dangerous)] TJ ET BT 125.033 135.841 Td /F4 9.0 Tf [( thing about this particular version is that there is a small JavaScript code embedded in the HTML file, )] TJ ET BT 61.016 124.852 Td /F4 9.0 Tf [(which will run as soon as you visit the forged site, and will trigger and attempt to download malware onto your computer to )] TJ ET BT 61.016 113.863 Td /F4 9.0 Tf [(steal data like passwords, bank account details, or to turn your computer into a zombie under their control to send out )] TJ ET BT 61.016 102.874 Td /F4 9.0 Tf [(further email or to attack the university from within the network.)] TJ ET endstream endobj 8 0 obj << /Type /Font /Subtype /Type1 /Name /F1 /BaseFont /Helvetica-Bold /Encoding /WinAnsiEncoding >> endobj 9 0 obj << /Type /Font /Subtype /Type1 /Name /F2 /BaseFont /Helvetica-Oblique /Encoding /WinAnsiEncoding >> endobj 10 0 obj << /Type /Font /Subtype /Type1 /Name /F3 /BaseFont /Helvetica-BoldOblique /Encoding /WinAnsiEncoding >> endobj 11 0 obj << /Type /Font /Subtype /Type1 /Name /F4 /BaseFont /Helvetica /Encoding /WinAnsiEncoding >> endobj 12 0 obj << /Type /Annot /Subtype /Link /A 13 0 R /Border [0 0 0] /H /I /Rect [ 312.5927 588.0268 414.7787 597.1843 ] >> endobj 13 0 obj << /Type /Action /S /URI /URI (mailto:info@standardbank.co.za) >> endobj 14 0 obj << /Type /Annot /Subtype /Link /A 15 0 R /Border [0 0 0] /H /I /Rect [ 61.0157 153.6325 436.0157 359.8825 ] >> endobj 15 0 obj << /Type /Action /S /URI /URI (http://blogs.sun.ac.za/it/files/2017/06/standardbank.jpg) >> endobj 16 0 obj << /Type /XObject /Subtype /Image /Width 500 /Height 275 /ColorSpace /DeviceRGB /Filter /DCTDecode /BitsPerComponent 8 /Length 17520>> stream JFIF;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82 C    !'"#%%%),($+!$%$C   $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$" }!1AQa"q2#BR$3br %&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz w!1AQaq"2B #3Rbr $4%&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz ?*բIvV s}p;U@0ܹ9SQ08 5d̪ +cRA$Fn}39c(n͵;\UNjψ}l:g}*]_j%QK]t`iƥKU98^y9/*~ ~W!W=/\70}Er@g^pX&/3~V~!i/8?T8ߡW2|?|X1? kxRx<x, 7vg*C7Usˡ_.l,1F+F,]/zM~K KUˏ އf*` #>?o/_o`ޛ*|C⫛֑𧿇YQ?1:#LSg*?ӔZ|UsWQpB d@GOTOC+GB~ 郫~@1y\\~T#l(_ 7}0?}o#gn\J4*oK (?;٘3Yp?)}O}?⿤tFw͏?F/W*à_}11<=ZFaOX>2LJ~!i!W:|;w$aJGo$UߡVh˸D,{lGФx>@xi|AOrUH;w1_(U˟ޗ-HaRcDaC?3:$4d?zG~\oBK( d. ["G?bt>13\JҼ-O^I=Տ[xIo( ?-_ТQI\u rb /.M+iGUi, ?tn!¾pF?=ϣtnZw 7?¾pFWpgZw 7?j;_oOxd@M0I&yR4C,FxglׅNW.