Over the years we have participated in a multitude of phishing-related campaigns whose main objective is none other than to obtain our personal data. At this time, the Internet User Security Office warns us about a new one that uses the Postal service as bait.
The truth is that the attackers have already used the well-known messaging service in our country to try to deceive us on other occasions. In addition, now with the widespread use of electronic commerce, it is easier for us to hack and steal our personal and sensitive data. At this time, the OSI or Internet User Security Office warns us of a new campaign that they have just detected.
In reality, it focuses on a message that we supposedly received from the Post Office informing us that they have not been able to deliver a package to us. As you can imagine, this message that we receive is false and what it tries to do is for us to give a series of private data, which is totally inadvisable. This supposedly message from Correos that we receive reaches us via email and asks us for a series of personal data to try again to make the delivery.
In addition, we must take into account that the aforementioned message that reaches us via email includes a malicious link. This takes us to a false page where we will have to fill in a series of data through a form. Here the attackers will try to get hold of certain sensitive data to use it later for malicious purposes. First of all, we must be wary, just taking a look at the email address from which this message comes to us to realize that it is false.
What to do if I receive the phishing message that impersonates Correos
As is usual in this type of campaign, if we mistrust the message we have received via email, the first thing we should do is take a look at the address from which it comes. In most cases we will immediately realize that it is an identity theft, in this case to the Post Office, so we will have to act accordingly.
Of course, the moment we realize that the email address of the package message is not legitimate, we should send it to our spam folder. In the event that we have accessed the malicious page that is offered through the link in the email and we have filled in the corresponding data including the bank card, we should contact our bank as soon as possible. So we can expose the facts and block any suspicious movement.
With everything and with this we recommend you to be attentive to your accounts over the next few days to notify the bank of any charge that is not ours. In turn, and if we so wish, it will not hurt for us to communicate the content of this malicious email to the competent authorities. Although they will already be aware of this phishing campaign, with this we achieve that our complaint is reflected in case something happens that is not negatively affected in the future.
