Wednesday, February 25th, 2009 3,065 views
Recently, I always receive this email telling me that they need to update their data or got attack and need to verify your account if not your account will be suspended, it’s all not true. If you receive this email and not sure please contact the bank immediately before you proceed to do anything as stated in the email.
Do not disclose your TAC to anyone thru email or web or sms!
Important Message from Mybank
From: Mybank (service@maybank2u.com.my)
Dear maybank2u customer,
We are hereby notifying you that we’ve recently suffered a DDos-Attack on one of our’s Internet Banking server. For security reasons you must complete the next steps to verify the integrity of your maybank2u account. If you fail to complete the verification in the next 24 hours your account will be suspended.
Here’s how to get started:
1. Log in to maybank2u online account (click here).
2. You must request for TAC online via maybank2u – your TAC will be sent via SMS to the mobile phone number you registered at the ATM.
( you can find the “request a TAC” button in the right menu of your account “Utilities” )
3. Logout from your account and close the browser.
4. When you have received the TAC (Transaction Authorization Code) on your mobile phone, Log in to our secured verification server and submit the requested information(Account user ID, password and TAC).CLICK HERE to go on our secured server.
5. Please allow 48 hours for processing.
Please comply and thanks for understanding.
© 2009 maybank2u
Posted in Announcement | No Comments »
Sunday, August 3rd, 2008 2,659 views
Updates
Today again I receive another Maybank2u.com Phishing Email…
Dear Customer,
We have safeguard our SSL for the protection of our internet banking customers,
Do to this you have been require to authenticate your account on data with us
Kindly follow our link below to safeguard your account completely
This one is very dangerous as I tried to click out myself to find out more…
I’m using mozilla so I have this warning… But I ignored and explore further…
What is a Web Forgery? What is Phishing?
Web Forgery (also known as “Phishing”) is a form of identity theft that occurs when a malicious Web site impersonates a legitimate one in order to trick you into giving up sensitive information such as passwords, account details, or credit card numbers. Phishing attacks usually come from email messages that attempt to lure the recipient into updating their personal information on fake, but very real looking, Web sites. More information on phishing can be found at the Anti-Phishing Working Group, and there are a number of examples and resources available at the Wikipedia Phishing page.
The hidden link from the Phishing Email is “http://sovisto.org/tf/downloads/may2u/Maybank2u_com.html”, do not click on the link, if you want to explore you have to make sure all your cookies and private data cleared and do not enter the real data in for testing purpose. I did the following…
http://sovisto.org/tf/downloads/may2u/protection.html
http://sovisto.org/tf/downloads/may2u/processing.html
http://sovisto.org/tf/downloads/may2u/logout.html
After you have done all that, you will be redirect to the real Maybank2u.com website, even in all the pages, other links in the page is pointing back to Maybank2u. So do not enter your real data in if not your data will be fooled. Always check the links and do not click from emails. Bank will never ask you to updates private data thru emails. If you are not sure, you should call direct to their customer line.
Tips and Advise on how to fight Phishing or Scam
So when you receive any email from bank, confirmed with the bank and check wither it’s a scam or not. I repeat, do not click on any link in the email that look suspicious. When u do that, you will eventually leak your information to the culprit.
There’s a way that I always check whether it’s from the real bank or not. Before you click on the link, you can actually see the real link behind by mouse over or view source. By doing that you can also check whether it’s pointing to the bank that sent you the email or pointing to other pishing website. So when you see a link like paypal, it’s actually bringing you to another website that look exactly the same but it’s not the real bank. So beware.
Another way that you can check is, when you reach the website thru the link in the email, try to login using wrong login name and password, if it’s logged in then you know it’s a pishing scam, if not than it should be safe.
So the safer way is, bookmark you the bank website and every time want to visit, just click on your bookmark =)
Tell your friends or loved one about it if not they will be trapped.
Read Part I
Posted in Private | 3 Comments »
Friday, August 1st, 2008 4,385 views
I have receive email from Maybank2u.com it’s actually a scam. Why? Read more…
Title/Subject : Important Account Security
From Email Address : Maybank Group
Dear Maybank member :
Our comprehensive fraud-prevention program is one of the key reasons Maybank is a safe way to pay online. We believe that innovation and careful analysis is the way to beat fraud. That’s why Maybank has developed industry-leading models to review every transaction. and help detect suspicious activity.
In order to continue to operate the Maybank service and to reduce the risk of fraud, Maybank . (“Maybank” or “we”) must ask you to provide us information about yourself and your every requested information on our secure page;.
