A New Type of Email Scam: Your Credentials Were Stolen

Recently, a new type of email scam has emerged, claiming that your credentials were stolen, and asking you to pay in Bitcoin to avoid your private information being leaked out.

Cellopoint finds that hackers often display the recipient’s account and password in this kind of email and claim that they have controlled the recipient’s information stored in the device being used by the recipient, with the intention to panic the recipient and defraud Bitcoins.

The analysis from Cellopoint Global Anti-Spam Center shows that the spoofed sender address is often the same as the recipient address and there is no display name in this type of phishing email. In addition, some recipients may receive different credential phishing emails. It is likely that the hackers only obtain the recipients’ email addresses, but not the real personal information as they claimed in these emails, and the passwords might be guessed by the hackers from other websites.

These phishing emails are often sent from hackers’ servers. We recommend that enterprise users create an SPF record into DNS and check if the source email server IP is approved to send emails for that domain or not, to prevent sender address forgery. For general users, we recommend changing the passwords regularly and not opening unfamiliar emails or attachments, or scanning emails before opening attachments.

If you need further information or if you would like to purchase Cellopoint service, please email: sales@cellopoint.com