I received two phishing emails at work this morning – one feigning to be from Bank of America and the other from Wells Fargo. A co-worker received the same annoying messages.
Both messages claims to be from security staff, are peppered with grammatical errors and instruct the reader to click on an attachment. According to the bogus BOA email, that’s the “safest and secure way for update.” Um ... not so much.
I'll note that these aren't the personalized spear-phishing attacks we're expecting as a result of the Epsilon breach.
You know the rule: Never click on an attachment sent in an unsolicited email. If you want to complain to someone, here’s where to go:
- Anti-Phishing Working Group: File a report at http://www.antiphishing.org/report_phishing.html
- Federal Trade Commission: Forward illegal spam to firstname.lastname@example.org.
Or just click delete.