(Image: heise online / bsc)
What all phishing emails have in common is that they have the same alleged invoice number; 33250304. The subject line is “Urgent payment reminder – invoice 44250304”. The address is not personal, but mentions the e-mail address.
The address is impersonal, but the domain is listed correctly, although the address is usually the info@ of the domain.
(Image: heise online / bsc)
Although the sender address has “Host Europe – Invoice – NoReply” as the display name, it refers to cryptic domains not associated with Host Europe. This also makes it possible to recognize the forgeries.
The link displayed leads to a phishing page that is not located on the address shown in the email, but on random domains that also have nothing to do with Host Europe. A small Host Europe logo is displayed above a form requesting credit card details. According to the LKA Lower Saxony, after entering the data, a message “3D secure loading of transactions” appears, but nothing else happens. This is either a mistake on the part of the perpetrators, or they are content with complete card details. It is not possible to predict whether the rather small and inconspicuous amount of just under 13 euros will be debited later or whether the data will be misused for online purchases.
Host Europe also warns against these phishing emails on the company’s website. Customers are asked to stop sending these emails, as there are already enough examples. The LKA Lower Saxony and Host Europe both warn that recipients should not follow the links contained in such phishing emails.
Hosting providers are repeatedly the focus of cyber criminals. In the middle of last year, fraudsters tried to rip off Ionos customers with phishing emails. The bait was a call for customers to change their mail client settings immediately in order to continue accessing their mailboxes. The current scam was particularly perfidious, as the outdated TLS 1.0 and 1.1 encryption protocols were deactivated by Ionos at the time and configuration adjustments may actually have been necessary.
(dmk)
Don’t miss any news – follow us on
Facebook,
LinkedIn or
Mastodon.
This article was originally published in
German.
It was translated with technical assistance and editorially reviewed before publication.
Source link : http://www.bing.com/news/apiclick.aspx?ref=FexRss&aid=&tid=67183bdc21824706aef90ca2e1ccf055&url=https%3A%2F%2Fwww.heise.de%2Fen%2Fnews%2FHost-Europe-and-LKA-Lower-Saxony-warn-of-phishing-wave-9980411.html&c=14561131893875902960&mkt=de-de
Author :
Publish date : 2024-10-14 05:21:00
Copyright for syndicated content belongs to the linked Source.
