Millions of people are still using Internet Explorer for some reason
Internet Explorer clings on as Microsoft Edge keeps stealing Chrome market share.
Read More
Blog
- Home /
- Blog
Unsubscribing from that email may just lead to further spam
Scammers are using consumer loathing towards spam email to - send more spam email. As reported by BleepingComputer, a new scam campaign aims to verify if the email the scammers have in their database is valid and active. If they get the needed confirmation, they’ll bombard it with various spam emails.
The campaign is simple in design - the victim will get a basic email with this call to action in it:
“Please confirm your Subscribe (sic) or Unsubscribe. Confirm Subscribe me! Unsubscribe me! Thank you!”
- We’ve built a list of the best email clients on the market
- Check out our list of the best email hosting providers available
- Here’s our list of the best antivirus software right now
The scammers are betting most victims would press the unsub button. However, whichever option they choose, the same thing will happen. Should they indeed choose to unsub, they’ll trigger the email client to send a new email to multiple addresses, all under the scammers’ control.
Spam scam
The email’s only contents are “Please unsubscribe me from your newsletter,” tricking the victim into believing their efforts are legitimate. In reality, the only thing they’d be doing is confirming to the scammers that the email address is active and in use.
A few days after sending this confirmation, the victim’s inbox will get flooded with spam emails.
BleepingComputer confirmed the authenticity of the campaign by “unsubscribing” using a freshly created email address. “After sending unsubscribe/subscribe responses from the new account, in only a few days our new account became bombarded with spam emails”, the publication wrote.
It was also said that these campaigns aren’t necessarily limited to spam emails - nothing prevents the scammers from deploying phishing or social engineering against the target email, which are usually more dangerous and often more difficult to spot and stop.
Security experts are warning all consumers never to click any links they receive in an email, unless they are absolutely certain of the authenticity of the sender and the legitimacy of the link. No legitimate business will ever send an empty email with just “Subscribe or Unsubscribe” options, and without further explanation.
- Here’s our rundown of the best password managers out there
Via: Bleeping Computer
Date
31 May 2021Sources
Other Blog
-
-
NZXT is recalling its Xbox Series X-influenced PC case in the US due to fire risk
Formal recall will see 32,000 H1 cases recalled in the US and a further 1,000 in Canada.
Read More -
Remote working sees cybersecurity questions soar on Stack Overflow
Read MorePopular developer Q&A platform Stack Overflow has shared that the shift to remote work has prompted more cybersecurity questions across platforms than any breach.
To do their bid for the cybersecurity awareness month, Stack Overflow analyzed the cybersecurity topics across the developer collaboration platform to track the evolution of security conversations within the developer community.
Its analysis revealed that the previous biggest peak in questions came right after Yahoo! disclosed its 2013 breach in 2016 and later announced another larger breach at the end of the same year.
- We've put together a list of the best endpoint protection software
- Protect your devices with these best antivirus software
- These are the best malware removal software on the market
Interestingly though the volume of security-related questions at the start of lockdown exceeded that of any year in Stack Overflow history, notes Stack Overflow’s Senior Data Analyst, David Gibson.
Pandemic pandemonium
Gibson says that historically security-related activity across the platform appeared to be tied to major breaches. All that changed with the en-masse shift to remote work in the beginning of 2020.
“Stack Overflow saw an undeniable pandemic-related spike at the beginning of 2020 when the shift to remote work prompted a nearly 60% increase in questions related to authentication,” notes Gibson.
His analysis also confirmed a correlation between the types of security incidents, and the volume of questions. For instance, when there’s a breach due to a software vulnerability, cybersecurity-related questions within the developer community rise too.
“While vulnerabilities are inevitable, developers shifted from just reacting to breaches to proactively trying to secure everyone during the move to remote work,” concludes Gibson, noting that the biggest takeaway from the analysis is the shift to a culture of learning.
- We’ve also rounded up the best tech for hybrid working
-
This is the cheapest 6-core PC on the market, but it has one big flaw
The Acer Aspire TC-875-UR12 is available at a discount, but proceed with caution.
Read More
Find Out More About Us
Want to hire best people for your project? Look no further you came to the right place!