It seems one of our kindly friends in Russia has blown some fuses.
Apart from conducting multiple phishing attacks targeted US banks, he just configured a trojan-based phishing attack on a the Russian subsidiary of Citibank:

Why is that so crazy? Hey because he lives in Russia. In the middle of its phishing spree he forgot the major rule of cybercrime business: don't target banks in your jurisdiction.
In the past we've seen some Romanians targeting Romanian banks (innovation likely to end in a dark prison cell). Until now we felt Russian criminals were a bit more mature.
This is a disappointing day for phishing fighters.

Note: the guy also launched the very first XML phishing page on the Ukrainian subsidiay of PrivatBank. All-time award for innovation? Unfortunatly, this is rather a misconception.
disappointing...