Phishing Emails

A fantastic example of a Phishing email that has got through our various layers of filtering at the business.

After a millisecond of excitement thinking that I have had something back from the government, realisation kicks in (who gets money back from the Government ?) and red flags start to appear.

Firstly look at the Subject line. They are making it great to look at and inviting you in by using words such as Automatic Payment, Payment Return. Secondly look at the date format, a few months and dates you could get away with a US formatted date, but not today.

Secondly, the from address. Its always worth a glance at the header information here, you can see the real email address being from telenet.be – not a gov.uk site. This should raise suspicions that its not a valid government email address.

Thirdly, I never pay on the credit card, and not entirely sure HMRC would allow it, any money owing.

Above we hover over the link to the alleged payment return Gateway Service (these guys know about the term Gateway with the UK Government), shows us going to some weird domain, another red flag…..

We advise customers to never click on any link in an email unless you are 100% sure its legitimate. If in any doubt, completely separately log into the website by manually typing out the domain name. For example, if you get an email from NatWest saying click here to log in, but you arent sure, just open a web browser and independently sign in

We went a step further, in the interest of education, to have a look at what this site was looking for. We did this in a sandbox environment, meaning if anything happened, Ransomware, Virus or alike, its all contained in a self contained environment.

First issue we notice, is that its not, again, a gov.uk address. This should ring alarm bells.

The actual phishing site looks good. All helpful, educating the phishee (if thats a word) about what they will need to proceed.

Google Chrome doing a great job of telling us its suspicious, lets go one more step 🙂

So at the end of all that, its asking for quite a lot of personal information, and in the next few screens its asking for bank account information, credit card info, including the CVV code.

Past Blogs

Outlook flags your important email

Outlook will flag your most important emails

Can your staff access too much?

Half of staff have too much access to data

Windows 10 hit ends of life in just over 2 weeks

Free Support for Windows 10 Ends in Just Two Weeks – Here’s What Your Business Needs to Know

Free Support for Windows 10 Ends in Just Two Weeks – Here’s What Your Business Needs to Know What would it take to bring your business to a halt?It’s not always a major...
Better passkey integration in windows

Passkeys will be better integrated in Windows

New hire? New security risk

New member of staff… new cyber security risk?

   When you bring someone new into the business, your first thought is usually about getting them set up to succeed. A laptop, email account, access to the right...
Microsoft to Introduce a Unified Naming System for Hackers

Microsoft to Introduce a Unified Naming System for Hackers

Have you ever tried to follow a crime documentary where the main suspect keeps changing names? It’s confusing—and that’s exactly what’s been happening in the world of...
Is your antivirus genuine?

Warning: That Antivirus Website Might Be a Scam

Warning: That Antivirus Website Might Be a Scam When you’re doing your best to protect your business, downloading antivirus software seems like the sensible thing to...
Notepad's Quiet

New Formatting Tools Coming to Notepad: What It Means for Your Business

New Formatting Tools Coming to Notepad: What It Means for Your Business When was the last time you wished Notepad could do a bit more—like make text bold or add a...
Still using Windows 10 ?

Still using Windows 10? Here’s why you need to act now

Imagine if one of your essential business tools suddenly became unsafe overnight. That’s exactly the risk many businesses are facing with Windows 10. Time is running...
Strengthen Your Password

Your Business is Only as Secure as Your Weakest Password

Let’s be honest—do you know for a fact that none of your team members are still using passwords like “12345” or “password123”? If you’re not 100% sure, you’re not...