Phishing Email - BMO Important Security Notice

For the record, the following BMO Important Security Notice phishing email has been recently circulating.
 

BMO Bank Of Montreal 

To

Recipients

Nov 15 at 2:19 AM

Dear Customer,

For your protection, BMO Bank Of Montreal automatically alerts customers when our security platform changes on our systems. We detected unusual activity on your BMO Bank Of Montreal account on 11-09-2016. For your protection, We need you to review your details immediately. 

Click on Sign On below to Start your Account Review. 
 

Sign On

Ensure you update your details to avoid account suspension. We Are sorry for any inconveniences. 

Sign on URL points rogue URL:
http://www1.bmo.bankofmontreal.findadecentqueue.pw/service/upgrade/=needed/onlinebnx/netbnx/NBmain/

The HTML of the email is

<html><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/></head><p><strong>Dear Customer,<br>
<br>
For your protection, BMO Bank Of Montreal automatically alerts customers when our security platform changes on our systems. We detected unusual activity on your BMO Bank Of Montreal account on 11-09-2016. For your protection, We need you to review your details immediately. <br><br>Click on Sign On below to Start your Acco=
unt Review. <br>
</strong></p>
<table id="x_yiv1078820824yui_3_16_0_1_1399663152274_48813" style="back=ground:no-repeat left top" width="100" cellspacing="0" cellpadding="0" border="0" bgcolor="#3583ae" height="15">
<tbody id="x_yiv1078820824yui_3_16_0_1_1399663152274_48812">
<tr id="x_yiv1078820824yui_3_16_0_1_1399663152274_48811" bgcolor="#3583">
<td id="x_yiv1078820824yui_3_16_0_1_1399663152274_48862" width="15" valign="middle" bgcolor="#3583ae" align="center"></td>
<td id="x_yiv1078820824yui_3_16_0_1_1399663152274_48810" width="96" valign="middle" bgcolor="#3583ae" align="center">
<a href="http://www1.bmo.bankofmontreal.findadecentqueue.pw/service/upgrade/needed/onlinebnx/netbnx/NBmain/" target="_blank" rel="noreferrer" sid="x_yiv1078820824yui_3_16_0_1_1399663152274_48814" style="text-decoration:none;color:#fff; font:bold 11px arial,sans-serif">Sign On</a></td>
</tr>
</tbody>
</table>
<strong><font id="x_yiv1078820824yui_3_16_0_1_1399663152274_19828" style="font-size:12px; color:#333333; line-height:18px" face="Verdana, sans-serif"><br>
Ensure you update your details to avoid account suspension. We Are sorry for any inconveniences. <marquee>
Thank you for choosing BMO Bank Of Montreal.</marquee></font></strong></td>
</tr>
</tbody>
</table>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</blockquote>
</div></div>
</div></div> <div style="display: none;"></div> </div>  <span class="PersonaPaneLauncher"><div ariatabindex="-1" class="_pe_d _pe_2=
2" aria-expanded="false" tabindex="0" aria-haspopup="false">  <div style="display:none;"></div></div></html>

How to tell this is a Phishing email ?

1. Check email address in full, if it's not from originating company then it's phishing.
2. Hover over all links in email, if it's not from the amazon.com site then forget it.
   
   
3. The best way is to look at message source, see below.

How to examine Email Message Source ?

Now lets look at message source

1. Outlook.com->Actions->View Message Source. 
2. Gmail.com->More (down arrow to top right)->Show original.

Check for suspicious links, anything that does not originate from apple.com.

Report Phishing Email (not as Spam)

1. Outlook.com->Junk (at Top)->Phishing Scam
2. Gmail.com->More (downarrow to top right)->Report Phishing 

Report Phishing URLs at Google now 

If you have recievied this email take further action now by click these links

1. https://www.google.com/safebrowsing/report_phish/

Report phishing at Microsoft and government agencies

1. http://www.microsoft.com/security/online-privacy/phishing-faq.aspx

Report phishing emails to Amazon 

Send the e-mail to stop-spoofing@amazon.com

Note: Sending this suspicious e-mail as an attachment is the best way for us to track it.