Previous    Next
Warning: JavaScript is turned off! Some features on this website will not work without it.

Beware of "National Commercial Bank Alert - Action Required" Malicious Emails

Beware of "National Commercial Bank Alert - Action Required" Malicious Emails

The email message below, which appears as if it was sent by the National Commercial Bank (NCB), is a fake. The fake message has a malicious attachment that contains HTML programming codes that will attempt to download and infect your computer with viruses, Trojan horse, spyware, Ransomware and other malware. Therefore, recipients of the same email message are asked to delete it and should never attempt to open the attachment.

Please continue reading below.

A Sample of the "National Commercial Bank Alert" Malicious Email

National Commercial Bank Malicious Email

From: NCB Jamaica []
Sent: Tuesday, February 21, 2017 1:48 PM
Subject: National Commercial Bank Alert - Action Required
Attachment: InternetProfile.html

Changes to your rates

Dear Customer,

At NCB Jamaica, we regularly review our customer records to ensure we have the most recent and up to date information.

To complete the process, we just need to verify that this email address belongs to you.

· Please find the Attached HTML Document

and follow the easy instructions

Have a question?

No worries! Call one of our Customer Service Representatives on (868) 62-FIRST (623-4778) . We're here from 8am to 7pm Monday to Friday.

Marisa Grieco
Customer Operations Manager

NCB Jamaica and most other legitimate companies will never send email messages to their customers asking them to open a HTML document in order to verify their email addresses or update their records. Therefore, recipients of unexpected or suspicious email messages with attachment ending with ".html" or ".htm" are asked to contact the organizations the email messages appear to have been sent from, in order to verify their authenticity, before they attempt to open the attachment.

Remember, although the "From" address of an email message contains the email address of a legitimate organization; it doesn’t necessarily means it was sent by that organization. There is a technique called Email Spoofing, which allows the sender of an email message to change the "From" address of an email message, to make the same message appear as if it came from someone else.

For example:

I can send an email message to a friend and change the “From” email address of the same message to "" Once my friend receives the email message, he/she will think the email message came from the president of the United States, when it was actually sent by me. So, never rely on the “From” or sender’s email address to determine if an email message is legitimate or not.

Please share with us what you know or ask a question about this article, by leaving a comment below. And, please report malicious, phishing or scam email messages, social media posts and websites to us using this email address: .

Tell us if you LIKE this article by clicking the following thumbs-up, or click the thumbs-down if you dislike it:

       Rating - Thumb up          Rating - Thumb down 0   
Alert and help your family and friends by sharing this article with them:
Other online threat alerts:
Submit Your Comment or Question

Submit your comment or question in the box below to share what you know or to get answers about this article.

CommentComments or Questions (0)