Phishing and Scam Emails

When receiving a suspicious looking email, it's always a good idea to scurtinize the message before opening attachments, clicking links in the message, replying, or calling any phone numbers in the email. Phishing and scam emails designed to trick you into providing personal information or money to the sender. It's important to be aware of these types of emails and to know how to spot them, so we've put together some tips below to help you recognize them:

1. Check the sender's email address: Phishing and scam emails often come from fake email addresses that are designed to look like legitimate ones. Be sure to double-check the sender's email address to make sure it's legitimate.
2. Look for spelling and grammar mistakes: Many phishing and scam emails contain spelling and grammar mistakes that can be a dead giveaway that they're not legitimate.
3. Don't click on suspicious links: If an email contains a link that you're unsure about, don't click on it. Instead, hover over the link with your mouse to see where it leads. If it looks suspicious, delete the email immediately.
4. Don't give out personal information: Legitimate companies will never ask you to provide personal information via email. If an email asks for your personal information, it's likely a phishing or scam email.
5. Be wary of urgent or threatening language: Phishing and scam emails often use urgent or threatening language to try and scare you into taking action. If an email seems overly urgent or threatening, it's likely a scam.


Impersonation of a Trusted Third-Party:
It's important to be aware of a specific type of scam that has been circulating recently with our business clients. This scam involves an attacker gaining access to a trusted third-party's email account and using it to trick unsuspecting recipients into sending money to the scammer's bank account. The attacker will often impersonate the third-party and provide convincing details about future orders or services that require payment. To avoid falling victim to this scam, consider the following tips:

1. Verify the payment request: If you receive a payment request from a third-party, verify the request with the third-party using a known, legitimate phone number or email address. Do not use any contact information provided in the email itself, as it may be fake.
2. Double-check the bank account information: If you're asked to send money to a bank account, double-check the account information with the third-party using a known, legitimate phone number or email address. Scammers may provide fake account information to trick you into sending money to them instead of the legitimate third-party.
3. Be suspicious of last-minute changes: If a payment request seems to change at the last minute or requires urgent action, be suspicious. Scammers may try to use urgency to pressure you into sending money without verifying the request first.


Fake Invoices for Anti-Virus/Security Software:

Another common email-based scam is the fake invoice for anti-virus or security software. In this scam, the attacker will send an email posing as a legitimate anti-virus or security software vendor, claiming that your subscription is about to expire or that you need to renew your license. The email will often include a link to a fake website where you can enter your payment information. If you fall for this scam, not only will you lose money, but you may also be providing the attacker with sensitive financial information. To avoid falling victim to this scam, always verify the authenticity of any email claiming to be from an anti-virus or security software vendor. Check the email address and website URL for any suspicious elements, and never enter your payment information into a website that you haven't verified as legitimate.



Refund Scams:

Refund scams are another common type of email-based scam. In this scam, the attacker will send an email claiming to be from a well-known company or organization, such as a bank or government agency, and informing you that you are due a refund for an overpayment or billing error. The email will typically include a link to a fake website where you can enter your bank account information to receive the refund. If you fall for this scam, you will not only lose any money you enter into the fake website, but you may also be giving the attacker access to your bank account. To avoid falling victim to this scam, always verify the authenticity of any email claiming to be from a company or organization. Check the email address and website URL for any suspicious elements, and never enter your bank account information into a website that you haven't verified as legitimate.



Other Email Scams:

Other popular email scams that you should be aware of include phishing emails that impersonate well-known companies, such as Amazon or PayPal, and ask you to verify your account information or login credentials. There are also emails that claim to be from a friend or family member in distress, asking you to send money urgently. In addition, some attackers will send emails containing malware or viruses as attachments or links, claiming to be important documents or updates from a legitimate source. To avoid falling victim to any of these scams, always be skeptical of any email that asks for personal information or money, and verify the authenticity of any email that seems suspicious before taking any action.