ɩInt-:Tz5NB/Q Sгs mio%͵ j]9g mC'ʫkn̙Tϣtn!?᪴n!¾pF^+ؽϣtn!j;_7QQ`?=ϣtn:w 7?¾pF?򿽇5NB/Q Sгs 7Q?=ϣtn!j;_wM{m3j;G5NB/WG+{iGT,B:o 7?M|ẍ򿽇5NB_NfW;K]+{iGT, ?tn|ẍ{m3j;G5NB_7Qwa} Sгs(ӿY]򿽇w5NB_NfWwRWpg:o 7?j7_7QW>ӿY ?tn|ẍԿ򿽇5NB_NfWGW>ӿY ?tn?!¾pKW>ӿY ?tn!¾q j ÷?8/`Lj;_Nf+m4DQ"(a` %ݬ0.p8?2ۑ~}mOږS? ]9Ub)[pnW?ʾd{KuIS$3"~<ӮS{)X6gQE` gw|ӎ1ٺmئh^%FwQr}Eލ{P%FwKqjyuGO7F?ߕyȓ4f'doʏjD5?ߕ$~T{P:xZɼ({e/1z5춺߇ڋxw]X\.i%^Z8l`5?ߕ_W+ 潞3H5]iѓH]\(=?yNf?ߕ$~Uч 2wՒf?ߕ$~U&ȓuI'څ&7T{$~TlQBȓ4f'doʏjDj=q*6IdI3QQO7G "LӒM T;$~TlP_p$Fj=q*6IdI3QQO7G "Lњdoʍq*=Yf{$~TlQBȓ4f'doʏjD5?ߕ$~T{P$I'څ&hGO7F?ߕ,3Fj=q*6IdI3QQO7G "LnlQO7G #o^cZlX8隭Hv; "V$bO$\nCLHw=֮sdoʟBOdLV% . |_t?}/ ?c[WSE]a:Ⱦc[Q ?>_t?}/ ? m]E}v󿽇"_ mG+ں({E+ڏV>%uQS9V>%|#@Kj(>Cr|#@Kj?XGQGk;}N/XG±-w_q±-c[WQE]a:Ⱦc[Q ?>_t?}/ ? m]E}v󿽇"_ mG+ں({E+ڏV>%uQS9V>%|#@Kj(>Cr|#@Kj?XGQGk;}N/XG±-w_q±-c[WQE]a:Ⱦc[Q ?>_t?}/ ? m]E}v󿽇"_ mG+ں({E+ڏV>%u4QS9V>%'+ں({E+ړ m]M}v󿽇"[ mG+ں({E+ڏV>%u4QS9V>%|#@Kj(>Cr|#@Kj?XGQGk;}N/XG±-w_q±->_t?}EW1QEQESB(E;ʏ)hSN)hS|SQNm)*<QNde%RMph=*7ʀMph=*7ʀMph=*7ʀMph=*7ʀMph=*7ʀMph=*7ʀMph=*7ʀMph=*7ʀMph=*7ʀ#4PEPEPEP? &r$2I [o+Bb/ Ydk3$C\~cnd,-o^3(Q;p Wĺ;*6K'5x/I#(ۡRPOL)=;dսKvڞ2yt7}G0 [P$Կo-:-,>yے?<ź5֟8dUlHi]:Eg&@ $N~?չ[i57b,+,!@6ҋ@Ww">n㕣uGH`<i:8pB\|G#d=[{$ޥ@bDL%35Q`E ݵt۩-m!xZ4l0E][)/NHMNu=fvEERQR1hJ(jE* @Km[oEg:ͮh.nDE8B#EP:4mf[76U *xN =gkТ wUuFdbe8#ܼ!Ic|psȧEQEQEQEQEQEQEQEQEQE/eleT[OIW90~qqK=U_H]'+F;Xb]50ѩJ/2ϊ-A͟9@65$U-~( D;,cSK嚼- P1Jб@M&i3& 4UMDݗ]Z[8#P~8P Q>(OAE@QEQEQEV]M[Fߑ U|SA/kbP?Q8@0.[:U+> /o;G|SA3k9my˥U\Y!ۑ?w֝7uTtIdW)$U,gA_7๿aO7Fs[Eo3Rąhn\N/!8@#3R|SA3h7ཿR>+ԃm% 6d9ǽxK#Lf΄;A{0\7ཿ??^v-|qG yQui-`3?Ꮖ5 &5Rw~} b$^G{"fS4;[{g2&E,tHh-8X7~5A;-ggeS: ge]{w.A=7_ҍFF.+ Ii$fc+}d^+/4;Gٵ ivMV5բͯSN}_/jl;VX{Zw}B,Sh斨uNlrX޺?HH.[U4'K$3܏SQEQEQEQEQEQEb(((t)@(>( ( (,FjMifJdI$WxuN(Sz7h޾|)Ѽ1Q tǠ?i*f1}UT6=hOz|7_ɬ4]k#BXtᶐdԏ}%dܜ Pk4o_YqxFٮb4Ev$0~U,\f\-aF=hk4o_TzJ \F$'8G*{=ZPHncOJ{Cl$4I ye8|k4(b|<k4(b|QnqI:ZX'>Υsmq=:L+Ƨ;Id&jQ7,.3N-b&erOB %E2KmQT Z(PbR@ \QE QE(((((((3EQEQEN?J(E5PCg袊((mVmDž۫G2CkFAzԅGh /д6AWmܐTx'󧷃4Yہ^{f4Ny%̒\_`rA#vH<wEcy*Wvj=3F3L~O˧+I'bE|}Uͣ$un&)Ǩ`4yc4؉,;J Fߟ=w|ii&de;Yybx,X4lQn6Z$LQ9 %<Ā猎3[j7h eJiZeac mn#EIwjEP}Q](Pi^ m~Km uEn#^%ekTvo.u,J=LhI*889渟A5 $Hd9Xb.l7`N:|MmJI ( ( ( (SJY.dPTK*ӟ Q$֑e(2z|#S3q㯥=-99o^C/ Z4$/LH)I&aR e!AcNΕU (UWjt hG[4׌qO69s:9 v)n9>(VS!fu$qH5 @}缿fo/S@}ߝfo7S@}缿fo7S@+Űd(REPEPM~k_h bod(( ( (-[6ŨjWF|Lt޷mI@:w8k!