Somebody impersonating TransUnion wants to steal my login credentials. This phishing attack works because I froze my credit with the major credit reporting agencies a few months ago after somebody with details on my credit history tried to scam me with a phone phishing attack.
The “alert” says,
An Account Has Been Reported Closed
Our daily monitoring of your TransUnion credit file detected a critical change on your credit report. Sign in now to see what changed. This change will not be visible on your credit report until after your next weekly report and score refresh.
I have a few credit cards I never use, so it’s plausible that an issuer closed one of them. So an email alert claiming to come from TransUnion could be real.
But it’s not. This is a fake.
When I hover my computer mouse over the “Log in” link, look where the link points. Somebody wants to steal my TransUnion login credentials. If they’re lucky, maybe I use the same credentials everywhere and they can impersonate me with all credit reporting agencies. Borrow a few $zillion in my name and Merry Christmas on me.
I’ll give this one a B+. It’s a pretty good attack. It will fool people. But not you, because you follow my blogs on this stuff and you pay attention to your own safety. Right?
For more phishing samples, see my phish collection. Don’t phall for phishing.

Recent Comments