Citi

Citi

The customers of Citibank are being targeted in a large-scale phishing campaign.

The campaign features CitiBank logos and requestes the recipients to disclose sensitive personal details to lift alleged account holds.

The customers are diverted to a website that looks exactly same as citybank portal and any credentials entered there would be compromised and can be misused.

Source: https://www.bleepingcomputer.com/news/security/citibank-phishing-baits-customers-with-fake-suspension-alerts/?&web_view=true

TPRM report: https://scoringcyber.rankiteo.com/company/citi

"id": "cit0362322",
"linkid": "citi",
"type": "Cyber Attack",
"date": "02/2022",
"severity": "80",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Banking',
                        'name': 'Citibank',
                        'type': 'Financial Institution'}],
 'attack_vector': 'Email',
 'data_breach': {'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Personally Identifiable '
                                             'Information, Credentials'},
 'description': 'Citibank customers are being targeted in a large-scale '
                'phishing campaign that features Citibank logos and requests '
                'recipients to disclose sensitive personal details to lift '
                'alleged account holds. Customers are diverted to a website '
                'that looks exactly like the Citibank portal, where any '
                'credentials entered would be compromised and can be misused.',
 'impact': {'data_compromised': 'Sensitive Personal Details, Credentials',
            'identity_theft_risk': 'High',
            'payment_information_risk': 'High'},
 'initial_access_broker': {'entry_point': 'Email',
                           'high_value_targets': 'Citibank Customers'},
 'motivation': 'Financial Gain',
 'title': 'Large-Scale Phishing Campaign Targeting Citibank Customers',
 'type': 'Phishing',
 'vulnerability_exploited': 'Social Engineering'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.