A mail carrying subject line : “IDBI BANK VERIFICATION MESSAGE!!” is being circulated containing an .html file as an attachment.
If you click to open the .html file, it displays a fake IDBI bank login form. This form gets displayed on your local machine. It asks to enter your confidential information such as Corporate ID, User ID, Password etc.
If a user clicks on the ‘Submit’ tab the data gets transferred to the attacker.
After analysis of the .html file it was found that it contained a fraudulent link:
“https://www.greetwings.in /corp. php” and this is the link where your confidential data gets transferred.
Quick Heal deletes the malicious HTML file and protects its users from such phishing attacks.