Vishing: Santa Barbara Trust (Voice or Phone Phishing)

as predicted in our circles last year, here is a documented vishing case. the wave file does not have a heavy russian accent attached, but it is interesting.

considering this bank also handles some tax refund issues, one would expect the irs to also take an interest in this.

today from dan hubbard at websense and our friends at castlecops pirt:

websenseâ® security labs™ has received reports of a new phishing attack that targets customers of santa barbara bank & trust. users receive an email message that is spoofed and has the subject “message 156984 client’s details confirmation (santa barbara bank & trust).”

unlike the most popular form of phishing where users are lured to click on a url and are directed to a fraudulent site, this lure uses a telephone number. the phone number is in the southern california area code and was answering at the time of this alert.

when victims dial the phone number, the recording requests that they enter their account number.

the phone response does not mention the bank name, which could be a potential indicator that this number is being used for fraud against other entities.

the vishing recording can be found here:
http://www.websense.com/securitylabs/images/alerts/june_vishing.wav

the actual phishing email with the number:

dear customer,

we’ve noticed that you experienced trouble logging into santa barbara bank & trust online banking.

after three unsuccessful attempts to access your account, your santa barbara bank & trust online profile has been locked. this has been done to secure your accounts and to protect your private information. santa barbara bank & trust is committed to make sure that your online transactions are secure.

call this phone number (1-805-xxx-xxxx) to verify your account and your identity.

sincerely,
santa barbara bank & trust inc.
online customer service

gadi evron,
ge@beyondsecurity.com.

Share