Alert!!! Renew And Secure Your Internet Banking Account Immediately

I was surprised when I received a mail from ICICI Bank (customercare@icicibank.com) with title Alert!!! Renew And Secure Your Internet Banking Account Immediately. The mailer had a ICICI Bank logo and the mail format was quite similar to what ICICI has. Below is the complete mail body:

---

Security Update for Online Users

Currently, you are on the ICICI Bank Company Mailer

The internet has become widely accepted for banking online. While we have taken all the possible measures to ensure security and confidentiality of our online banking systems, as we are providing you 128-SSL Secured Server which is highly protected to store your passwords.
Now we are updating our 128-SSL Secured Server to 256-Encrypted SSL Secured Server which is highly sophisticated server to maintain your personal information as our prior service to you.
Important: Due to concerns, for the safety and integrity of your online banking account we have issued this warning message.

During our regularly scheduled account maintenance and verification procedures, we were unable to verify your account information. It has come to our attention that your account information needs to be updated as part of our continuing commitment to protect your account and to reduce the instance of fraud on our website .We demand that you take 5 minutes out of your online experience and renew your records to avoid running into any future problems with the online service. However, failure to update your records will result in your account suspension. Once you have updated your account records your internet banking service will not be interrupted and will continue as normal.

If You Have ICICI Bank Personal Account , Click here https://verification.personal.icicibank.co.in/verify1.jsp

If You Have ICICI Bank Corporate Account , Click here https://verification.corporate.icicibank.co.in/verify2.jsp

Sincerely, ICICI Bank Security Department

---

I didn’t think much and clicked the ‘Personal Account’ link and landed on a page that was quite similar to what I see almost daily (oh yes, I use Internet banking too frequently). But when I was about to fill it, I noticed it is asking me for somewhat suspicious information like ATM pin and all. Then I had a look at URL. Hell! It was anything but ICICIBank.com!!! The URL was

http://www.iikii.com/bemarket/imgs/save/3/rbc3/www.icicibank.com/Login[1][1].jsp.html

Then I went back to mail-box, saw mail headers and found that mail has been sent by sd1967.sivit.org. So, I was about to become a victim of phishing! Trust me, it could have been a disaster. I remember well that a few months ago someone trapped me and took away my orkut password. He looted two of my communities which had over 4,000 members. Though it gave me a shock and I left orkut the same day but it gave me a lesson also and I am wary of such things now.

If any mail asks you your email, username, password, ATM pin, credit card information or any such thing, please make sure that you are not being trapped.