In the identity theft email, recipients are asked to verify their user details on a mock-up version of Barclays website. The content research team at SurfControl discovered the email and quarantined it on their systems.
"This scam may appear to be crude but the fact is that if only one person responds it becomes a worthwhile enterprise for phishers," said Martino Corbelli, director of marketing for SurfControl. "Policy and education become redundant if they are not backed by technology."
The contents of the email are as follows:
"From: Security [mailto:security@barcalys.co.uk]
Sent: 11 August 2004 19:08
To: X
Subject: Barcalys Bank Security Update
Dear Valued Customer,
- Our new security system will help you to avoid frequently fraud transactions and to keep our
investments in safety.
- Due to technical update we recommend you to reactivate your account.
Click on the link below to login and begin using your updated Barcalys account.
To log into your account, please visit the online banking http://barcalys.co.uk <http://Barcalys-verify.info/>
If you have questions about your online statement, please send us a Bank Mail or call us at 1-800-374-9700
We appreciate your business. It's truly our pleasure to serve you.
Barcalys Customer Care
This email is for notification only. To contact us, please log into your account and send a Bank Mail."
