There is a new type of phishing attack you need to be aware of.
As you know, a phishing attack is when you get an email that looks like it’s from a reputable company. The email contains a link that goes to a website that will either try to infect your computer, or the website may look like the reputable company’s website and trick you into entering your user id and password, thus the criminals can then use your login id and password to login to the real website and access your account.
These phishing attacks have been around for years. You could usually spot these attacks by looking at the address of the fake website and seeing that it is not the website address of the reputable company you thought the email was from. Now some clever criminals have figured out how to make the address of the fake website look exactly like the address of the real website so it’s harder to tell if you are on the real website or a fake one.
For many years, we have been recommending that you never click on a link in a website and, instead, close the email, open up your web browser, and manually go to the company’s website. This new type of attack does not change that advise. In fact, it reinforces it.