Thursday, March 26, 2015

Irregular card activity (American Express Phishing)

Irregular check card activity
American Express

Dear Customer,

We detected irregular card activity on your American Express Check Card on 25 March, 2015.

As the Primary Contact, you must verify your credit card activity before you can continue using your card, and upon verification, we will remove any restrictions placed on your card.

To review your account as soon as possible please click on the link below.

http://encontrohuambo.com/americanexpress/security.html

Thank you for your Card Membership.

American Express Customer Care
Fraud Department:
Erica Bermudez
Level III Security Officer

Email analysis :

NOTE : ptaqdb@braincells.com.au
NOTE : fraud@americanexpress.com
NOTE : Received : from unknown (HELO VDIIKUGQCH) (81.18.84.195)


Phishing analysis :

CLICK : http://encontrohuambo.com/americanexpress/security.html
RESULT : Page was removed

Whois encontrohuambo.com :

Domain Name: ENCONTROHUAMBO.COM Registry Domain ID: 1814235286_DOMAIN_COM-VRSN Registrar WHOIS Server: whois.netearthone.com Registrar URL: Updated Date: 2014-07-11T11:20:37Z Creation Date: 2013-07-10T20:31:50Z Registrar Registration Expiration Date: 2015-07-10T20:31:50Z Registrar: NetEarth One, Inc. Registrar IANA ID: 1005 Registrar Abuse Contact Email: Registrar Abuse Contact Phone: Domain Status: clientTransferProhibited (http://icann.org/epp#clientTransferProhibited) Registry Registrant ID: Registrant Name: Domain Admin Registrant Organization: WHOIS IDCPrivacy Service c/o IDC (BVI) Limited Registrant Street: First Floor, 5 Greenwich View Place Visit www.idcprivacy.com to contact the domain contacts. Email to contact@idcprivacy.com for alternative instructions. Registrant City: London Registrant State/Province: London Registrant Postal Code: E14 9NN Registrant Country: GB Registrant Phone: +44.2030262854 Registrant Phone Ext: Registrant Fax: Registrant Fax Ext: Registrant Email: contact@idcprivacy.com Registry Admin ID: Admin Name: Domain Admin Admin Organization: WHOIS IDCPrivacy Service c/o IDC (BVI) Limited Admin Street: First Floor, 5 Greenwich View Place Visit www.idcprivacy.com to contact the domain contacts. Email to contact@idcprivacy.com for alternative instructions. Admin City: London Admin State/Province: London Admin Postal Code: E14 9NN Admin Country: GB Admin Phone: +44.2030262854 Admin Phone Ext: Admin Fax: Admin Fax Ext: Admin Email: contact@idcprivacy.com Registry Tech ID: Tech Name: Domain Admin Tech Organization: WHOIS IDCPrivacy Service c/o IDC (BVI) Limited Tech Street: First Floor, 5 Greenwich View Place Visit www.idcprivacy.com to contact the domain contacts. Email to contact@idcprivacy.com for alternative instructions. Tech City: London Tech State/Province: London Tech Postal Code: E14 9NN Tech Country: GB Tech Phone: +44.2030262854 Tech Phone Ext: Tech Fax: Tech Fax Ext: Tech Email: contact@idcprivacy.com Name Server: wdns1.redelx.com Name Server: wdns2.redelx.com Name Server: wdns3.redelx.com Name Server: wdns4.redelx.com DNSSEC:Unsigned URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/

No comments:

Post a Comment