800-281-2294
| matt 2014-04-08 03:16:18 Unknown |
I just recieved a call from 8005591677
| Concerned user 2014-04-08 00:04:23 Telemarketer |
Just received a call from 1-800-268-2327 with the exact same message. It's a phishing website, and Chrome reports it as such. They will use your credentials to make charges against your AT&T account, as well as your last 4 SSN to attempt to break into other services that you may be subscribed to, or sign you up for additional services.
It's cleverly disguised, unlike most phishing attempts out there- there's no links on the website pointing to other sites except for att.com (official AT&T site). It pulls in javascript and css files from the official site to mimic the look and feel of the genuine article. The submit button invokes a call that logs what you posted locally (unencrypted even) and then sends you to a redirect page which then redirects you to the actual AT&T wireless web site.
I used blatantly bogus information, and the site doesn't make any attempt to verify if what I entered was legit. It thanked me and then redirected me to the ATT wireless site (not logged in).
Not too sophisticated, but I suspect more than a few people will fall victim to this. Be careful.
| not gonna do it 2014-04-07 22:27:17 Unknown |
Also calling from 800-293-2999
recorded message telling me to go to a website combining ATT and "Fidelity" and claim my gift because ATT cares about me.
Sounds like a scam
Here's a report about the website they wanted me to visit.
~~
Going to the site it appears to be an AT&T site, but it is not. They ask for your user ID, last 4 of soc, and password.
There is also a warning on site that "my java is disabled", and it is because I use Chrome (does not use Java), therefore it is likely they are trying to use an exploit in Java to infect your PC as well.
~~
| Victim #86 2014-04-07 22:26:51 Unknown |
Same scam, but the call came from 800-844-3387
| Poe 2014-04-07 22:22:40 Unknown |
it is not an AT&T site, it just looks like it. it is a phishing site created days ago to trick you into giving your account information to them. Here is the site info:
Domain Name: ATTFIDELITYPLAN.COM
Registrar: GODADDY.COM, LLC
Whois Server: whois.godaddy.com
Referral URL: http://registrar.godaddy.com
Name Server: NS29.DOMAINCONTROL.COM
Name Server: NS30.DOMAINCONTROL.COM
Status: clientDeleteProhibited
Status: clientRenewProhibited
Status: clientTransferProhibited
Status: clientUpdateProhibited
Updated Date: 05-apr-2014
Creation Date: 05-apr-2014
Expiration Date: 05-apr-2015
Domain Name: ATTFIDELITYPLAN.COM
Registrar URL: http://www.godaddy.com
Registrant Name: Shannon Charles
Registrant Organization: fidelityplan@mailinator.com
Name Server: NS29.DOMAINCONTROL.COM
Name Server: NS30.DOMAINCONTROL.COM
DNSSEC: unsigned
| sdkstl 2014-04-07 20:48:20 Telemarketer |
Claims to be $500 from AT&T, sends user to ATTFidelityPlan.com, looks like AT&T site.