Websense® Security Labs has received reports of a new phishing attack that targets customers of Lansing Automakers Federal Credit Union. Users receive a spoofed email, which claims that due to unauthorized access, their account access has been limited until further personal information is provided. The email provides users with a link to a fraudulent website, where they are prompted to enter their account and password. This phishing site is hosted in Denmark and was up at the time of this alert. Phishing email sample: Dear LANSING AUTOMAKERS F.C.U. Customer, We recently reviewed your account, and suspect that your LANSING AUTOMAKERS F.C.U. Internet Banking account may have been accessed by an unauthorized third party. Protecting the security of your account and of the LANSING AUTOMAKERS F.C.U. network is our primary concern. Therefore, as a preventative measure, we have temporarily limited access to sensitive account features. To restore your account access, please take the following steps to ensure that your account has not been compromised: 1. Login to your LANSING AUTOMAKERS F.C.U. Internet Banking account. In case you are not enrolled for Internet Banking, you will have to fill in all the required information, including your name and your account number. 2. Review your recent account history for any unauthorized withdrawals or deposits, and check you account profile to make sure not changes have been made. If any unauthorized activity has taken place on your account, report this to LANSING AUTOMAKERS F.C.U. Bank staff immediately. To get started, please click the link below: <LINK REMOVED> We apologize for any inconvenience this may cause, and appreciate your assistance in helping us maintain the integrity of the entire LANSING AUTOMAKERS F.C.U. Bank system. Thank you for attention to this matter.
Sincerely, LANSING AUTOMAKERS F.C.U. Team Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your LANSING AUTOMAKERS F.C.U. Bank account and choose the "Help" link in the header of any page. Phishing screenshot: ![](http://www.websensesecuritylabs.com/images/alerts/lansingautomakersfcu.jpg)
|