All email users including those with Gmail, Outlook and Yahoo accounts need to stay on red alert when heading to check their inbox. It appears scammers are trying some convincing new tricks to get consumers to hand over personal details with security experts at Tend Micros warning "Don’t let that happen!"
The first, and most worrying attack, looks just like an official email from PayPal. The message warns that an unknown device has attempted to log into an account with the user then urged to check and change their details if the unsuccessful access attempt wasn't theirs.
Once clicked, a fake page then appears with users tricked into handing over all of their login data which can then be used to steal money.
"This week, scammers have been sending fake security alert emails to try to convince you that you need to update your account to block unknown PayPal login attempts," explained Trend Micro.
"The “Update My Account” button will take you to a fake PayPal login page. If you were to fall for the scam, scammers could steal your login credentials and thus access your PayPal account. Don’t let that happen!"
If you receive any PayPal messages in the next few days pay close attention to them and think twice before clicking on links.
The second scam doing the rounds is a simple invoice trick. The message states that a purchase has been made with a bill attached to the email. Although it might look harmless, the PDF is actually packed with malware which then sets about filling PCs with data-stealing viruses.
"scammers may send you random invoices to try to confuse you into clicking," Trend Micro added. "Such invoices can be malicious and end up stealing your PII (personally identifiable information) or infecting your device. Don’t click!"
Most of us are now well aware of the dangers of clicking on emails and downloading files however, it's also good to remind yourself of the dangers and think twice when going through your inbox.
Here are some top tips to stay safe.
• Double-check the sender’s mobile number and email address. Even if it seems legitimate, think twice before you take any action.
• Never click on dubious links or attachments! Only go to official websites and apps to make purchases, update information, or track a package’s status.
• If you’ve accidentally revealed your PII somewhere, change your passwords immediately and inform your bank and/or other companies that scammers may contact them pretending to be you.