A pretty convincing email phishing campaign is targeting one of the largest user bases out there - those who use Microsoft's Windows OS - by taking advantage of the recent problems that the company has been having with updates.
An extremely thorough phishing campaign is currently targeting American Express customers by trying to make them believe that access to their account will be restricted within 48 hours if they don't update their account information.
Symantec researchers have recently stumbled upon a phishing site that packs a double whammy: the site asks the user either to log into Facebook or to download an app in order to activate a bogus service that will supposedly let them know who visited their Facebook profile (click on the screenshot to enlarge it): For those who opt for the first option and enter their Facebook login credentials the news is bad: their username and password has been sent to the phishers, and will likely be used to hijack the victims' account.
Over the weekend, customers of Hong Kong-based VPN service PureVPN were taken aback by an email that was seemingly sent by the company's founder Uzair Gadit, saying that their accounts were closed "due to an incident." "We are no longer able to run an anonymization service due to legal issues we are facing," it said.
Phishing scams are some of the most effective online swindles, hooking both savvy and naive computer users.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.