Could this be the most perilous phishing scheme yet?

Imagine you’re going about your usual routine, sifting through your emails, when suddenly you receive a message from a company you rely on. You might think, “Perfect! This is safe to open.” But wait just a moment… this email isn’t what it appears to be.

It’s part of yet another scheme devised by cybercriminals to deceive you into clicking on malicious links or divulging sensitive information. This latest one is dubbed “SubdoMailing,” and it’s just as treacherous as it sounds.

What’s the scoop?

Similar to typical phishing attacks, cybercriminals impersonate trusted brands. However, here’s the twist: These cybercriminals scour the web for subdomains of reputable companies. You know, those additional parts in a web address that precede the main domain? Like experience.trustedbrand.com. That ‘experience’ part is the subdomain.

They identify a subdomain that the brand no longer uses, but which still directs to an external domain that’s no longer registered. Then, they purchase the domain and set up the fraudulent website.

So, you might think you’re clicking on experience.trustedbrand.com… but unbeknownst to you, it automatically redirects to scamwebsite.com.

These criminals are dispatching five million emails each day, targeting individuals in businesses just like yours. And since these emails appear to come from a legitimate source, they often evade routine security checks and end up in your inbox.

Here’s our guidance to ensure your safety and the security of your data:

  • Exercise caution with any emails that seem even remotely suspicious. If something seems off, it probably is.
  • Before clicking on any links or downloading attachments, take a moment to authenticate the sender. Watch out for warning signs like spelling errors or unusual email addresses.
  • Ensure your employees are well-versed in the latest phishing tactics and are capable of recognising a scam. A little knowledge can go a long way in safeguarding your company.
  • Consider investing in high-quality security software to ward off cybercriminals. It might seem like an additional expense, but trust us, it’s worth it.

As always, if you require assistance with this or any other aspect of your email security, don’t hesitate to reach out.

How can we help you?

Just give us a call  ‣  031 818 9060