(CMR) Security Centre has sent out an email this afternoon warning people of a phishing email that was sent via one of their staff's email addresses.
The original email purported to be attaching an invoice from Security Centre and was sent about three hours before a follow-up email indicating that it was a phishing email. Natalie Lavis, the company's Corporate Compliance and Correctional Services Manager stated in her email that their colleague's email:
“has been subject to a phishing attack and has had had her account compromised.”
The email continues by warning IF you access your account and changed your password to immediately notify your IT team. This is a common type of email which aims to capture your account details once you look into their fraudulent website.
Phishing is a type of online scam where criminals send an email that appears to be from a legitimate company and ask you to provide sensitive information. This is usually done by including a link that will appear to take you to the company’s website to fill in your information – but the website is a clever fake and the information you provide goes straight to the crooks behind the scam.
The term ’phishing’ is a spin on the word fishing, because criminals are dangling a fake ’lure’ (the email that looks legitimate, as well as the website that looks legitimate) hoping users will ’bite’ by providing the information the criminals have requested – such as credit card numbers, account numbers, passwords, usernames, and more.