will the real slim shady please stand up?
Let’s talk about phishing emails and impersonation.
Hackers often use impersonation to get you to open their phishy emails. If the email is from someone you know you’re more likely to open it. For many years, Microsoft was the most impersonated company in phishing emails. It makes sense, I mean, what big business doesn’t use Microsoft?
But there’s a new winner, and it’s DHL.
In Q4 of 2021, DHL was the most impersonated company in phishing emails, thus dethroning Microsoft? Why the spike? Bad guys follow the money. Q4 means shopping, and with spikes in online shopping again last year, it only made sense that even more cherished Christmas presented would be shipped.
How does it work?
- The attacker used a from name of ‘DHL Customer Support’
- The Subject contains ‘DHL Shipment Confirmation…’
- It works, because who doesn’t want to know where their package is?!
Beware, DHL wasn’t the only shipping server that’s impersonated. FedEx entered the top 10 list as well.
How can your cybersecurity awareness program benefit from this information?
- Ensure employees know what shipping services your company uses to send packages
- Make employees aware of these scams
- Share sample scams and tips to employee know what to look for.
If you want to learn even more about shipping scams, check out my recent Instagram Post.
Have you seen a shipping scam? Drop a comment below.