`|GPG#N;5,0_(wHKv;~te?:.4pw_v˻<ztOΟX^zO1S8zSt~t\ro΀E7-іSro΀E7-іNmG]" QnZ)sɻBI-eUr$&GgrWī<0fԹoA79!r& XS[U-tu74q.q@`QU_T^Jp2YGY:eaA"EPEPEPEPQ H z [jG8B},[%,~>ơ3[{?;uu"* K` he_Gcz'@ Xe4}?Y/笟ATe_Gcz}Q'@ Xe4}?Y/笿ATe_Gcz}Q/@ Xe4}?Y/笿ATX :Itp;XMK@Q@Q@#JaIE'\1 (Q@Q@Q@sz,[/:+Y8V1nې#"-Ű'$?raYf.U \`Q]=uSݑΟbʼn% LcV@)7 7/pn_Q@ E&(ܾM(h=EP;[P|=>=ԉdKdAA {WCzM7^K}J.aIPN7/ :wbk@i %BA˵=7}]8TWD }m\T5Km2ekzLڋMo$+-K#Ƶh23jܝD[,; AopRA{g,aӬ೷R4 jQEQEQEQEb&$Eu( 2 NFF F-(3clo9EKQ9!F9ȏ"?~isQtQG@f~DytP5ED&hGG<(Lњȏ"?5h#$?RQ)QEQES_:S~Kق/#( ( (-[1@ ctDsK*oGM隨䯰1@鱑C/ eҀWд{6U"C#nb}Wm~Km2T5K-*56m V'_ZY8ge2dGޠ "T 0=)|=zzaY5b$ f N#(|2i=fXyФD$ urNCu0(3?bk}+8i @D +sV to)(9 y#< {uv6rӓ"z zRTi)힄W+#m֝k0$`qH@Q@Q@ ~^p#f('oGk?7zM eojz(>?Pe_74}I>?Q=& *I=& (GGzM eojz(qe1'&?K@Q@Q@#}o~V-)EUHE (Z( ( (,۩1sRm#)sܞ"[,!#GSӥt??Ⱦ⸃Y(vgN^!O*{GYY\W1(!K|B56>U{Fx8jn)Pv7(!N!F u݇m??Q@ ?>^wkoCd 1ЂzSn&uO*@\j[S}͵5#n՝VmKmH tQU]65eX<&,U ['DSrA*O>3i}(J)AuQEQEQE!jGmX|Mm3 Jxq:4_Mf.5K;Iy9$Ol]%`^L}2}E_4_MghSG٢jJ(/xw4}/"<_M/٢jJ(/xjŒ uPEPEPM~N?JOAE (QEQEQEfcy7LT*0\F&n'|<G=hKx~Tnoʰ|mlܻ"X[ :R=)-xpRY@9oʍYz/"]IA]:F C'~TooʟE3e*<[@ [e*}3[@ [Uoʤ_kkI}M4!`#'\SId'p?*>jvΟc2mpzjKJhWm~Km@?UpMlCTkB_u7 BAP/C-.O3I(N^Ӆ20OJآ(((l6_QÃA(a7V868;XrV05[kڜ^Bg`8ހ4bh|DvOk66pqq4eHA=8Nn:^IT QnFzژ2ѤMtHo($r:R@nXi 1J~"/@VD96bSQ(<: ( ( ( ( ( ( ( kS_g_P((o}jփ^\2/Gm*^rcbF%TލPeg LFex$u5,h@ š3TA0&3pvphj*""B]p~T%&ic$F?*F#%gQ'G@v?iMwS0PPC޵| ;%FUFB,z4wBcX-a xT$q0@%EqErp{][o߅[((((((RXcA$4e`|V#Q\ |j1SAWE -jQnݎlF2I_ͦ $*sRInǛGHB*2I9CgUoo9}Rѕ{,i^Nrx'랴+sc8#%Ny'9] ⎇ R:/i0W-j(˖lκUJW^B":+#p(((((((CS_PR'_EPEPEPC\׆oկ,W3*#wggcZf9<+Okq4bʼ봰\7S?bѨ$Tʙ+,xҺ>ohOuKd7(`?kVV1"ۀq.Ak'iGr[V;lEG-#B9oESY5i&^7\6Ad15ĊL2+fF8v݃^u74|4<7Ra* ό1py^\xWY]g`K`y黊~oh٠`kk8 c5Bs1ެS~oh٠W+Kּ1>g=* wx95||ӌ]КCZ^ge{z0D%ÌV-KP ~7wqT ]RQ@Q@Q@Q@Q@Q@]Ǭ7nu8s`دn(@Ve7EUU&{Z3丟 Zk9m P+/89xj;[o4aW |\`09&|$1;&a}h]WV>k:/ w(u/h^'/` vyW >"SR+_Xz0ҍXZ(Š(((((((ҝM~q~/Q@ZJ((ݷh (((((Z|mi6kLaiw!> endobj 18 0 obj << /Length 2679 >> stream 0.153 0.153 0.153 rg 0.592 0.592 0.592 RG 0.18 w 0 J [ ] 0 d 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 490.921 521.469 267.063 re f 0.773 0.773 0.773 rg 0.773 0.773 0.773 RG 45.266 490.921 m 566.734 490.921 l 565.984 491.671 l 46.016 491.671 l f 566.734 757.984 m 566.734 490.921 l 565.984 491.671 l 565.984 757.984 l f 45.266 757.984 m 45.266 490.921 l 46.016 491.671 l 46.016 757.984 l f 61.016 506.671 m 550.984 506.671 l 550.984 507.421 l 61.016 507.421 l f 0.153 0.153 0.153 rg BT 61.016 740.193 Td /F4 9.0 Tf [(This week it might be Standard Bank, next week it might be ABSA or FNB or Nedbank. Phishing scammers are constantly )] TJ ET BT 61.016 729.204 Td /F4 9.0 Tf [(changing their tactics.)] TJ ET BT 61.016 709.215 Td /F1 9.0 Tf [(Here are 5 easy tips to spot most phishing scams:)] TJ ET BT 78.360 689.242 Td /F4 9.0 Tf [(1.)] TJ ET BT 91.016 689.226 Td /F1 9.0 Tf [(The senders e-mail may appear to be legitimate. It is easy for the criminals to forge an address to make it )] TJ ET BT 91.016 678.237 Td /F1 9.0 Tf [(look like it is coming from the bank.)] TJ ET BT 78.360 667.264 Td /F4 9.0 Tf [(2.)] TJ ET BT 91.016 667.248 Td /F1 9.0 Tf [(The e-mail is addressed to Dear Customer, with no specific name being mentioned. \(Banks have enough )] TJ ET BT 91.016 656.259 Td /F1 9.0 Tf [(information of their customers to be able to address you personally!\))] TJ ET BT 78.360 645.286 Td /F4 9.0 Tf [(3.)] TJ ET BT 91.016 645.270 Td /F1 9.0 Tf [(Hovering your mouse cursor over any links will show a fraudulent URL not the banks trusted web )] TJ ET BT 91.016 634.281 Td /F1 9.0 Tf [(address.)] TJ ET BT 78.360 623.308 Td /F4 9.0 Tf [(4.)] TJ ET BT 91.016 623.292 Td /F1 9.0 Tf [(The e-mail contains a link to Logon or Update Details. Banks will not ask you to access Internet )] TJ ET BT 91.016 612.303 Td /F1 9.0 Tf [(banking directly through an e-mail.)] TJ ET BT 78.360 601.330 Td /F4 9.0 Tf [(5.)] TJ ET BT 91.016 601.314 Td /F1 9.0 Tf [(The contents of the e-mail will be vague or reference a specific transaction which you would not normally )] TJ ET BT 91.016 590.325 Td /F1 9.0 Tf [(conduct or receive.)] TJ ET BT 61.016 570.336 Td /F4 9.0 Tf [(The universitys spam and phishing filters are quite effective in blocking these forms of phishing emails, but common )] TJ ET BT 61.016 559.347 Td /F4 9.0 Tf [(sense and becoming informed should always be your first line of defence!)] TJ ET BT 432.949 539.358 Td /F4 9.0 Tf [([ARTICLE BY DAVID WILES])] TJ ET 0.400 0.400 0.400 rg BT 61.016 520.869 Td /F2 9.0 Tf [(Posted in:E-mail,Security | Tagged:Phishing | With 0 comments)] TJ ET endstream endobj xref 0 19 0000000000 65535 f 0000000008 00000 n 0000000073 00000 n 0000000119 00000 n 0000000339 00000 n 0000000376 00000 n 0000000514 00000 n 0000000603 00000 n 0000005013 00000 n 0000005125 00000 n 0000005240 00000 n 0000005360 00000 n 0000005468 00000 n 0000005596 00000 n 0000005678 00000 n 0000005805 00000 n 0000005913 00000 n 0000023602 00000 n 0000023667 00000 n trailer << /Size 19 /Root 1 0 R /Info 5 0 R >> startxref 26399 %%EOF Phishing scam disguised as a Standard Bank account statement « Informasietegnologie
Language:
SEARCH

