At one time I received an unexpected email from a shipping company that turned out to be legitimate, despite it having several red flags and being marked as spam by my email provider.
The point being, investigate and confirm before either condemning a message to the bitbucket or paying.
For example, if I received such a message, it would be ignored because I’ve not been near a toll road for well over a decade, but that might not be the case for every recipient, some of whom might not have paid their bill.
100% agree. I got one last year from “Comcast” that looked totally legitimate. All the domains were correct. They managed to spoof everything, even the delivery header addresses. Everything but the sign in link, which went to a very obvious Russian redirect site.
… from Hotmail … the known origin of all official government notifications …
With how Trusk’s lackeys are going about, this wouldn’t shock me anymore.
At one time I received an unexpected email from a shipping company that turned out to be legitimate, despite it having several red flags and being marked as spam by my email provider.
The point being, investigate and confirm before either condemning a message to the bitbucket or paying.
For example, if I received such a message, it would be ignored because I’ve not been near a toll road for well over a decade, but that might not be the case for every recipient, some of whom might not have paid their bill.
It’s that edge case that scammers are targeting.
100% agree. I got one last year from “Comcast” that looked totally legitimate. All the domains were correct. They managed to spoof everything, even the delivery header addresses. Everything but the sign in link, which went to a very obvious Russian redirect site.