You may have seen a suspicious email that appears to come from a trusted source, such as a friend or a popular brand. But have you ever seen a suspicious email that appears to come from you?
IIn a new scam, cybercriminals use your own email address to send phishing links to other users.
The scam works by using the newest version of malware called QakBot. To begin the scam, cybercriminals send you an email that contains a phishing link. If you click on the link, QakBot will be installed on your computer. The newest version of QakBot can record your keystrokes, steal your login credentials, and even access your email accounts.
If QakBot is installed on your computer, cybercriminals can use your email account to send phishing emails to users in your email threads. Using the “Reply to All” functionality, QakBot will send the phishing emails to users you have already interacted with. Since the phishing emails will look like they came from your email address, they will appear more trustworthy and will be difficult to spot.
Follow the tips below to stay safe from these types of scams:
Content provided by KnowBe4