According to the security company Mimecast, the new phishing campaign uses emails who tell victims that they are entitled tax refund. In this way they try to convince the victims to give personal information, such as their name, address, telephone number and card details.
This fraud coincided with the submission of UK citizens' tax returns (they had until 31 January). The hackers probably took advantage of this situation and came up with this particular trap.
According to Mimecast, this process is inconvenient for many people, so because of the pressure they are very likely to fall into such a trap.
The positive aspect is that many of the phishing emails have some specifics
and some grammatical errors that should attract the attention of users and be more cautious about the specifics. The spelling mistakes, the names of government agencies that they don't sound quite right and others Issues in the form of email πρέπει να “χτυπήσουν προειδοποιητικό καμπανάκι”. Επίσης, τα phishing emails προέρχονται από non-official email addresses. These are some signs to look out for whenever we receive a message from an unknown source.However, some other emails are very carefully crafted, so they are very convincing.
“Δυστυχώς είτε πρόκειται για καλής είτε για κακής ποιότητας, οι phishing attacks είναι αποτελεσματικές και γι ‘αυτό συνεχίζουν να είναι δημοφιλείς”, δήλωσε ο Carl Wearn, επικεφαλής του ηλεκτρονικού εγκλήματος στη Mimecast.
“Οποιοδήποτε απροσδόκητο μήνυμα από έναν οργανισμό που ζητάει Details (like the ones mentioned above), is suspicious. It is almost certainly an attempt by fraudsters to steal the credentials you through a seemingly genuine site“, είπε ακόμα, ενώ πρόσθεσε ότι όταν οι χρήστες καλούνται να βάλουν τα credentials τους σε ένα site, πρέπει first search the site on the browser and not put them in what's embedded in the email.