Virgin Media Customers are the latest to be targeted with a crafty phishing scam designed to steal their login credentials.
Action Fraud has issued a warning to the public after receiving almost 100 reports in the last few days from worried customers who believe their account will be disconnected.
The email threatens the recipient with “automatic disconnection” due to “invalid billing information”. To avoid restriction of services, the user is asked to take immediate action by entering their username and password.
If they are unlucky enough to have clicked on the link, they will be redirected through to a convincing looking phishing website that has been specifically set up to steal their personal details. Once the hackers get hold of this Personally Identifiable Information, they can then use it to commit identity theft and bank fraud.
Image: Fake Virgin Media Phishing Email (Source: Action Fraud)
By replicating the distinctive Virgin Media logo and branding, the fraudsters have managed to trick many users into believing the email is legitimate. Another common tactic is to use threatening or urgent language to pressurise the victim into taking immediate action.
Virgin Media customers have been warned not to respond to the email and a spokesperson from the company provided advice on what customers should do if they receive a suspicious email: “We are aware of a fraudulent email scam, designed to look like it’s from Virgin Media, which suggests customers are at risk of ‘automatic disconnection’ due to invalid billing information.
Should a customer receive one of these fraudulent emails, we urge them to follow Action Fraud’s advice and not to click on the links. Customers should mark the email as spam, contact our dedicated mailbox – firstname.lastname@example.org and delete the email as soon as they have shared it with us.”
To protect yourself from falling victim to a phishing scam, you should follow the below guidelines:
- Never click on links or download attachments from unknown sources.
- Always verify the security of a website.
- Pay close attention to the spelling of an email or web address, if there are any inconsistencies, delete immediately.
- Ignore and delete emails with poor grammar and formatting.
- Install the latest anti-virus software solutions on your devices.
- Use strong passwords to reduce the chance of devices being hacked and use different passwords for different accounts.
- Question the validity of any email that asks you to submit personal or financial information
Identifying a phishing email has become a lot harder than it used to be as criminals have become more advanced and deceptive in their attack methods. MetaPhish provides a powerful defence against phishing and ransomware attacks by training employees how to identify and respond appropriately to these threats. Contact us for further information on how we can help protect your business.