Lo sentimos. Aún no hemos traducido esta página al español. Avísenos si desea que esto sea una prioridad y traduciremos la página lo antes posible.


We're sorry. We have not yet translated this page into Spanish. Please let us know if you want us to make it a priority and we will work to translate it as soon as possible.


Solicitar traducción Request translation

Gracias, su solicitud ha sido presentada. Thank you, your request has been submitted.

ALERT: Fraudulent emails trick recipients into opening malicious links

Updated Friday, May 27, 2016

Recently, an employer contacted Employment Security Department (ESD) regarding a message he received that appeared to come from ESD, but was in fact a phishing scam. The recipient clicked on a link in the email and it compromised the security of his computer.

Phishing is a fraudulent process used by spammers to acquire sensitive information from users such as usernames, passwords, and credit card details. Email recipients are often deceived by phishing attempts since messages appear to be sent by legitimate and trustworthy sources. Users click on the link which downloads a virus or malware to their computer.

Below is the email the employer received. The fraudulent links were removed and the actual email address has been slightly changed to avoid additional attacks.

The email name is “spoofed” to look like a legitimate ESD address, but hover over or right click the name with the curser and the fraudulent email address would have been displayed. 

 

FROM:      ESD GP UI Tax Public Works [mailto:cts_wa.notification@sendsecure.m86securex.com]

SUBJECT: *KEY RE: P9533 Wall Paneling Replacement Juvenile Court Building

BODY:     

New secure email message from State of Washington            

                             

Open Message

(LINK REMOVED)      

You've received a secure email message related to business with the State of Washington. To view it, select Open Message.

The secure message expires on Jun 23, 2016 @ 11:55 PM (GMT).

Do not reply to this notification message; this message was auto-generated by the sender's security system. To reply to the sender, select Open Message.

If selecting Open Message does not work, copy and paste the link below into your Internet browser address bar.

(LINK REMOVED)    

 

In the event that you receive a message fitting this description, close the message immediately and report it as spam. For more information about this type of fraud, visit the Federal Trade Commission’s website site at https://www.consumer.ftc.gov/articles/0003-phishing.


(back to ESD Alert center)