The email asks the recipient to provide sensitive information such as their User ID, password, Customer Registration Number or PIN by providing a link leading to a legitimate-looking website, enabling thieves to gather the details for later fraudulent use.