Phishers Target Shaw Communications Customers

Trend Micro threat analysts recently found a fake Shaw Communications phishing Web page http://{BLOCKED}nadaworld.net/{very long string containing random characters}/ that asks users for their customer care login name and password.

Cybercriminals can lead their victims to the said site using social engineering. The most common tactic in cases of phishing is a spoofed email. Account credentials entered in the fake site can be used to obtain other user information such as credit card numbers and email accounts, which may be used for further malicious activities or sold underground.
The cybercriminals targeting Shaw customers have created the fake page to look exactly like the original Online Customer Care page (except for the overly long URL). Subscribers who have visited the original site before will be familiar with the interface.
Shaw Communications is one of the largest telecommunications company in Canada. It provides Internet, digital phone, and cable television services to millions of customers. We strongly advise subscribers to manage their account only through their official Online Customer Care page at https://secure.shaw.ca/ or via telephone.
This is not the first time cybercriminals spoofed the websites of large companies with large user bases for their phishing attacks. They are always on the lookout for more victims so online consumers should always be on their guard. The phishing URL (continue reading...)