STOTW – Fake Notifications

An ongoing trend among cybercriminals is to blend social engineering with malware. This is accomplished via the use of fake notifications.

A good example is a spurious email message that appears to have been sent from a shipping company like FedEx or UPS claiming that an item you recently shipped cannot be delivered. You are urged to contact the company immediately, and an embedded link is provided for detailed information. However, clicking on the link results in being directed to a malicious Website where malware is waiting to be downloaded to the unsuspecting user.

To avoid an online disaster, never click on a link embedded in an email. If you have recently shipped something and need to check its status, go directly to the shipper’s Website to inquire.


Comments are closed.