The US Department of Homeland Security has issued a warning about an ongoing phishing scam that targets PayPal, Bank of America, Lloyds and TSB users. The scammers have found an ingenious way to circumvent your spam filter by sending e-mail with an HTML page attachment that is called a Word doc or a PDF to trick the content filters.
When the victim get the email and opens the attachment, they are sent to a legitimate website first, then routed to a site that's not legit where they are asked to enter some kind of account or personal information. The best advice to avoid this scheme is to not follow unsolicited links or attachments in e-mail, use caution when providing any personal information online, verify the legitimacy of e-mail by contacting the sender directly, and review common best practices for avoiding e-mail scams and socially engineered attacks.
