Awakening from a nap, I find two, count 'em, two messages ostensibly from a bank with which I do business informing me of suspicious activity on my account.
The return address doesn't look right, but companies ain't exactly consistent about using right addresses. The link provided for resolving the situation looks downright wrong, going through some sort of link-shortening service, but, again, the bank might just be dumb enough to do that.
Not clicking the link, I instead use a bookmark to reach the bank in question. I log in, and…
… And access to my account information is currently out of order. Huh. I wonder if the sender of the messages knew this… and whether it was opportunistic or arranged — DDOS, anyone?
Looking at the headers on the e-mails, I note that one is to my main address and the other is to an alias that the bank shouldn't have. Ergo, definitely random phishing. But it's kinda weird the actual bank's actual on-line access being b0rked just now, innit?
Comments