I suggest members be extra vigilant when responding to emails from sites that they may be familiar with.
I received a targeted email today masquerading as the Newark's orders department. It contained my name and indicated an order I have placed was on hold pending credit card finalization. The email asked to call a phone number or respond to the email address. I have no pending Newark order but I was filling my shopping cart recently in preparation for an order. The email was not from Newark. The email header provides the following Return-Path: <SRS0=uq+S=DG=newark.com=creditcardissues@srszone.org>.
Targeted phishing emails have an increase likelihood that a person will fall victim. Targeted emails have specific details that can lower a persons defences leading them to believe the message is real. I implemented and managed a security platform that distributed targeted email as part of a company security awareness program. The emails where tailored to train people on how to identifying suspicious emails. I'm not sure where the details to target me originated. Being an E14 Community member there is a high probability I would use the vendor resources that support the site.
Clicking on resources contained in emails with out some diligence, is like dragging your genitals through a third world sewer. At some point you will catch something.
