Joining the league of local banks victim of phishing attacks, Bank One makes an entry. I received an email appearing from email@example.com; naturally the email didn't originate from the bank's servers.
The email contains a link on the text
AccountStament.df which would open to a fake page appearing like Bank One's website. At the time of writing the web host has suspended that account, therefore the page isn't available.
Nevertheless, phishing attackers would continue sending these emails while hosting pages on other compromised servers.
An Indonesian university website was compromised and used to send the phishing emails.