Criminals are constantly exploring all the methods that exist to steal our data and extract our passwords. One of the latest scams detected occurs via email and we can differentiate it in a very simple way, by the subject. We tell you.
Digitalization has brought a large number of benefits to the citizens and companies of our country . However, as organized groups of criminals have discovered the possibilities offered by the online channel, there are many who are constantly exploring all the avenues that exist to try to gain the trust of their victims and, subsequently, steal all our data.
And this is precisely what happens with one of the latest scams detected. Although, in this case, it seems that its objective is not individual users, but companies. Regardless of their size, it is common that in this type of environment we always find invoices to suppliers that have already been paid or are pending payment. And it is precisely this last case that foreign lovers try to take advantage of to try to introduce a type of malware hidden behind an attachment.
Beware of late payments
The emails that have been detected always have the same subject or, at least, a very similar one: late payments, pending invoices, remaining invoice, etc. They usually go to corporate email accounts of profiles that have been previously selected for holding certain job positions: people who work in administration and accounting, operations or finance departments.
The message we receive can have different variants. However, in all of them they inform us that we have a pending invoice with them and that we proceed to settle it immediately, inviting us to open the attachment found in the email. In which, in theory, the invoice is located. In some cases, in fact, they affirm that if the situation is not resolved in a short period of time, they will take legal measures in this regard and file a complaint. In this way, try to pressure the recipient of the email as much as possible to create a false sense of urgency and not check if it is, in fact, a supplier with whom you have worked at some point.
The attached file
As we have already anticipated, in the attached file you will find the email password. Regardless of its nomenclature, we must avoid opening it at all costs. Since inside there is a type of malware that, when executed, tries to access as much data as possible in order to ultimately market it and include it in possible new similar or any other type of attacks.
If we receive one of these emails, the first thing we have to do is try to avoid opening them. If we do so, we should not interact with the attached file. And, if we do, we must notify the relevant authorities and, in addition, proceed to change all passwords, in addition to deleting the email in question. When faced with any similar action, we must always try to be patient and avoid opening emails from senders that we do not know and that may be suspicious.
