The world's premier anti internet scam, anti fraud information website 

  • Scotiabank Phishing Email and Fake Log In Site

  • Exposed fake banks, courier sites, escrow services, law firms, and other fraudulent websites used in scams. 6,444+ fake sites documented with evidence.
Who are you really talking to? Check their location - InfoSniper
Exposed fake banks, courier sites, escrow services, law firms, and other fraudulent websites used in scams. 6,444+ fake sites documented with evidence.
  Been Targeted by This Scam?

Here's how to report a scam to the FBI, FTC, and other agencies. Read our guides on fake check scams, sugar daddy scams, and sextortion. Not sure? Try our free Scam Checker Tool.

  by Terminator5
 
The source host name is "server.septools.com" and the source IP address is 209.97.207.148

Geo-Location Information


Country Canada

State/Region BC

City Kelowna


Begin Phishing Email:


Dear Customer,



We recently reviewed your account, and suspect that your Scotia Bank Online Banking account might have been accessed by an unauthorized third party.

Protecting the security of your account is our primary concern, therefore as a preventive measure, we have temporarily limited access to sensitive account features.

To restore your account access, we need you to confirm your identity.

Please follow the link below to proceed to confirming your account information:
https://www.scotiabank.com/cgi-bin/netb ... yidHmkqZJJ.



If you are concerned about the authenticity of this message, please click here or call the phone number on the back of your credit card.
If you would like to learn more about e-mail security or want to report a suspicious e-mail, click here.



© 1999 - 2011 Scotia Bank. All rights reserved. Equal Housing Lender


End Phishing Email


Link to Fake Scotiabank Log In at :

http://www.photographynest.com/index.htm


Commentary by T5

Unable to find an email address listing to report this to the bank .




Header Details:

Delivered-To: xxxxxx
Received: by 10.180.94.170 with SMTP id dd10cs188175wib;
Thu, 6 Oct 2011 01:34:10 -0700 (PDT)
Received: by 10.231.5.225 with SMTP id 33mr882457ibw.3.1317890049574;
Thu, 06 Oct 2011 01:34:09 -0700 (PDT)
Return-Path: <[email protected]>
Received: from septools.com ([209.97.207.148])
by mx.google.com with ESMTPS id t5si240189ibo.74.2011.10.06.01.34.08
(version=TLSv1/SSLv3 cipher=OTHER);
Thu, 06 Oct 2011 01:34:09 -0700 (PDT)
Received-SPF: neutral (google.com: 209.97.207.148 is neither permitted nor denied by best guess record for domain of [email protected]) client-ip=209.97.207.148;
Authentication-Results: mx.google.com; spf=neutral (google.com: 209.97.207.148 is neither permitted nor denied by best guess record for domain of [email protected]) smtp.mail=[email protected]
Received: (qmail 26858 invoked by uid 48); 6 Oct 2011 03:33:28 -0500
Date: 6 Oct 2011 03:33:28 -0500
Message-ID: <[email protected]>
To: xxxxxx
Subject: Scotia OnLine (Re-Activate Your Online Access)
From: Scotia OnLine <[email protected]>
Reply-To:
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: 8bit
  by Jillian
 
You can report phishing emails to Scotia Bank at [email protected]
The information for reporting fraud is on their site, here: http://www.scotiabank.com/cda/content/0 ... en,00.html

Please note that ScamWarners doesn't deal with phishing emails, our focus is advance fee fraud.
Phishing can be reported to http://www.antiphishing.org
Information on reporting is here: http://www.antiphishing.org/report_phishing.html
Terminator5 wrote: Please follow the link below to proceed to confirming your account information:
https://www.scotiabank.com/cgi-bin/netb ... yidHmkqZJJ.
The links in phishing emails are often disguised. The text shows what appears to be a legitimate link but you are directed elsewhere when you click on it. This information is lost when you copy and paste the text onto the forum. The link above is to the real ScotiaBank.
  by Terminator5
 
Updated my address book and links . Thx
  by Jillian
 
You're welcome. A quick way to find the info for reporting phishing to a particular company is to Google the name of the company with the words: report phishing.