Got a phony invoice claiming to be an invoice from Automobile Atlanta for $825.25. Looks like Mia Dejonckheene has been hacked. Real culprit is <smumoz@darsalud.com.ve>. Claims to be an eInvoice. DO NOT click on it.
This is Jason. I take care of the online operations at Auto Atlanta, George is still in Europe.
We've seen a few reports of people receiving emails showing Mia's name as the sender, but the "from" addresses we've seen are half-hearted attempts at spoofing her real email as mia@autoatlanta.comOtherName@gmail.com or similar. They're clearly not coming from her real email account, but as a precautionary measure we've logged and analyzed all activity on every system she uses and have engaged our email service provider to ensure none of the emails are coming from her account. We'll continue to monitor all of our systems for any suspicious activity, but for now it seems apparent this is an entirely external issue.
As with all emails, it's best to be suspicious of any email that asks you to click a link. This is especially true if the email is unexpected, even if it's from a familiar person or company. For example, a late payment notification or an invoice from a company that's on a different day than your usual bill or not in a format you'd expect to see. Here are a few common signs of phishing emails:
It's entirely unexpected, such as a bill from a company that does not typically email you a bill.
The email has some sense of urgency, such as wildly inflated past due notices or threats of account termination.
The FROM email address is incorrect, even if the name is correct, such as "Microsoft <support@macrossaft.com>"
There are curious grammar issues, typos, or use of uncommon phrasing in the email, such as "It is high important you to pay before account termination!"
If you get an email that looks to be from your bank or other company familiar to you, simply log into your bank yourself through their website or app rather than clicking a link in the email. Any "urgent" account notification in the email would likely be shown to you when you log in manually as well. If for any reason you need to click a link in the email, hover your mouse over the link and make sure what it's showing in the popup toolbar is the site you expect to see. It's very easy to show www.bank.com in the email, but hovering your mouse over the link may reveal that it's taking you to an entirely different site. Even after clicking the link, check the URL shown at the top of the browser to make sure it's the right site.
It's free to send email and incredibly easy to spoof everything about them, so there will always be people that will try to get the low hanging fruit. For every 1,000 emails sent they're guaranteed to have at least one person that didn't pay attention, was in too much of a hurry, or simply didn't know how easily even the best looking and most authoritative email could be faked. Be suspicious, take your time, and never click a link in an email unless you absolutely must.
Any idea about the 've' in the culprit address? Just curious.
I agree with Jason above, we even get some internally at my company and we are a pretty small company. A co-worker has gotten emails from "me", but they are all usually poorly phrased requests to pay a late invoice or some such. They just put my email and name at the bottom of it all and it shows up as from me when people get it, but if you look at the actual email address it's usually from some foreign domain.
Or perhaps a previous unhappy worldwide customer,sorry to say but there has been a few in the past...karma moves on...just saying .
Well written Jason... Unfortunately scammers are everywhere. See several of these a week.
Powered by Invision Power Board (http://www.invisionboard.com)
© Invision Power Services (http://www.invisionpower.com)