Fact Check


Published Apr 22, 2004

Urban Legends Reference Pages: Inboxer Rebellion (Citibank)

Phish Bait:   Citibank customers.

Example:   [Collected on the Internet, 2004]

Dear Citibank customer,

Recently there have been a large number of identity theft attempts targeting Citibank customers. In order to safeguard your account, we require that you update your Citibank ATM/Debit card PIN.

This update is requested of you as a precautionary measure against fraud. Please note that we have no particular indications that your details have been compromised in any way.

This process is mandatory, and if not completed within the nearest time your account may be subject to temporary suspension.

To securely update your Citibank ATM/Debit card PIN please go to:


Please note that this update applies to your Citibank ATM/Debit card - which is linked directly to your checking account, not Citibank credit cards.

Thank you for your prompt attention to this matter and thank you for using Citibank!


Jonathan Hightower
Head of Citi® Identity Theft Solutions

Copyright A9 2004 Citicorp. All rights reserved.

Origins:   This is yet another
garden-variety phishing scheme directed at customers of Citibank. Clicking the link provided in the body of the message (deactivated in the example above) pops up a phony "ATM/Debit Card PIN number" update form which prompts the user to enter his ATM/Debit Card number, PIN, and checking or savings account number. The update form does not originate with or send information to the genuine Citibank site; it is actually loaded from a server (evanzo-server.de) in Bremen, Germany.

Last updated:   22 April 2004


David Mikkelson founded the site now known as snopes.com back in 1994.

Article Tags