With "Bank of America Warning : Error Statement" in the subject line, the vaguely credible HTML email states that the targets' "Bank of America account showed unusual activities this morning."
"What to do next? Sign in now to verify your logon details," urges the email.
Unfortunately, all the links included in the email take the recipients to a spoofed Bank of America website, where they are asked to sign in by entering their banking login details and are prompted to share additional personal and financial information in order to "verify" their accounts.
"The care and detail with which the scam email has been created makes this phishing scam attempt a little more sophisticated than some other such attacks and may fool at least a few bank customers into supplying the requested details," Hoax-Slayer points out.
Users are advised to ignore the message and to always log in to their bank's website by entering its web address into the browser's address bar instead of following links included in email.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.