Phishing, or the act of trying to deceive folks into thinking you are someone else in the hopes of scamming either user credentials, data, or money out of them, is occurring at an alarming rate. This is also becoming a delivery mechanism for ransomware.
Some popular ones over that last few weeks to be aware of:
DocuSign Document is waiting for you
UPS Quantum Shipment - About a recent attempt to deliver a package to your address.
accounting@<yourcompany>com - An invoice or statement from a vendor that was sent to your company's accounting department.
"You have a fax message from RingCentral"
USPS HoldMail - The email is letting you know that your mail is on hold.
E-mails from your social media contacts whom you don't usually get emails from.
AppleID - A supposed receipt from Apple about some recent purchases you didn't make.
LinkedIn Connection Requests from fake LinkedIn profiles posing as if they worked at the same company as you at some point. The tells are a low number of connections (under 50) and usually no profile photo. Best practice is if you don't know them, don't connect with them.
Remember, if you are not expecting an e-mail, don't open it, and always be suspicious of attachments or links. If you are not sure if it is legit or a scam, call the company from a verifiable phone number, don't click on anything in the e-mail.
Be secure!
No comments:
Post a Comment