Fraudulent scheme targeting Santander

New phishing raid attempts to deceive e-banking users into revealing their sensitive financial data.

A new significant wave of e-mail spam purporting to verify and reinforce the “account against ID Theft” leads the credulous or inadvertent users to a collection of Web pages meant to steal and empty their bank accounts.

Alliance Leicester Phishing

The on-line forms that claim to pertain to the financial institution’s portal spoof several visual identification elements, such as the logo and general layout. Additionally, the pages are not registered onto a domain (but .com) and are totally lacking any specific security elements, such as the locked padlock.

Alliance Leicester Phish

The phishers steal the sensitive data that the user is required to confirm via two PHP scripts: mainfile.dists.php – used to pilfer the 8 digit customer ID, and formmailerv2.php – which purloins the customer PIN, place of birth, mother’s maiden name, password and transfer password, telephone banking PIN, card number and CVC.

Alliance Leicester Phishing

As always, be suspicious of e-mails alleging to be from your bank – financial institutions never contact their customers via e-mail to verify sensitive information – and double-check the security elements of the login page of your e-banking portal. Last but not least, keep your antiphishing on and up-to-date.

Alliance Leicester Phish.png

The information in this article is available courtesy of Daniel Dichiu, BitDefender Online Threats Researcher.

About the author


With a humanities passion and background (BA and MA in Comparative Literature at the Faculty of Letters, University of Bucharest) - complemented by an avid interest for the IT world and its stunning evolution, I joined in the autumn of 2003 the chief editors' team from Niculescu Publishing House, as IT&C Chief Editor, where (among many other things) I coordinated the Romanian version of the well-known SAMS Teach Yourself in 24 Hours series. In 2005 I accepted two new challenges and became Junior Lecturer at the Faculty of Letters (to quote U2 - "A Sort of Homecoming") and Lead Technical Writer at BluePhoenix Solutions.

After leaving from BluePhoenix in 2008, I rediscovered "all that technical jazz" with the E-Threat Analysis and Communication Team at BitDefender, the creator of one of the industry's fastest and most effective lines of internationally certified security software. Here I produce a wide range of IT&C security-related content, from malware, spam and phishing alerts to technical whitepapers and press releases. Every now and then, I enjoy scrutinizing the convolutions of e-criminals' "not-so-beautiful mind" and, in counterpart, the new defensive trends throughout posts on

Balancing the keen and until late in night (please read "early morning") reading (fiction and comparative literature studies mostly) with Internet "addiction", the genuine zeal for my bright and fervid students with the craze for the latest discoveries in science and technology, I also enjoy taking not very usual pictures (I'm not a pro, but if you want to see the world through my lenses, here are some samples, messing around with DTP programs to put out some nifty book layouts and wacky t-shirts, roaming the world (I can hardly wait to come back in the Big Apple), and last but not least, driving my small Korean car throughout the intricacies of our metropolis's traffic.