This scam looks like just another email message from your company’s IT department. It’s so mundane, it’s easy to click without thinking. But be sure to give this email a second look before you do.
How the Scam Works
You get an email that looks like a message from your company’s IT department. The version that hit BBB inboxes has the subject line “[name]@[company.com] update required” and appears to come from firstname.lastname@example.org. According to the message, your email has reached the storage limit, and “you will be blocked from sending and receiving messages.” The message instructs you to click a link to validate your account and add storage. In a clever move, the scammers even made the link look like your email address. But in the version BBB received, the link really points to a website with an overseas domain name.
Clicking the link takes you to a log in form that asks you to enter your email address and password. If you do so, you receive a message confirming that the extra storage was added and the problem is fixed. But don’t believe it! The form is a fraud. It’s really a way to steal your email password, which opens you up to identify theft.
How to Spot a Phishing Scam:
For More Information