Websense Security Labs has received reports of a phishing attack targeting customers of BrightStar Credit Union.
Users receive a spoofed email message claiming that they must verify their email and account information in order to receive some special announcements from the bank. The email message provides a link to a phishing site, which attempts to collect the user's account information, such as account number, password and ATM PIN number.
This phishing site is hosted in Norway and was up at the time of this alert.
Phishing email text:
Dear BrightStar Credit Union Customer,
At BrightStar Credit Union the highest interest to our customers is the safekeeping of confidential information you have entrusted to us and using it in a secure manner. A fundamental element of safeguarding your confidential information is to provide protection against unauthorized access or use of this information. We maintain physical, electronic and procedural safeguards that comply with federal guidelines to guard your nonpublic personal information against unauthorized access.
At this time we need you to confirm your e-mail address with our existing database. As soon as our database will be updated we need to make few important announcements to our customers so please update your contact information with no delay.
< URL REMOVED >
Our database will be instantly updated.
We are committed to the secure use and protection of customer information on our website. If you have any questions regarding our services, please check the website or call our customer service.
Best Regards,
BrightStar Credit Union Online Department
Type Éditeur de solutions
Rss
PDF
Salle de presse