Email users are being urged to watch out for a new wave of dangerous messages that could leave their most personal details in the hands of hackers. With Christmas just around the corner – and the Black Friday sales recently coming to a close – millions of us have been online shopping. With so much being ordered via the web, cyber thieves are now trying to cash in with messages that claim to be from well-known courier firms suggesting that they have a parcel that needs to be delivered.
One such message has recently caught the eye of the security team at Avanan who say they have spotted an email claiming to be from DHL. The email, which has been pushed out globally, suggests that the firm is struggling to deliver a parcel to the recipient of the message due to an issue with their address.
A link is then included which asks the user to fill in a form with the correct details. Despite the email featuring official branding and appearing to have come from the company, this message has nothing to do with DHL and is simply a way for cyber crooks to target unsuspecting users at a time of year when millions of parcels are out for delivery.
Explaining more, Avanan said: “In this attack, scammers are using brand impersonation. By showing a page that looks like it comes from a trusted brand, they’re hoping to trick end-users into clicking on a link. That link, however, is a classic credential harvesting link, looking to steal data and other information. ”
Of course, like many scam emails, there are some tail tale signs that should make you think twice before believing it. Firstly, the message doesn’t contain a specific name, such as Mrs Smith, with it simply starting with the word “Hello”.
