Westpac Site Replicated?!

Today some of my old uni course mates sent me one of those chain mails saying the Internet website of Westpac has been replicated. Moreover, it is possible that the replicated site has installed password sniffers to steal on-line banking password from those who visited the fraud site.

A replica Westpac site(except it is Westpac-Bank.com site has been built by fraudsters who send speculative e-mails out to e-mail addresses hoping to hit a Westpac customer. These fraudsters are telling customers they have to log on and change their pins and passwords. Last week they hit the CBA and they have now started on Westpac. When you log on, they capture your data and then go and use it at the real site. Very simple but very effective.

So I went to the site to have a look. Bang! It has a door way page, and then after 5 minutes, it gets redirected to a Westpac-look-alike site. Out of curiosity, I then went and checked the source URL of that Westpac site. And surprise! It is actually westpac.com.au - the actual Westpac website! So that fake address, which is actually a frame wrapping another page, probably provided by the domain registrary, is actually not fraud. And that email being sent around is a hoax...

Then from the WHOIS entry of Westpac-bank.com, I found this domain was actually registered by this guy "Sir Oxford University" back in 1999. Yes! It is that same Australian cybersquatter who registered university.com back in 2000, and who changed his name to be "Oxford" "University" in order to protect that domain! And from the WHOIS entries, it seems this Doc Seagle guy (that's original name) just wanted to make some money by cybersquatting again. Just that Westpac never buys into that...

Of course, it does not stop people buying this domain from Sir Oxford University, and then later up setting up a fruad site. But as far as I can see, the email that spins around is a hoax. Moreover, even Australian IT somehow thinks there is some truth in it. Well...