Phishing Attempt
The other day I recieved an e-mail that looked like it had come from Google Analytics, but in fact, it was a phishing attempt. It was titled with the following in the subject;
'Update for Google Analytics ID'
and it contained the following text;
It had a link at the bottom urging me to sign in to my analytics account,
I smelled a rat as the e-mail address that it had been sent to was not the e-mail address that was associated with my Google Analytics account and also it was addressed as 'Dear Google Analytics user'.
I hovered my mouse over the link and I could see that the web address that it would take me to was not that of Google analytics, there was no mention of any details of me or my account with Google.
The email account that it had come to was 'info at my domain name'. I did not have this email account in existance and it never had been, so I looked at my e-mail server settings and noticed that there was an option to bounce email for non existant users and this was turned off, so I realised that with this turned off, any one could send an email to me at my domain name , all they would need to do is make an email address up, by putting any word in front of the '@' symbol, such as 'info' or 'admin' and then add 'mydomain name' and this could then be sent and forwarded to my regular e-mail address.
I have now turned on the 'bounce for non existance users' so now any made up address or old emails will now bounce back to the sender.
I urge everyone to be very vigilant and check e-mails carefully and also to check settings in your hosted e-mail accounts.
Recent Comments
15
Hi Simon! ... very informative blog post ... your sharing of this information is most helpful and much appreciated ... ⭐️
thanks kindly, cheerio ... 😊
Thanks for posting and giving us all a head's up! I haven't seen this email come across yet, but I'll definitely be aware!
Thanks! I should probably know this but what is the 'bounce for nonexistent users' and how do you turn it on?
When trying to send an email and the server gives a message that the address doesn't exist/ noexistent, that is considered a biunce.
You know some people change their email address all the time.
So, their old email is available on a list somewhere.
If the email address continues to bounce say about rhree times, it is suspended for a time.
I don't know nuch more that wha I have given here.
I hope this help you out.
Maxine
Thanks for sharing. I wonder how many other members have received this phishing attempt. And just think how many newbies would click on the link, not being as savvy or prudent as you.
Have a great holiday season.
Mark
Thank you for that infomation, it was very helpful. I would of never thought about being a scam. I take things so seriously I probably would of followed through.
Thank you for the education I will learn how to be more careful on the internet.
See more comments
Thanks for sharing Simon. I'll be on the lookout for this email.