To do so please follow the link below.
https://www.maybank2u.com.my/services/onlineprotection?verification [The Actual Link >> http://www.guenterontour.de/include/mayredi.php (do not click on it)]
We believe that innovation and careful analysis is the way to beat fraud. That’s why Maybank has developed industry-leading models to review every transaction. and help detect suspicious activity. Our Fraud Investigation Team is dedicated to creating a safe Maybank community. If we suspect fraud in your account, we’ll contact you immediately. .
In my Yahoo Inbox
In my Hotmail Inbox
I went to the link but it shows the following error, I’m sure they are the same look and feel to the Maybank2u.com website and asking for login name and password, if it load accordingly.
Not Found
The requested URL /include/mayredi.php was not found on this server.
I receive this in all my mail, yahoo, hotmail, gmail. I think this is very important to bring out and let all the Maybank2u.com user know about it.
What is Phishing?
Phishing is a form of fraud designed to steal your identity. It works by using false pretenses to get you to disclose sensitive personal information, such as credit and debit card numbers, account passwords, or Social Security numbers.
One of the most common phishing scams involves sending a fraudulent email that claims to be from a well-known company. Phishing can also be carried out in person, over the phone, through fraudulent pop-up windows, and websites. more
Tips and Advise on how to fight Phishing or Scam
So when you receive any email from bank, confirmed with the bank and check wither it’s a scam or not. I repeat, do not click on any link in the email that look suspicious. When u do that, you will eventually leak your information to the culprit.
There’s a way that I always check whether it’s from the real bank or not. Before you click on the link, you can actually see the real link behind by mouse over or view source. By doing that you can also check whether it’s pointing to the bank that sent you the email or pointing to other pishing website. So when you see a link like paypal, it’s actually bringing you to another website that look exactly the same but it’s not the real bank. So beware.
Another way that you can check is, when you reach the website thru the link in the email, try to login using wrong login name and password, if it’s logged in then you know it’s a pishing scam, if not than it should be safe.
So the safer way is, bookmark you the bank website and every time want to visit, just click on your bookmark =)
Tell your friends or loved one about it if not they will be trapped.
Updates Part II
Posted in Private | 2 Comments »
Thursday, May 8th, 2008 3,547 views
It has been brought to Maybank’s attention that some members of the public have received e-mail messages purportedly requesting customers to update the security of their accounts in an attempt to obtain the username (ID) and password of Maybank2u.com customers. This is done with the intention to illegally access the customer’s account.
Maybank would like to clarify that such e-mail messages are not issued by Maybank and advises customers NOT to log in to any of the website links contained in the e-mail. If any customer had clicked on the link in the e-mail, they are advised to change their password immediately, by directly logging in through www.maybank2u.com
Sample of the e-mail being circulated:
From:”Maybank Group” (upgrade@mayonlinesolutions.com)
To: user@pd.jaring.my
Sent: Mon, 05 May 2008 00:21:31 +0000
Subject:Attention: Urgent Account Problem
Dear Maybank Malaysia Custome
Maybank is here by announcing to our customers about our New May 2008 Security Process. We have upgraded our new SSL servers to serve our customers for a better and secure online service, against fraudulent activities
Due to this recent security process, you are requested to secure your Maybank Online Information by following the reference below.
http://www.may2u-malaysia.com/May-Bank-Online.htm
Regards
Customer Support
Maybank Group
If you encounter any of the link or email mention above you are advised to report to Maybank
Previously I have posted something similar which is happened to Paypal. Read more about the post that written by me “Beware of PayPal Fraudulent Emails”
What is Phishing?
Phishing is a form of fraud designed to steal your identity. It works by using false pretenses to get you to disclose sensitive personal information, such as credit and debit card numbers, account passwords, or Social Security numbers.
One of the most common phishing scams involves sending a fraudulent email that claims to be from a well-known company. Phishing can also be carried out in person, over the phone, through fraudulent pop-up windows, and websites.
Here is what I can advise you base on my own experience and observation. When you receive any email from bank, confirmed with the bank and check wither it’s a scam or not. I repeat, do not click on any link in the email that look suspicious. When u do that, you will eventually leak your information to the culprit.
There’s a way that I always check whether it’s from the real bank or not. Before you click on the link, you can actually see the real link behind by mouse over or view source. By doing that you can also check whether it’s pointing to the bank that sent you the email or pointing to other pishing website. So when you see a link like paypal, it’s actually bringing you to another website that look exactly the same but it’s not the real bank. So beware.
Another way that you can check is, when you reach the website thru the link in the email, try to login using wrong login name and password, if it’s logged in then you know it’s a pishing scam, if not than it should be safe.
So the safer way is, bookmark you the bank website and every time want to visit, just click on your bookmark =)
All the best. Maybank now even advertise on radio about this phishing website link! They are very concern about it and it’s good to let more ppl know about it especially your father or mother if they using Internet banking.
Posted in Announcement | No Comments »