  • Recent Posts

  • Categories

  • Archives

«
»

Phishing scam disguised as a Standard Bank account statement

We all regularly get phishing scams on our mail boxes, and normally they do not pose a threat if we are not Standard Bank customers. However, if any of you are Standard Bank customers, then there might be a risk.

Today’s phishing mail comes from a forged e-mail address like info@standardbank.co.za.

The Subject line is usually: “Standard Bank: Account Statement June-2017” (or iterations of the month and year)

The body of the e-mail contains variations of the following:

Dear Customer

Attached to this e-mail is your Standard Bank account statement.

Click the download button and follow the easy instruction.

Regards
Standard Bank

 

There will be an HTML file attached which if you do double-click to open up, will give you a forged login page similar to the following, where you will be asked to fill in your bank card details, your PIN and your password – and if you are fooled, the scammers will gain access to your bank account.

The dangerous thing about this particular version is that there is a small JavaScript code embedded in the HTML file, which will run as soon as you visit the forged site, and will trigger and attempt to download malware onto your computer to steal data like passwords, bank account details, or to turn your computer into a “zombie” under their control to send out further email or to attack the university from within the network.

This week it might be Standard Bank, next week it might be ABSA or FNB or Nedbank. Phishing scammers are constantly changing their tactics.

Here are 5 easy tips to spot most phishing scams:

  1. The sender’s e-mail may appear to be legitimate. It is easy for the criminals to forge an address to make it look like it is coming from the bank.
  2. The e-mail is addressed to “Dear Customer”, with no specific name being mentioned. (Banks have enough information of their customers to be able to address you personally!)
  3. Hovering your mouse cursor over any links will show a fraudulent URL – not the bank’s trusted web address.
  4. The e-mail contains a link to ‘Logon” or “Update Details”. Banks will not ask you to access Internet banking directly through an e-mail.
  5. The contents of the e-mail will be vague or reference a specific transaction which you would not normally conduct or receive.

The university’s spam and phishing filters are quite effective in blocking these forms of phishing emails, but common sense and becoming informed should always be your first line of defence!

[ARTICLE BY DAVID WILES]

Email

Tags:

This entry was posted on Monday, June 19th, 2017 at 2:43 pm and is filed under E-mail, Security. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

Comments are closed.

 

© 2013-2025 Disclaimer: The views and opinions expressed in this page are strictly those of the page author(s) and content contributor(s). The contents of this page have not been reviewed or approved by Stellenbosch University.