Phishing and Vishing Identity Theft Scams
The Verify Recent Activity on Your Capital One Credit Card Scam
Redirects to spoofed (Fake) website: https://t.co/T6H5tZ61Jd

You may have received a phone call about the same subject. It is an attempt to get you to enter confidential information (typically a social security number, name, address, bank account information, etc., to allow the scammers to steal your identity and open credit cards in your name.

This email was not sent by CapitalOne ; CapitalOne   is a victim as well. This is referred to as spoofing (making a fake email that looks legitimate, "phishing" (when by email) or "vishing" (when by telephone). If you receive an email similar to the one below, DO NOT click on the link, and do not enter any information on the forms there.

The website that the link leads to is a spoof; a fake website, not created by CapitalOne . It goes to https://t.co/T6H5tZ61Jd,  or other websites (they constantly hack and change destinations), not CapitalOne! When you enter the information they ask for, you will simply be handing the thieves the keys to your bank accounts.  That is how spoofing, phishing and vishing works.

Remember, no reputable business would send you an email or a phone call requesting your personal account information. Any such email you receive asking for this information should be considered phony and brought to the attention of the business being 'phished'.

Key Tip:

Hover your cursor over the links / buttons in the email - but do not click them. You will see the url of the lionk; usually something like  https://t.co/T6H5tZ61Jd which is OBVIOUSLY NOT https://www.CapitalOne.com

Anytime you need to go to a website for your bank, credit card companies or other personal, financial or confidential information; do not follow a link in an email; just type their address in your browser directly (such as www.CapitalOne.com )

Below are actual phishing emails that started circulating in early 2008. We removed the links to  the phisher's website, which is https://t.co/T6H5tZ61Jd

It is possible that the owners of the website (https://t.co/T6H5tZ61Jd) are not involved, and that their server has been hacked, but the fact remains that this is the address the scam  goes to.

---

From: Capitalone <capitalone@secure.net>
Sent: Wednesday, August 27, 2025 9:11 PM
To:
Subject: Verify Recent Activity on Your Capital One Credit Card

 

Sign In

 

Do you recognize this purchase?

 

About your Capital One credit card Please let us know if you or an authorized user recognize the purchase below. The sooner we hear from you, the sooner we can help protect your account from unauthorized purchases.

 

Date Merchant Name Amount Outcome August 27, 2024 AMZN *AMAZON*Y79892E72 $997.01 Pending

 

Yes, I Recognize It No, Something's Wrong

 

Some things to consider when reviewing your purchase: ·       If you respond yes, declined transactions will stay declined. After responding, try your card again. ·       To cancel a legitimate purchase, contact the merchant directly. ·       A pre-authorization can differ from your transaction amount because merchants (typically gas stations) estimate your amount (usually $1–$100) before the transaction is complete. If you've already resolved this, you can ignore this email or sign in to your account to check out the details. To speak to a customer representative in Spanish, please call us at the number on the back of your card. / Para hablar con un representante de servicio al cliente en español, por favor llámanos al número que aparece en el reverso de tu tarjeta.

 

Download the Capital One Mobile app.

 

About This Message The site may be unavailable during normal maintenance or due to unforeseen circumstances.

 

Important information from Capital One Contact us  |  Privacy  |  Help prevent fraud To ensure delivery, add capitalone@notification.capitalone.com to your address book. This email was sent to and contains information directly related to your account with us, other services to which you have subscribed, and/or any application you may have submitted. Capital One does not provide, endorse or guarantee any third-party product, service, information or recommendation listed above. The third parties listed are not affiliated with Capital One and are solely responsible for their products and services. All trademarks are the property of their respective owners. Please do not reply to this message, as this email inbox is not monitored. To contact us, visit www.capitalone.com/help-center/contact-us. Products and services are offered by Capital One, N.A. © 2024 Capital One. Capital One is a federally registered service mark.

 

---

What is Phishing?

Phishing is an attempt by an individual or group to solicit personal information from unsuspecting users by employing social engineering techniques. Phishing emails are crafted to appear as if they have been sent from a legitimate organization or known individual. These emails often attempt to entice users to click on a link that will take the user to a fraudulent website that appears legitimate. The user then may be asked to provide personal information such as account usernames and passwords that can further expose them to future compromises. Additionally, these fraudulent websites may contain malicious code.

Tips

• Don't open unknown or suspicious attachments or click links l
  
• Hover over all embedded link URLs
  
• If the the email contains a QR code, verify the source by checking associated links, email addresses, and phone numbers before scanning

Learn More About Phishing

The following documents and websites can help you learn more about phishing and how to protect yourself against phishing attacks.

• Avoiding Social Engineering and Phishing Attacks
• Protecting Your Privacy
• Understanding Web Site Certificates
• Anti-Phishing Working Group (APWG)
• Federal Trade Commission, Identity Theft
• Recognizing and Avoiding Email Scams

Methods of Reporting Phishing Email to US-CERT

• In Outlook Express, you can create a new message and drag and drop the phishing email into the new message. Address the message to phishing-report@us-cert.gov  and send it.
• In Outlook Express you can also open the email message^* and select File > Properties > Details. The email headers will appear. You can copy these as you normally copy text and include it in a new message tophishing-report@us-cert.gov .
• If you cannot forward the email message, at a minimum, please send the URL of the phishing website.
  

* If the suspicious mail in question includes a file attachment, it is safer to simply highlight the message and forward it. Some configurations, especially in Windows environments, may allow the execution of arbitrary code upon opening and viewing a malicious email message.

For more information about phishing, see this page.

---

Recommendations- What to do:

• Only open email or IM attachments that come from a trusted source and that are expected
• Use an anti-virus/anti-spam package (we recommend Norton 360 or Norton Internet Security scan all attachments prior to opening. Click here to see Norton 360 prices, reviews, ordering, etc. .
• Delete the messages without opening any attachments
• Do not click on links in emails that come from people you do not know and trust, even if it looks like it comes from a company you know.
• Keep your anti-virus software up to date
• Keep your operating system up to date with current security patches. Click here for an article that describes how to do this.

And please let us know about any suspicious calls or emails you receive.  We look for patterns so that we can alert the authorities and victims to new scams, before it is too late!

 

 

---

 

For a comprehensive list of national and international agencies to report scams, see this page.