Online users who have received the "Capital One Bank Account Update" email below, which claims that a problem was detected with their accounts and they need to update their information, should delete the same email and not follow the instructions it. This is because the fake email is being sent by cybercriminals to frighten and trick potential victims into clicking on the links in them, which go to phishing websites that steal online account credentials.
A Sample of "Capital One Bank Account Update" Phishing Scam
From: "Capital-One-Bank@t-online.de" <Capital-One-Bank@t-online.de>
Date: March 27, 2018 at 3:25:09 PM EDT
To: "email@example.com" <firstname.lastname@example.org>
Subject: Capital One Bank Account Update.
Reply-To: "Capital-One-Bank@t-online.de" <Capital-One-Bank@t-online.de>
Dear Valued Customer:
We detected a problem with your Capital One Bank account, your Capital One Bank account will be temporarily suspended if you fail to verify. Please we notice that someone wants to make use of your Capital One bank account from another location, please view the attachment and confirm if you are the one, verify with your information for confirmation to enable us not to suspend your account.
About This Message: This service email gives you updates and information about your Capital One relationship. Your privacy is important to us.
Capital One Privacy Operations Headquarters: McLean, Virginia, United States
© 2018 Capital One
Capital One customers who have received messages claiming that they need to do some activity on their accounts, such always go directly to https://www.capitalone.com/ and sign into their accounts. Once they have signed in, they will be notified of security updates, notifications and other important notifications. So, there is no need to click on a link in an email message, which may go to phishing or malicious website.
Also, Capital One customers who have already been tricked by the phishing messages, are asked to change their passwords and contact Capital One immediately, before their accounts are hijacked and used fraudulently by cybercriminals.