The email claims that someone tried to access the user's account and failed, and that the bank suspended the account in order to protect the customer.
Unfortunately, the offered link takes the victims to a phishing site made to look like the bank's legitimate Internet banking login page, where they are asked to input their user ID, name, date of birth, security number, sort code, account number and ATM PIN code in order to prove their identity.
Once the information is submitted by pressing on the "Continue" button, it is immediately sent to the phishers and the victims are redirected to the bank's legitimate page.
"This type of phishing scam is a very common criminal tactic," points out Hoax-Slayer.
"Be wary of any email purporting to be from your bank that claims you must click a link or open an attachment in order to supply private personal and financial details. Always login to your bank website by entering the address in your web browser rather than by clicking a link in an email. "
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.