
Scam Emails Are Getting Smarter: They Now Match Your Phone or Computer Type
Scammers are customizing fake websites and emails to match whether you use an iPhone, Android, Windows, or Mac. Here is how to protect yourself.
Source
Dark Reading
Original headline: Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS
Plain-English summary by GetCyberRight. Read the full report at the source above.
Cybercriminals are using a new technique to make their phishing scams more convincing and effective. When you click a malicious link, the scam automatically detects what type of device you are using, whether iPhone, Android phone, Windows computer, or Mac.
It then shows you a fake page designed specifically for your device type. For example, iPhone users see an Apple themed scam while Android users see a Google themed scam. This makes the scams look more legitimate and tricks more people into giving up passwords or downloading malicious software.
Stay one step ahead of scammers
Weekly cybersecurity briefings for families. No spam, just the threats that matter and what to do about them.
This affects everyone who uses email, text messages, or social media. Unlike the previous news items about business software, this threat targets regular people and families directly. The attackers are using information your device automatically shares, called user agent data, to figure out what you are using.
They then deliver a customized scam that matches your device. This increases the chances you will fall for it because everything looks familiar and correct for your specific phone or computer. Protect yourself with these steps starting today.
- Slow down before clicking any link in an email or text message, even if it looks legitimate. Hover over links on a computer to see the real destination before clicking.
- Instead of clicking links in messages, open your browser and type the website address yourself when logging into important accounts.
- Look carefully at the web address in your browser after clicking any link. Scammers use addresses that look similar to real ones but have small differences.
- Never enter your password or personal information on a page you reached by clicking a link in an unexpected email or text.
- Enable two factor authentication on all important accounts like email, banking, and social media. This protects you even if scammers get your password. Teach everyone in your family these habits, especially teenagers and elderly relatives who may be targeted more often. Make it a family rule to verify unexpected messages by contacting the company or person directly through a known phone number or website, not by replying to the suspicious message. Remember that legitimate companies will never ask you to verify your account or update payment information through a link in an email. When in doubt, do not click. Take the extra minute to verify, and you will avoid most scams.
Curated from trusted cybersecurity sources by GetCyberRight
Source: Dark ReadingStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

Major Security Flaw Exposed 75,000 Business Firewalls. Here's Why It Matters to You
A security flaw called FortiBleed left 75,000 firewalls vulnerable. If your employer, school, or service provider uses Fortinet, your data may be at risk.
2 min read
Major Security Flaw Left 75,000 Business Firewalls Wide Open
A security problem called FortiBleed exposed business networks for years. If your workplace uses Fortinet systems, ask IT about updates.
2 min read
If Your Business Uses Fortinet Security Software, Take Action Now
Criminals stole login credentials from Fortinet security systems and are using them to break into business networks and install ransomware.
2 min read
Massive Password Theft Campaign Targets Business Security Systems
Criminals stole credentials from Fortinet security systems to prepare for ransomware attacks. If your workplace uses Fortinet, discuss security updates with your IT team.
2 min read