Phishing Emails

A fantastic example of a Phishing email that has got through our various layers of filtering at the business.

After a millisecond of excitement thinking that I have had something back from the government, realisation kicks in (who gets money back from the Government ?) and red flags start to appear.

Firstly look at the Subject line. They are making it great to look at and inviting you in by using words such as Automatic Payment, Payment Return. Secondly look at the date format, a few months and dates you could get away with a US formatted date, but not today.

Secondly, the from address. Its always worth a glance at the header information here, you can see the real email address being from telenet.be – not a gov.uk site. This should raise suspicions that its not a valid government email address.

Thirdly, I never pay on the credit card, and not entirely sure HMRC would allow it, any money owing.

Above we hover over the link to the alleged payment return Gateway Service (these guys know about the term Gateway with the UK Government), shows us going to some weird domain, another red flag…..

We advise customers to never click on any link in an email unless you are 100% sure its legitimate. If in any doubt, completely separately log into the website by manually typing out the domain name. For example, if you get an email from NatWest saying click here to log in, but you arent sure, just open a web browser and independently sign in

We went a step further, in the interest of education, to have a look at what this site was looking for. We did this in a sandbox environment, meaning if anything happened, Ransomware, Virus or alike, its all contained in a self contained environment.

First issue we notice, is that its not, again, a gov.uk address. This should ring alarm bells.

The actual phishing site looks good. All helpful, educating the phishee (if thats a word) about what they will need to proceed.

Google Chrome doing a great job of telling us its suspicious, lets go one more step 🙂

So at the end of all that, its asking for quite a lot of personal information, and in the next few screens its asking for bank account information, credit card info, including the CVV code.

Past Blogs

This Small Change to Teams Will Make Your Meetings Run Smoother

If you’ve ever been in a Teams meeting where you’ve had to say, “next slide, please,” more times than you’d like, you’re not alone. For businesses that rely on online...
Cyber Essentials vs ISO27001

Cyber Essentials vs. ISO 27001: What’s the Difference and Which Is Right for You?

Cybersecurity certifications come in many shapes and sizes, but when it comes to choosing the right framework for your business, the decision often boils down to Cyber...
Overconfident employees: Your hidden cyber security threat?

Overconfident employees: Your hidden cyber security threat?

Your team are smart, right? They’d never fall for a scam email or click a suspicious link. At least, that’s what they think. Here’s why overconfidence could spell...

DMARC & DMARCBIS

What They Are, Why They Matter, and What Business Owners Need to Know If you’re a business owner, chances are you rely on email every day—whether it’s communicating...
Could automation save you from spreadsheet headaches?

Could automation save you from spreadsheet headaches?

Spreadsheets slow us down and are too easy to mess up. So, what if I told you there’s a better way to handle data in your business?

Did you notice Incognito mode’s improved privacy?

Did you notice Incognito mode’s improved privacy?

If your team use Google Chrome’s Incognito mode, you probably assume your browsing is private. But until Microsoft spotted this big flaw, your info could be shared...
Copilot could soon auto-open in Microsoft Edge

Copilot could soon auto-open in Microsoft Edge

Is Edge your business’s browser of choice? Microsoft’s thinking of automatically opening Copilot when you use it. It could boost productivity, but there are privacy...
How concerned should you be about cyber attacks?

How concerned should you be about cyber attacks?

You’ve probably heard a lot of talk about cyber attacks but how worried should you really be? Well, very, because cyber criminals are getting smarter. We have good news...
How to create secure passwords

How to create secure passwords

Weak passwords are one of the biggest security risks to your business. Why? Because cyber criminals are getting smarter than ever before. If they manage to crack just...
Beware these common ‘malvertising’ attacks

Beware these common ‘malvertising’ attacks

Ever clicked an online ad and wondered afterwards if it was a scam?… most of us have – and cyber criminals want us to keep doing it. Here’s what to look out for...