Warning: Phishing and Spam Mails Masking as Brands (e.g. Squarespace)

Tricky Emails…

Have you ever received emails like the ones below?

These look like a real emails from Squarespace or Stripe, right? They do, but they’re unfortunately fake! The design is cunningly convincing and even the sender address looks, at a first glance, like a proper Squarespace or Stripe address.

But beware, this is a Phishing-email!

The senders of these emails crawl the internet for Squarespace Websites and then email the relevant registered admins of the website. The same thing happens with many other Softwares and Banking Services.

How to spot phishing scam?

Phishing emails are crafted to look as though they’ve been sent from a legitimate organization. These emails attempt to fool you into visiting a bogus website to either download malware (viruses and other software intended to compromise your computer) or reveal sensitive personal information.

The most important indicators that something is amiss are the

  1. Links (URL addresses), the

  2. sender’s email address and

  3. emails with attachments (especially anything that can contain .html)

Emails can be designed to look legitimate, except for the actual sender email and URL. That said, the sender email and URL can be masked, which makes it a bit trickier (but not impossible) to reveal a potential culprit…

Look out for the following:

Everything that is written before the actual email address in ““ can be faked. But the actual sender email shows that this email was not sent from a real squarespace.com email address!

Watch out for the real sender mail address

Even when URLs might seem correct, further scrutiny shows that they are not. To show you a clear example, here we have written a URL called www.yourwebsite.com but have actually linked it to Bing, and this can be done with any URL.

Make sure to check that the URL you are reading leads to the page it says it does by hovering over the URL (NOT clicking):

Validate the actual URL

What should you do when you receive spam and Phishing mails?

Report Phishing URLS!

There are different places to report Phishing URLs. But be careful: Do NOT click on the URL, just copy the URL and paste it directly into the online formula in any the following platforms:

  1. Google Report Phishing URLs

  2. You can report phishing to APWG (Anti-Phishing Working Group, Inc.) by sending an email to phishing-report@us-cert.gov

  3. Report Phishing Mails in Switzerland with one click

  4. File a complaint to the US Federal Trade Commission

Then also mark them as Spam in your email client and block the sender!

Remove Spam or Suspicious Emails in Gmail
 
outlook report spam
 

Your Tips and Insights?

Please share your tips and recommendations through the comment section below.


Subscribe to our mailing list

* indicates required

What free updates would you like to receive via email?

You can unsubscribe at any time by clicking the link in the footer of our emails. For information about our privacy practices, please visit https://www.onlinekarma.net/privacy-policy .

We use MailChimp as our marketing platform. By clicking below to subscribe, you acknowledge that your information will be transferred to MailChimp for processing. Learn more about MailChimp's privacy practices here.

Contact

Are you ready for the next step?

Contact us for a non-binding consultation.