Recent Phishing Attempts: Avoid Being a Victim

| TMO Quick Tip

Lately, a bunch of folks have been targeted by phishing emails that look pretty darned convincing. The messages tell you that you’ve got a document of some type waiting to be viewed, and when you click the link, you’re taken to a website that asks you to log in with your email credentials. Do so, and your account information is compromised. Pretty soon, your Gmail account (or whatever) will start sending out its own versions of those phishing emails to your contacts. Fun!

There are many variants of this scam, and some are more real-looking than others. Here’s one I received recently:

The page this link directs to looks official enough that it’d fool a lot of people:

That’s some smart evildoing right there. Not only can it capture Gmail login info, but if you don’t happen to have a Gmail account, you can conveniently give the bad guys the passwords to your other accounts, too! And check it out—if you click on “Other emails,” there’s yet another way to give them your data!

How very awesome.

So how do you avoid this scam? The easiest way to do so is just to never click on a link in an unexpected email, especially if it seems suspicious. Note that in the message I received above, I wasn’t addressed by name, and the grammar wasn’t great. Those are big red flags. And if the site you see when you click a link looks strange or poorly designed, be wary. 

Another good habit to get into is hovering over links in Apple Mail before you click them—that, at least, will tell you where they go.

You can't always depend on that, though, as in a recent phishing attempt, scammers hosted their files on Google Drive, so the URL itself looked legitimate. 

Another prevention tip is to contact the person who sent you a link before you click it if you’re not expecting anything from him or her. And depending on what email service you’re using, you could set up two-step verification so that it’s way less likely that someone could break into your account. Here’s how to do it in Gmail, for example, and here are instructions for configuring it for your Apple ID.

Now, what do you do if you’ve already fallen for one of these scams, and your contacts start flooding you with complaints about the messages your account is sending? First of all, change the password for the account in question as soon as possible. Make sure it’s a complicated password, and don’t pick anything related to what you had before the trouble started (so avoid the password “kitty1234” if you were using “kitty123”). Then, unfortunately, if you’re using that same email/password combo in other places, you’re gonna need to change those, too. And it might be worth giving some thought to any confidential information that you've sent from that email account—have you ever emailed someone your credit card number? Your bank account info? You see how much of a hassle this can be.

Here's one final piece of advice: If you get a suspicious email, take a moment to text or call the friend whose account may have been compromised. Believe it or not, I saw a recent scammer who set up filters on the target's account to block messages informing him of the breach—so emails with words like "hacked" were getting sent straight to his trash. It's a scary world out there, dear readers, so tread carefully, and be suspicious of email links you run across.

Sign Up for the Newsletter

Join the TMO Express Daily Newsletter to get the latest Mac headlines in your e-mail every weekday.

Comments

Lee Dronick

Also take a look at the raw headers and source of the email, if you can. If it is phishing you will probably see links to someplace other than the URL of your service and routing that looks suspicous.

skipaq

I got a phishing email directing me to Gmail to log in. I simply trashed it. That has been my practice from the beginning. Another practice since opening a Gmail account is I don’t store any of contacts on their server. The only time I log into my Gmail account on the web is to occasionally delete everything stored there. This account simply serves a temporary purpose to use when signing up somewhere else or validating some contact that I may not keep.

aardman

I got an email purportedly from Gmail informing me that someone tried to log into my Gmail account from another continent then directed me to click on an enclosed link that brought me to a change Gmail password page.  I instead logged into Google and rooted around for a history of security alerts for my account and lo and behold the incident described did occur and the email purportedly from Gmail actually was from them.  Still, it is so tricky these days.

If you get a security notification from a website you use, never click on a link in that email.  Instead login directly into your account and verify if the email is genuine and implement the remedies there.

billglewis

Melissa, you’r the best ever!

:{}

Melissa Holt

Thanks for the comments, everybody!

And billglewis—you’ve gotta stop. Imma get a big head. grin

C_M

Another great way to protect yourself against phishing mails is using a password manager like 1Password. This app doesn’t only store the login name and the password but also the site URL they belong to so that it automatically fills in the credentials when you go to that site. However, if you click on a phishing mail it will take you to a different URL and 1Password will NOT automatically enter your credentials - and the you know that something is foul.

MACMAD08

Good heads up C_M. It is one of the many advantages of 1Password. It truly is one “can’t live without” app for many reasons.

Log-in to comment