Email phishing attempts using the name of the ‘Better Business Bureau‘ continue to be in wide circulation, as evidenced by checking a few ‘honeypots’ we have setup. The attempt is simple and is purported to come from [email protected]:
The ‘Complaint’ Is Designed To Evoke An Emotional Response
These days, millions of people are conducting business online. There’s nothing worse than an unhappy customer, especially one who complains to the Better Business Bureau about your bad ethics! Oh, the nerve! Let’s get to the bottom of this at once! Those thoughts flash through the mind of anyone who read such an email. They click on the link that’s been provided for the ‘BBB’ and are instead sent to a nefarious destination. The text of the BBB complaint email message is as follows:
The Better Business Bureau has received the above-referenced complaint from one of your customers regarding their dealings with you.
The details of the consumer’s concern are included on the reverse.
Please review this matter and advise us of your position.
As a neutral third party, the Better Business Bureau can help to resolve the matter. Often complaints are a result of misunderstandings a company wants to know about and correct.
We encourage you to use our ONLINE COMPLAINT system to respond this complaint
The following URL (website address) below will take you directly to this complaint and you will be able to enter your response directly on our website:
Even more ridiculous, the email ends with an official-looking disclaimer.
The Better Business Bureau develops and maintains Reliability Reports on companies across the United States and Canada .
This information is available to the public and is frequently used by potential customers.
Your cooperation in responding to this complaint becomes a permanent part of your file with the Better Business Bureau.
Failure to promptly give attention to this matter may be reflected in the report we give to consumers about your company.
Council of Better Business Bureaus
4200 Wilson Blvd, Suite 800
Arlington, VA 22203-1838
What To Do If You Get This Email
- Delete this email and don’t click on the link.
- Upgrade to a commercial cloud email scanning solution that eliminates these types of threats before they ever hit your inbox.
Every day more and more of these types of threats are released. They’re effective, because they appeal to the emotions of recipients. That’s why organizations need to implement strong email scanning in order to reduce these types of threats before they ever get to an employee’s mailbox. If not, that person could easily divulge vital information that can damage the security of the entire organization. A robust scanning solution for antispam and antivirus could greatly reduce or eliminate these threats. Implementation is easier than you might guess, and you don’t have to change your current email architecture to get this solution up and running. At MostHost, we’re able to help your organization secure your email permanently. Click on the button below so a product expert can give you a quote or arrange a technology demonstration.