New year, same phishers
Posted on January 7th, 2020
By Brittany Llorente & Mike Peterman
Welcome to 2020.
Greenshades has definitely hit its busiest season of the year and so have the phishers.
It is the 7th day of the year and we are already receiving reports from our clients that they have received phishing emails directing them to enter in their information and passwords to avoid interruption of service.
Here are some quick tips on how to make sure that an email is legitimate.
- Hover over the link. If the link looks suspicious, do not click the link. As a general practice, if you have an email that is asking that you log in to your portal, do not click the link and instead go directly to the site from your browser.
- Check for spelling. If you see blatant spelling errors, question whether the email is legitimate.
- Who sent the email? Check the email address (not the sender’s name). If the email does not come from email@example.com or firstname.lastname@example.org, it is likely not a Greenshades email.
If you suspect an email at all, or question whether it was sent from Greenshades, you can forward that email to email@example.com to confirm the validity of an email.
Below are some examples of the emails we have received this year.
Note that the “From” address says Greenshade Portal, but the email address is not from Greenshades.
The line asking to “Validate your access” is a sentence designed to create urgency.
Note that the url is not a Greenshades URL.
We will update this blog with any further phishing attempt examples.
Again, if you have any issues or are suspicious of any email, please email firstname.lastname@example.org or email@example.com.