Home Cyber Attack A New Phishing Scam States ‘Encrypted Message Received’ To Trick The Victim
Cyber AttackHacking NewsLatest Cyber Security News | Network Security HackingNews

A New Phishing Scam States ‘Encrypted Message Received’ To Trick The Victim

by Abeerah Hashim
written by Abeerah Hashim
Special Olympics New York phishing

Phishing scams are among the most diversified and dynamic cyber attacks that depict the creativity of scammers. Since most phishing scams are seemingly easy to detect, the perpetrators utilise ever changing tactics to trick users. Once again, a new phishing scam has surfaced online that lures users by generating an ‘encrypted message received’ alert.

‘Encrypted Message Received’ Phishing Trick

Reportedly, Bleeping Computer has spotted a new phishing campaign that tricks users by generating ‘encrypted message received’ alerts.

The scam seems carefully crafted to bluff most users as it appears like an email from the email server. The malicious email prompts the users about an ‘encrypted message’ received to them.

phishing email text

Source: BleepingComputer

When a user clicks on the ‘View Encrypted Email’ link, it then redirects the users to a fake OneDrive web page, further requiring the user to click on the ‘Open’ button.

phishing preview page

Source: BleepingComputer

Once clicked, the user then sees a fake OneDrive login page, where the user should supposedly enter the credentials.

fake OneDrive login page

Source: BleepingComputer

Once the user enters the ‘email login credentials’, he or she gets nothing. Whereas, the attackers seamlessly get the victim email credentials!

Protect Yourself From Email Phishing

Phishing attacks aren’t anything new. The bad actors love to leverage every potential opportunity to prey on innocent users, especially when it comes to hacking login credentials and financial details. With a little vigilance, users can easily protect themselves from falling prey to such phishing attacks.

For ready reference, here we quickly review the precautionary steps one must never forget.

  • Be very careful while opening emails from untrusted or unknown senders.
  • Double check the sender’s email address to confirm if the email belongs to an official account.
  • NEVER CLICK ON ANY LINKS OR ATTACHMENTS IN EMAILS FROM UNKNOWN SENDERS. Even if you doubt that the email belongs to your mail server, your bank, or your office, you can always contact the suspected source via other means to check the authenticity of the email.
  • Even if you click on the link, make sure not to enter your login credentials when required.
  • In case of attachments, never download any executable files, no matter how important they seem.

In short, the more you remain cautious, the more secure you will remain online.

Take your time to comment on this article.

Abeerah has been a passionate blogger for several years with a particular interest towards science and technology. She is crazy to know everything about the latest tech developments. Knowing and writing about cybersecurity, hacking, and spying has always enchanted her. When she is not writing, what else can be a better pastime than web surfing and staying updated about the tech world! Reach out to me at: [email protected]

You may also like

Xiid SealedTunnel: Unfazed by Yet Another Critical Firewall...

Personal Data Exposed in Massive Global Hack: Understanding...

Guardz Welcomes SentinelOne as Strategic Partner and Investor...

Invision Community Vulnerabilities Risk E-Commerce Websites

Microsoft April Patch Tuesday Fixes Dozens of RCE...

Match Systems publishes report on the consequences of...

Cypago Announces New Automation Support for AI Security...

LayerSlider WordPress Plugin Vulnerability Affected Thousands Of Websites

OWASP Disclosed Data Breach Affecting Old Members

Center Identity Launches Patented Passwordless Authentication for Businesses