Fishing Hooks in email @ symbol
Home ScamsPhishing Scams Nationwide Phishing Scam Emails

Nationwide Phishing Scam Emails

by Brett M. Christensen


Series of emails purporting to be from UK based financial institution, Nationwide urge recipients to click links in the messages in order to rectify supposed account problems.

Brief Analysis

The emails do not come from Nationwide. Instead, they are sent by online criminals intent on tricking Nationwide customers into divulging their account login details.


Subj: Nationwide Accounts Alert!

NationWide E-mail Alert

Dear Nationwide Customer,

We recently reviewed your account, and noticed that your Nationwide account
details needs to be updated.

Due to this, you are requested to follow the provided steps to confirm your
Online Banking details, phone numbers for the safety of your Accounts.

Simply click Secure Account to secure your Internet Banking details.

Thank you for banking with us.

Customer Services,
Nationwide Building Society.


Subj: Nationwide Account Notification

Dear Valued customer,

We are committed to protect your account
with the best technology adopted to keep your details safe
and dedicated teams to monitor online activities and intercept any suspicious actions.

Click Here To Proceed

Thank you for your Co-operation
Customer Service

Nationwide Building Society-Internet Banking


Subj: Nationwide Account Notification

Dear Nationwide customer,

Due to the fraudulent activities noticed on our online banking, we have decided to make an Update page for your account for security reasons
and to prevent you and your account from fraudulent activities. This update is compulsory for every customer.

As part of our ongoing commitment to provide safe online experience and protection to all our customers,
we are requiring each Customer to Update their account using the new secured servers.

Please Update your online banking account by clicking on the secure link provided below:

[Link removed]

Thanks for your co-operation.

Fraud Prevention Unit
Legal Advisor
© Nationwide Bank plc 2012


Subj: Nationwide:Important Alert

Dear Customer:

Your Secure login details seem to have been compromised.

Please log in to the secure link below, and verify your security

details to avoid an unnecessary suspension of your account.

To log in and verify your account click go here :

Online Banking Secure Login Page


This e-mail was sent on behalf of the online banking community, If you do not have an online banking with Nationwide Internet Banking ignore this message.

Thank you.
Customer Service
Nationwide Internet Banking, Member FDIC.
© 2012 Nationwide Internet Banking Corporation. All Rights Reserved.


Subj: Important Information!

Important Information

Dear Customer,

You have an incoming payment slated for your account. This transaction cannot be completed due to errors present in your account information’s .

Please note that the we shall have no liability if you are unable to use Internet Banking because of the failure of any machine, data processing system or transmission link or anything else beyond our, or our agents reasonable control.

We have taken reasonable steps to ensure that electronic mail and other transmissions passing over the Internet are not interfered with by third parties. However, we cannot guarantee the privacy or confidentiality of any information passing over the internet or that it will not be interfered with.

You are required to click on the link below to fix this problem immediately.

[Link removed]

© Nationwide Building Society is authorised and regulated by the Financial Services Authority under registration number 106078. Credit facilities other than regulated mortgages are not regulated by the Financial Services Authority. You can confirm our registration on the FSA’s website, or by contacting the FSA on 0300 500 5000.


Detailed Analysis

Customers of UK based building society Nationwide, have recently been targeted in a series of phishing scams. Emails warning of various Nationwide account security or payment issues have been randomly distributed to many thousands of inboxes. The urgent-sounding messages ask recipients to click a link in order to rectify the problem and warn that failure to comply with the requests may result in account suspensions or compromised account security. Some variants ask users to open an attached file rather than click a link.
Clicking the link or opening the attachment reveals a fraudulent Nationwide “login” website. The fake pages on the site ask users to submit their Nationwide customer number followed by the memorial data, banking pin and pass number associated with the account. The fake pages include seemingly genuine Nationwide graphics, logos and formatting to make them appear legitimate. After victims have submitted the requested login details on the fake website, they will be automatically redirected to the real Nationwide website.

Meanwhile, the scammers are able to collect all of the submitted details and use them to hijack the real Nationwide accounts of their victims. Nationwide has published information about such phishing attacks on its website.

Phishing is a very common criminal ploy that targets customers of many financial institutions all around the world. Legitimate banks or other online services are very unlikely to send generic emails that urge users to click a link or open an attachment to rectify an account problem. If you receive such an email, do not click any links or open any attachments that it may contain.

It is always safest to access your online accounts by entering the account web address into your browser’s address bar rather than by clicking a link in an unsolicited email.

Importance Notice

After considerable thought and with an ache in my heart, I have decided that the time has come to close down the Hoax-Slayer website.

These days, the site does not generate enough revenue to cover expenses, and I do not have the financial resources to sustain it going forward.

Moreover, I now work long hours in a full-time and physically taxing job, so maintaining and managing the website and publishing new material has become difficult for me.

And finally, after 18 years of writing about scams and hoaxes, I feel that it is time for me to take my fingers off the keyboard and focus on other projects and pastimes.

When I first started Hoax-Slayer, I never dreamed that I would still be working on the project all these years later or that it would become such an important part of my life. It's been a fantastic and engaging experience and one that I will always treasure.

I hope that my work over the years has helped to make the Internet a little safer and thwarted the activities of at least a few scammers and malicious pranksters.

A Big Thank You

I would also like to thank all of those wonderful people who have supported the project by sharing information from the site, contributing examples of scams and hoaxes, offering suggestions, donating funds, or helping behind the scenes.

I would especially like to thank David White for his tireless contribution to the Hoax-Slayer Facebook Page over many years. David's support has been invaluable, and I can not thank him enough.

Closing Date

Hoax-Slayer will still be around for a few weeks while I wind things down. The site will go offline on May 31, 2021. While I will not be publishing any new posts, you can still access existing material on the site until the date of closure.

Thank you, one and all!

Brett Christensen,