Trickery during Halloween? Don't fall for this phishing attempt! - The Tek > Blogs
X

Blogs

23Oct

Trickery during Halloween? Don't fall for this phishing attempt!

Security | 0 Comments | | Return |

Have you received an email recently that started out with something like this?

 

“*****is your pass words. Lets get straight to the point. Neither anyone has compensated me to investigate about you. You don’t know me and you’re most likely thinking why you are getting this e-mail?”

 

The email than goes on to say that they have installed a virus on your computer while you were visiting a certain website and that they recorded you on your webcam. Scary right? The scary part is it seems all of this could be possible because the password they used in the email is a legitimate password that you have used before, or are currently using.

 

Please be aware that this is a massive phishing campaign. We’ve received dozens of questions from our clients about these emails and want to make everyone aware. This latest phishing attempt is designed to trick you into paying them via bitcoin.

 

DO NOT PAY THEM!!! Your computer has not been hacked, and there is no video of you via your webcam. This is a complete scam. The real question is how did they get your password in the first place??

 

According to Identity Theft Resource Center® (ITRC) and CyberScout®’s 2017 Data Breach Year End Review, there were roughly 1,579 reported breaches that compromised approximately 4 BILLION credentials last year alone. We all remember some of the most recent breaches including Facebook, Equiafax and even Whole Foods. Lists generated from these types of breaches is most likely where they received your password.

 

So what should you do with this email?

 

First, delete the email immediately and be sure to not click on or open any attachments. Email attachments can carry viruses or lead you to phony websites encouraging you to expose personal or sensitive data. For more information about Phishing emails and how to protect yourself AND your employees, check out our blog, Phishing: The SMB Plague.

 

Second, if the password is legit and still in use, you should change it right away! We also recommend that you begin to use a password manager as an added layer of protection going forward.  The average business user must keep track of 191 passwords. This can be overwhelming and result in lazy password management. There are a number of password management tools available, some better than others. We can help you identify the best tool for you and your business. If you need any help give us a call!

 

Finally, be sure to notify your company’s IT department or provider about the phishing email.  Your IT department or provider can quarantine the malicious email to prevent it from spreading across the system and to warn all employees of the attempt.


If you have any questions about this or other phishing emails, reach out to us for assistance. Be safe. www.thetek.com

 


 

Related

Zombie Armies on the Attack!

It could be a Hollywood movie title. “Attack of the Botnet”No a botnet is not a giant fa...

Read More >

7 Quick Cyber Security Tips for SMB Business Owners

From Fortune 500 companies to SMBs, everyone knows that technology changes constantly. Depending on ...

Read More >

The line between an MSP and MSSP is blurring

Managed service providers (MSPs) find themselves in a difficult position as their clients needs shif...

Read More >

Virtual Desktops Install for Cook Wealth Management

Brief DescriptionVirtual Desktops have been around for a few years but just recently the technology ...

Read More >

VOIP Installation for Synaptis

VOIP Solutions are some of the more popular cloud based hosted solutions on the market today and one...

Read More >

Developing and Calculating Your Backup Strategy

Did you know that 140,000 disk drives crash per week in the U.S.?  That’s a lot of lost data! Are y...

Read More >
You need to login in order to comment
Sign up for our Newsletter
Name