Thursday, June 7, 2018

Gmail Phishing Email - Critical Alert For Your Account

For the record, this is an Gmail phishing email attempt that is recently going around and is first one to appear in my inbox for 2018, it did get caught in SPAM folder.


From: Service fthmods@dingbro.com
Subject:  Critical alert for your account
Sent : Jan 06, 2018



Your account is listed as the recovery email for yourname@gmail.com.
Don't recognize this account? click here.

 Sign-in attempt was blocked for your  account
                                yourname@gmail.com


                                     Someone just used your password to try to sign in to your account. gmail.com blocked them, but you should check what happened.

                                      
CHECK ACTIVITY
You received this email to let you know about important changes to your profile and services.© 2018 gmail.com.,1600 Amphitheatre Parkway, Mountain View, CA 94043, USA


SPAM LINKS -> http://2aw.co.kr/wp/recountsr.html


Here's how the phishing site looks, very bizarre. http://2aw.co.kr/wp/recountsr.html gets redirected to proactivity.su. 




How to tell this is a Phishing email ?

  1. Check email address in full, if it's not from originating company then it's phishing.
  2. Hover over all links in email, if it's not from the amazon.ca site then forget it.

  3. The best way is to look at message source, see below.

How to examine Email Message Source ?

Now lets look at message source
  1. Outlook.com->Actions->View Message Source. 
  2. Gmail.com->More (down arrow to top right)->Show original.
Check for suspicious links, anything that does not originate from amazon.ca.


Report Phishing Email (not as Spam)

  1. Outlook.com->Junk (at Top)->Phishing Scam
  2. Gmail.com->More (downarrow to top right)->Report Phishing 

Report Phishing URLs at Google now 

If you have recievied this email take further action now by click these links

  1. https://www.google.com/safebrowsing/report_phish/

Report phishing at Microsoft and government agencies

  1. http://www.microsoft.com/security/online-privacy/phishing-faq.aspx

Report phishing emails to Apple 


Forward the email to abuse@icloud.com. This provides Apple's legal department and law enforcement with useful information to help prevent future phishing emails.

No comments:

Post a Comment