Feeds

BoI customers fall victim to phishing scam

Scammers net €113,000

Providing a secure and efficient Helpdesk

Bank of Ireland customers have been hit by a new phishing scam, which has already cost some of its customers more than of €110,000.

The bank issued a security alert; however, the bulletin came too late for several BoI customers. In total, some €113,000 is believed to have been lost by account holders responding to the fake email.

One customer claims to have lost over €49,000 after inadvertently handing over bank details to a bogus website. Others reported losses from between €5,000 to €16,900.

However, the bank would not confirm any details of the reported losses, as it refuses to discuss individual cases. Gardai have launched an investigation into the fraud.

Phishing attacks attempt to fool internet users into revealing sensitive information, such as log on codes and passwords for online banking, using emails and websites that appear to be legitimate.

In a statement, the bank said: "Bank of Ireland takes internet fraud extremely seriously and works closely with the Gardai to close such sites immediately. All reported incidents where customers have responded to such an email are immediately investigated by Bank of Ireland and reported to the Gardai."

These measures may not be enough for the victims of the fraud. According to recent reports, BoI has refused to compensate its customers for the missing cash. It could now be facing a compensation claim from those hit by the losses, and a complaint has been made to the Ombudsman for Financial Services.

Bank of Ireland, like other financial institutions, is no stranger to phishing scams, and has previously warned customers that it does not ask for account details in such a way and that they should not give out confidential information, such as log-on details, to any website that requests it.

Other Irish institutions have been the target of phishing attacks in the past, including Ulster Bank and AIB. However, previous reports indicate that the success rate for the scammers was quite low. The financial institutions have attributed this to the high level of awareness of the dangers by customers.

Certainly, BoI is not the only bank to have been hit in recent weeks either; AIB has already issued an alert to its customers regarding a new phishing scam in the past few days, while online bank RaboDirect is also warning of a website masquerading as the log-in site for the bank. An email asking customers to update their details at the site has been doing the rounds.

Copyright © 2006, ENN

Choosing a cloud hosting partner with confidence

More from The Register

next story
SMASH the Bash bug! Apple and Red Hat scramble for patch batches
'Applying multiple security updates is extremely difficult'
Shellshock: 'Larger scale attack' on its way, warn securo-bods
Not just web servers under threat - though TENS of THOUSANDS have been hit
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
Hackers thrash Bash Shellshock bug: World races to cover hole
Update your gear now to avoid early attacks hitting the web
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
Stunned by Shellshock Bash bug? Patch all you can – or be punished
UK data watchdog rolls up its sleeves, polishes truncheon
prev story

Whitepapers

A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.