The customers of Citibank are being targeted in a large-scale phishing campaign.
The campaign features CitiBank logos and requestes the recipients to disclose sensitive personal details to lift alleged account holds.
The customers are diverted to a website that looks exactly same as citybank portal and any credentials entered there would be compromised and can be misused.
TPRM report: https://scoringcyber.rankiteo.com/company/citi
"id": "cit0362322",
"linkid": "citi",
"type": "Cyber Attack",
"date": "02/2022",
"severity": "80",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Banking',
'name': 'Citibank',
'type': 'Financial Institution'}],
'attack_vector': 'Email',
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Personally Identifiable '
'Information, Credentials'},
'description': 'Citibank customers are being targeted in a large-scale '
'phishing campaign that features Citibank logos and requests '
'recipients to disclose sensitive personal details to lift '
'alleged account holds. Customers are diverted to a website '
'that looks exactly like the Citibank portal, where any '
'credentials entered would be compromised and can be misused.',
'impact': {'data_compromised': 'Sensitive Personal Details, Credentials',
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'initial_access_broker': {'entry_point': 'Email',
'high_value_targets': 'Citibank Customers'},
'motivation': 'Financial Gain',
'title': 'Large-Scale Phishing Campaign Targeting Citibank Customers',
'type': 'Phishing',
'vulnerability_exploited': 'Social Engineering'}