Coffee Lovers Warned Of New Starbucks Phishing Scam – CoffeeTalk
A wave of emails posing as Starbucks offers have been circulating, promising coffee drinkers a free Starbucks Coffee Lovers Box. Action Fraud, the UK’s national fraud and cyber reporting center, has received over 900 reports about the scam in the past two weeks. The emails contain malicious links designed to steal personal and financial information or download malware onto personal devices. Cybercriminals aim for maximum profit, so it’s a numbers game.
Mike Britton, CIO of Abnormal Security, told Infosecurity that the cost of executing a phishing scam is very minimal. They simply require them to create an email that looks similar to a real one from Starbucks and a fake landing page, which they will use to steal credentials. From there, they’ll have access to the Starbucks account and any other accounts that use the same login credentials. Attackers can quickly send out millions of malicious emails, and even if only a tiny fraction of the recipients fall victim, it’s more than worth their time and effort.
Scammers will impersonate well-known brands because familiarity breeds trust. Organizations like Starbucks will seldom, if ever, request sensitive information via email, so a healthy level of skepticism towards offers that seem too good to be true is a good line of defense. Action Fraud encourages people to forward suspicious emails to its Suspicious Email Reporting Service (SERS) at reporting@phishing.gov.uk. Over 32 million phishing emails have been reported to SERS since the campaign launched in 2020 by the National Cyber Security Centre (NCSC) and the City of London Police.
Read More @ Infosecurity Magazine
Source: Coffee Talk