Many of us have received emails like this: a seemingly urgent message claiming our webmail password needs review. The email often includes a link or button to “review” or “retain” your current password. But before you click, take a breath and read on.
These emails are phishing scams, designed to trick you into revealing your login credentials. The scammers may then use your information to access your email account, steal your personal data, or even send spam to your contacts.
Here is an example email:
Hello There,
The passwогd to your webmail (contact@alltechmagazine.com) is due for review.
You are advised to review your password within the next 48hrs to avoid being logged out from your device(s).
Alternatively, if you are still confident in your current password, use the button below to retain your cuггent passwогd and cancel the review.
And at the end of the email includes a button to click on it where it asks “Keep existing password” and that the email was generated by your website’s email server. This is total scam please do not click on the link and filter such emails.
Remember, legitimate webmail providers will never send you an email asking you to click on a link or button to update your password. If you’re unsure about an email, contact your webmail provider directly through their official website or phone number.
Here’s how to spot a phishing email:
- Urgency and threats: The email creates a sense of urgency, demanding action within a short timeframe. It may also threaten account suspension or other consequences if you don’t comply.
- Poor grammar and spelling: Legitimate companies typically have professional communication. Errors in grammar, spelling, or punctuation can be a red flag.
- Generic greetings: The email may address you as “Dear User” or “Valued Customer,” instead of your actual name.
- Suspicious links and buttons: Hover over any link or button before clicking. If it doesn’t lead directly to your webmail provider’s website, it’s likely a phishing attempt.
- Unfamiliar sender: Be wary of emails from unknown senders. If you’re unsure, avoid clicking any links or replying to the email.
Here’s what you should do if you receive this email:
- Do not click any links or buttons in the email.
- Do not enter your password or any other personal information.
- Delete the email immediately.
- Report the email to your email provider.
- Change your webmail password using the official website or app, not through any links provided in the email.
Here are some additional tips to avoid phishing scams:
- Be wary of emails from unknown senders, especially those with urgent requests or threatening messages.
- Always double-check the sender’s email address for inconsistencies or typos.
- Hover over any links in the email before clicking on them. If you’re unsure about the link’s destination, don’t click on it.
- Never enter your login credentials on a website you accessed through a link in an email.
- Use strong passwords and enable two-factor authentication for all your online accounts.
- Regularly update your antivirus and anti-malware software.
By following these tips, you can help protect yourself from phishing scams and keep your online accounts secure.