I just got an email from what purports to be Allied Irish Banks p.l.c. , <info@aib.ie> , with a reply address of do-not-reply@aib.ie. with a subject of "Internet Banking Update" .
There is indeed a new look website that has been up for a few weeks, but asking to download a form and follow instructions raised alarm bells.
The attached form is an HTML page containing loads of image and script links back to the AIB website, but the critical line is the form submit which points at http://212.34.134.245/webmail/themes/tmp/index.php.
The Geo IP report on the ip address suggests it is a Madrid based computer.
The actual HTML form looks like this
If you put in rubbish values, the javascript throws a series of errors and the form also expects that all the security codes are filled in. This is of course because AIB requires the use of a 1 time only card for funds transfers.
All in all a pretty basic attempt a social engineering, but all the same it would probably get quite a few people.