Spear Phisher Pleads for Money, USAA Bank & Netflix
Many employees at a Massachusetts school were targeted by a spear phisher last Spring as he opened an email account using the name of the Head of School and sent out requests to the employees for a “quick favor.” No one fell for it and TDS tricked the scammer into revealing that he was located in Lagos, Nigeria. Once again, this spear-phishing trick has targeted the same school. Many employees received this email last week. It begins with an email created in the name of the Head of School but it is not her real email address...
Doug responded to “officeonline861” and at first said that he was happy to help. The scammer responded by asking Doug to purchase gift cards for school employees, and to keep one for himself! The next email would have asked for the identification codes on those gift cards so they can be cashed anywhere in the world, like Nigeria. But Doug called him out as a fraud and a deplorable person for doing this. The scammer actually responded to that! He said he was 16 years old and had no money or work. He was hungry and pleaded with Doug to send him some money. Given this scam’s track record, we’re not inclined to believe him!
We would like to believe that anyone with a USAA Bank account who received this email would recognize that “juanitar” from Valornet[.]com is not the same as USAA Bank. After a “major upgrade” to their computer system, USAA Bank members are asked to login to verify their accounts. Total BS! The link “Click Here” points to a server in Jakarta, Indonesia. Just as you would expect for a bank named after the United States of America, right?
This next email from “Your friends at Netflix” came from a tech company’s email account (or so it seems) called support.com. That’s not Netflix.com! The link to “reset your information” points to a server in Italy. Buon viaggio!