A phishing email targeting UK-based Halifax Bank users attempt to trick recipients into handing over their sensitive information.
The email informs the recipients that "3rd party intrusions" have been detected and their account has been limited for security reasons, according to Hoax-slayer.
To restore the account, it asks recipients to confirm their identify and verify that their account has not been used for fraud purposes, by filling an online validation form.
Once the victim opened the link provided in the email, it will take them to a fake Halifax Bank website where it will ask them to log in. Then, it will ask victims to enter their personal information such as name, phone number, birth dates.
In next form, they will be asked to enter sensitive information such as Account Number, sort code, card number, expiration date and security code.
As usual in phishing scams, once the form is filled, the victim will be automatically redirected to the legitimate Halifax Bank website.