The email shown above is a new phishing attack detected by MailGuard.
The message sender has used forged American Express branding to try and convince the recipient that it’s a genuine Amex statement notification.
“Your statement is now ready to view,” the message states. “You must be registered for online services to access your paperless statement. Click here now...”
The links in the message are pointed to a phishing page that is set up to harvest the scam victim’s email login credentials.
This scam message is quite well designed, and would probably deceive a lot of recipients, there is one clear indication that it is a fake.
Although the “from” field shows “American_Express_Online_Services,” the actual display address is OnlineServices@mail.ziggo.nl
What is "phishing?"
Phishing is the practice of tricking email recipients into revealing personal information that criminals can exploit for gain.
A phishing attack message will typically include a link that will send the unwary victim to a fake login website. Once there, the user will be asked to enter username and password data which will be automatically captured by the phishing page.
Scammers use phishing pages to collect login credentials for email accounts, bank accounts, and a wide range of other online services.
Protect your business from fraud
Phishing attacks can be enormously costly and destructive and new scams are appearing every day. Don’t wait until it happens to your business; take action to protect your company, now.
For a few dollars per staff member per month, add MailGuard's predictive email security. You’ll significantly reduce the risk of malicious email entering your network.
Talk to an expert at MailGuard today about your company's cybersecurity needs: 1300 30 44 30
Stay up-to-date with new posts on the MailGuard Blog by subscribing to free updates. Click on the button below: