Don’t Be Reeled in by this ‘DHL’ Phishing Scam!
- Replies 20
The internet is an amazing thing. It’s allowed us to work, play, communicate and connect in ways we never thought possible. From online grocery shopping to video conferencing with family and friends from around the world, it's definitely made life a lot easier.
But as we all know, the world wide web is not always a safe place to be. People with malicious intent are always finding ways to use technology to scam others out of their money.
Recently, email users have been warned to be wary of a new email phishing scam that’s going around, pretending to come from a popular shipping service: DHL.
The faux-DHL email prompts users to check the status of an impending delivery. They originate from a seemingly official-looking sender address called ExpressDHL and hit your inbox with the heading: 'MyDHL+(New Package Notification)'.
Clicking on the provided link redirects you to what appears to be a DHL login page, yet its sole purpose is to plunder unsuspecting users' credentials like their usernames and passwords.
MailGuard comments, 'In a predictable tactic, common to many phishing scams, the page presents an error after the first login attempt, telling users that their “email or password is incorrect” and prompting them to try again.'
'After completing the second attempt, users are redirected to a legitimate DHL webpage.'
But here’s the catch. The seemingly innocuous message is riddled with grammatical errors. Another red flag is it was actually sent from a compromised account belonging to a technology provider in the Netherlands rather than the genuine DHL headquarters. Crafty indeed!
MailGuard wisely cautions recipients of this email to 'delete it immediately without clicking on any links'. Sensible advice, as sharing your personal details can pave the way for a whirlwind of criminal activity that could potentially bring a financial storm down on you or your business.
The email security specialists offer some great tips to spot these pesky phishing emails. Keep an eye out for emails that inexplicably neglect to address you by name or are written in broken English. And remember: if you receive a random email from a company you weren’t expecting, that’s another sign it could be bogus.
Think of it like receiving an unsolicited letter in the mail from an unknown person. You ought to treat such things with a healthy dose of scepticism.
A striking sum of $3.1 billion was lost to scams in 2022, according to Scamwatch, skyrocketing by 80 per cent compared to the total losses recorded in 2021. Unnerving, isn’t it?
Dig more into these scams, and stay on guard by visiting trusted sites such as our Scam Watch forum, the ACCC’s Scamwatch and the Australian Cyber Security Centre. After all, forewarned is forearmed.
Remember, when it comes to the internet and your information: caution is your best ally. No parcel tracking is worth your financial security. Happy and safe browsing!
But as we all know, the world wide web is not always a safe place to be. People with malicious intent are always finding ways to use technology to scam others out of their money.
Recently, email users have been warned to be wary of a new email phishing scam that’s going around, pretending to come from a popular shipping service: DHL.
The faux-DHL email prompts users to check the status of an impending delivery. They originate from a seemingly official-looking sender address called ExpressDHL and hit your inbox with the heading: 'MyDHL+(New Package Notification)'.
Clicking on the provided link redirects you to what appears to be a DHL login page, yet its sole purpose is to plunder unsuspecting users' credentials like their usernames and passwords.
MailGuard comments, 'In a predictable tactic, common to many phishing scams, the page presents an error after the first login attempt, telling users that their “email or password is incorrect” and prompting them to try again.'
'After completing the second attempt, users are redirected to a legitimate DHL webpage.'
But here’s the catch. The seemingly innocuous message is riddled with grammatical errors. Another red flag is it was actually sent from a compromised account belonging to a technology provider in the Netherlands rather than the genuine DHL headquarters. Crafty indeed!
MailGuard wisely cautions recipients of this email to 'delete it immediately without clicking on any links'. Sensible advice, as sharing your personal details can pave the way for a whirlwind of criminal activity that could potentially bring a financial storm down on you or your business.
The email security specialists offer some great tips to spot these pesky phishing emails. Keep an eye out for emails that inexplicably neglect to address you by name or are written in broken English. And remember: if you receive a random email from a company you weren’t expecting, that’s another sign it could be bogus.
Think of it like receiving an unsolicited letter in the mail from an unknown person. You ought to treat such things with a healthy dose of scepticism.
A striking sum of $3.1 billion was lost to scams in 2022, according to Scamwatch, skyrocketing by 80 per cent compared to the total losses recorded in 2021. Unnerving, isn’t it?
Key Takeaways
- Aussies have been warned about a new email phishing scam purporting to be from shipping company DHL.
- The scam attempts to harvest user credentials by directing the recipient to a fake DHL login page.
- MailGuard identified the email sent from a compromised account and urged users to delete the email immediately without clicking any links.
- Australians lost $3.1 billion to scams in 2022, according to Scamwatch, highlighting the severity of the issue.
Dig more into these scams, and stay on guard by visiting trusted sites such as our Scam Watch forum, the ACCC’s Scamwatch and the Australian Cyber Security Centre. After all, forewarned is forearmed.
Remember, when it comes to the internet and your information: caution is your best ally. No parcel tracking is worth your financial security. Happy and safe browsing!