New Tesco Scam Email –
Update your Credit Card details

News from Omniquad | November 26, 2012

Tesco Bank Credit Card – We've updated your details.

Tesco customers are really targeted these days. The current flow of phishing emails informs you that they have updated your credit card details, you just need to log in and verify. Do not fall for this scam please, it is never a good idea to click in links in emails and giving your credit card details away - for scammers, it is like stealing candy from babies. Really easy.

The messages purporting to come from Tesco claims that “we have successfully updated your Tesco bank credit card with the contact details you gave us”, and asking the user to click on the link provided in the email and verify credit-card account details.

The email is not from Tesco.

The “click here” link in the message opens a bogus website that asks users to supply their Tesco account login details along with their email account information. This information can be collected by scammers and used for bank fraud and identity theft. The scam email was originated from the United Kingdom. Omniquad successfully blocks these fraudulent links with the Surfwall Remote web security service, and protects its users.

Please see example below:

Tesco Phishing Email Scam

Tesco Phishing Email Scam

Read our earlier blog post about the previous phishing scam involving Tesco: You have won £2000!

Tips to spot phishing emails:

  • Request you to supply personal information directly into the e-mail or submit via online,
  • Threatens to suspend or close your online accounts if you do not respond to the email,
  • Claims that your account has been compromised or accessed by an un-authorized person,
  • Requests you to enter, validate or verify your account information,
  • States that there are unauthorized charges on your account and requests your account information,
  • Claims that the bank has lost important security information and needs you to update your information online,
  • Requires you to enter your card number, password, user ID or account numbers into an email.

Protect yourself from email fraud:

  • Never click on Hyperlinks within emails, instead, copy and paste them into your browser,
  • Do not open any file attached to the email,
  • Always look for “https://” and padlock on web sites that require personal information,
  • If you didn't initiate a transaction to which an email is referring, it's probably a scam,
  • Never respond to spam / suspicious email or emails from unknown senders,
  • Do not supply your personal / Bank account information to strangers, they are most likely scammers,
  • Use spam filtering software,

Our top tip to stay safe and avoid being scammed? Look who the email is addressing! “Dear Valued Customer,... .” The scammers don't know who the recipient of their emails are, they spam out emails using a scatter gun approach, hoping they will hit somebody who banks with Tesco and will be fooled by their scam. Legitimate emails from financial institutions will most likely address you by your name.