[ale] New style of email attack?

Bob Toxen transam at verysecurelinux.com
Tue May 3 22:50:28 EDT 2022


Methinks that somebody's email or computer was hackd.  This sounds
different from "This is Bank of America, click here to login and change
your password."  The latter, of course, for frequently used companies
assumes that a certain percentage will hit current customers.

For a Canadian campground clearly somebody was hacked to connect it
to you.

Bob

On Tue, May 03, 2022 at 08:52:27PM -0400, Neal Rhodes via Ale wrote:
> We've seen two instances of what might look like a new flavor of phishing
> attack.
> 
> My wife got an email ostensibly from a local HVAC contractor we have used in
> the past, asking her to click on a link to view an RFP and see if she wants
> to work with them on it.  She knew enough to smell a rat and delete it.
> 
> And today, I got an email from a campground in Canada where I made a
> reservation, asking for me to buy an Amazon Gift card for their family
> 'cause they had a heart attack, and they will pay me back.   In that case,
> the reply address was XXXXXXX at outlook.com, when in fact the real emails from
> the park were sent from XXXXXXX at somethingsomething.ca.
> 
> It's like some attack is floating around which just harvests combinations of
> To/From email addresses, and they blast out various attempts to fool people.
> 
> I've only seen a couple like that.  Do I just not get out much?
> 
> Is this ringing a bell?
> 
> Neal
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> https://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo


More information about the Ale mailing list