Is this the most dangerous phishing scam out there?

Imagine this: You’re going about your day, checking your emails, when suddenly you receive a message from a company you trust.

You might think, Great! This is safe to open. But wait a minute – this email is not what it appears to be. It’s actually part of a new scam called SubdoMailing, created by cyber criminals to deceive you into clicking on harmful links or sharing sensitive information.

How does it work? Just like typical phishing attacks, cyber criminals impersonate trusted brands. However, in this case, they search the internet for subdomains of reputable companies – those extra parts in web addresses before the main domain. For example, experience.trustedbrand.com – where experience is the subdomain. They locate an unused subdomain that still directs to an external domain no longer registered. They then purchase that domain and create a fraudulent website. So when you click on experience.trustedbrand.com, you unknowingly get redirected to scamwebsite.com.

These criminals are sending five million emails daily targeting businesses like yours. Since these emails appear to be from legitimate sources, they often bypass standard security checks and land in your inbox unnoticed.

To protect yourself and your data:

Be cautious of any suspicious-looking emails; if something seems off, it probably is.
Before clicking on links or downloading attachments, double-check the sender’s details for red flags like spelling errors or unusual email addresses.

Ensure your employees are aware of the latest phishing tactics and can identify scams effectively – knowledge is key in safeguarding your company.

Consider investing in high-quality security software as an essential defence against cyber threats; while it may seem like an added cost, it’s truly invaluable for protection.

If you require assistance with email security or any related matters, feel free to reach out for support.