Websense® Security Labs™ have received reports of a phishing attack that targets Tri-Lakes Federal Credit Union customers. Users receive a spoofed email message, which claims that due to recent changes in the Credit Union service agreement, the users need to submit additional details about their account. The email provides a link to a phishing site that attempts to collect personal and account information.

This phishing site is hosted in the United States and was up at the time of this alert.

Phishing email text:

Dear Tri-Lakes Federal Credit Union Cardholder,

Due to upcoming 19 April 2007, and recent changes in Tri-Lakes Federal Credit Union Service Agreement you need to submit additional details on your Tri-Lakes Federal Credit Union account. Starting from 19 April 2007 all Tri-Lakes Federal Credit Union accounts will come with complete detailed information! Identity protection matters. And Tri-Lakes Federal Credit Union works day and night to help keep your identity safe

Identity protection matters. Get Verified! < LINK REMOVED >

According the new changes in Service Agreement any unverified account will be deleted from the system in 24 hours after receiving this letter.

Tri-Lakes Federal Credit Union Online Banking Support

Phishing screenshot #1:

Phishing screenshot #2:

You must be logged in to post a comment.