Here are a few real-life attacks we’ve seen recently, and how we knew they were phishing: The attack: An employee in the payroll department received an email from “Mike,” another employee, saying he wanted to change his direct deposit information. The giveaway: While the phishing email had the full name of the employee correct, the “from” email was wrong, and the person signed the email “Michael” when the actual employee only goes by “Mike.” The attack: An employee received an email that appeared to be from his boss asking, “Are you available for a quick task?” We’ve seen these before, and because they do not ask for or refer to any sensitive or financial information, people tend to engage with the sender, which then leads to the scam. The giveaway: When the email recipient responded, he received strangely worded instructions to obtain 10 $100 iTunes gift cards. The scammer asked the employee to scratch off the silver portion to reveal the PINs and send a picture of all the codes. If the red flags weren’t up before, that sent them all the way up the pole. However, when the employee asked what client they were for, the scammer provided the name of an actual client of the company.
0 Comments
Leave a Reply. |
The Durango Chamber of Commerce
The Durango Chamber of Commerce is a membership-based organization that promotes and supports the local business community through communication, advocacy, education, leadership and financial viability. Archives
April 2023
Categories |
© COPYRIGHT Durango Chamber of Commerce
2301 Main Ave. | P.O. Box 2587 | Durango. CO 81302 Toll-Free: 888-414-0835 | Phone: 970-247-0312 | Fax: 970-385-7884 |