by Morinville News Staff
Be careful of that email announcing your package has arrived. RCMP are warning residents of a phishing” email scam currently making the rounds of inboxes. This email scam involves a delivery service which could include FedEx, Canada Post, DHL and DPD.
Police say the email subject field will include information, including shipping notifications, delivery status, shipping confirmation or delivery information.
Scammers have an easier time hooking victims by using popular shipping brands to get people’s attention.
The email scam uses a variety of hooks, including Unsuccessful delivery, parcel pick up, wrong address, no recipient or at delivery address. These phrases are usually related to the delivery since the companies in question are in the service sector. Police say the email may look legitimate as fraudsters design similar logos of a company as it is an immediate identifying mark.
The email will guide you to click on a link whether it is to log on to your account, update personal information, download a receipt or view shipping documents. Once you click on the link it may redirect to another website to add/update personal information (bank details, user information and passwords).
This data immediately falls into the fraudsters hands. Otherwise clicking on the link may download malware on your computer. Malware (malicious software) allows fraudsters to have access to your computer and can then steal usernames, passwords and have complete control over your computer.
Police offer these tips:
Don’t be fooled by official logos. One of the most common ways that phishing scams will try to fool you is by using official company logos or insignias. In some cases, the email address or web address may look close to the company’s name but is slightly altered or off by a letter.
Watch out for poor spelling and grammar. An easy way to spot a phishing scam right away is by reading the email thoroughly, watching for bad spelling and grammar. Phishing emails are notorious for obvious spelling mistakes.
Check links before you click on them: Often attackers will use a legitimate web address in the hyperlinked text of the email, but once you click on the link it takes you to a malicious website. If you hover your mouse over the link – without clicking on it – a small yellow box will appear showing the actual web address the link will take you to. If the link doesn’t match the hyperlinked text, it’s likely malicious.