Beware the “Scan Contract” Email Scam: A Phishing Attack Targeting Your Bank Information
The “Scan Contract” email scam is a classic phishing attack designed to trick you into divulging sensitive personal and financial information. By masquerading as a legitimate business communication, scammers attempt to lure you into opening malicious attachments and entering your login credentials into fake forms. This blog post, drawing on information about this specific phishing campaign, will help you understand how this scam works, identify its red flags, and protect yourself from falling victim.
Disguised as an email from a legitimate business, it targets unsuspecting individuals with claims of an urgent contract review. This blog will help you understand the scam, its potential risks, and the steps to remove it from your PC or Mac.
What is the “Scan Contract” Scam?
The “Scan Contract” scam is a phishing email designed to appear as a legitimate notification about a contract confirmation or bank deposit information. The goal is to deceive recipients into opening malicious attachments or providing sensitive details, such as login credentials and financial information.
Key Features of the Scam Email
- Generic Greetings: The email uses impersonal salutations like “Dear Customer.”
- Urgent Language: Creates a false sense of urgency to pressure recipients.
- Fake Attachment: Contains a file named “scan-contract#00786.shtml,” which is malicious.
- Deceptive Links: Redirects to phishing pages that steal personal information.
- Grammatical Errors: Often contains typos or awkward phrasing.
Threat Summary
Name | Scan Contract Email Scam |
---|---|
Threat Type | Phishing, Scam, Social Engineering, Fraud |
Fake Claim | Contract or bank deposit information |
Attachment | scan-contract#00786.shtml |
Symptoms | Suspicious links, grammatical errors, urgency |
Damage | Monetary loss, identity theft, data breaches |
Distribution Methods | Rogue emails, pop-up ads, search engine poisoning |
How the “Scan Contract” Scam Works:
This particular scam arrives in the form of an email designed to look like a business notification. The typical scenario unfolds as follows:
- Deceptive Email: You receive an unexpected email seemingly from a legitimate company. The subject line might reference a “Signed Contract” or similar business-related term.
- Contract Confirmation and Deposit: The email informs you about a supposed “Signed Contract” (e.g., “Signed Contract#00786”) and requests you to review an attached scan of the contract. It also mentions the need for your bank information to process a deposit (e.g., a 30% deposit).
- Malicious Attachment: The email contains an attachment, often disguised as a document (e.g., “scan-contract#00786.shtml”). This attachment is the core of the scam.
- Fake Login Form: Upon opening the attachment, you are presented with a fake form designed to mimic a login page. This form requests your login details, typically your email address and password.
- Information Theft: When you enter your credentials into the fake form, this information is sent directly to the scammers.
Why It’s a Dangerous Scam:
- Credential Theft: The primary goal is to steal your login credentials (email and password).
- Account Compromise: With your login details, scammers can access your personal accounts (email, social media, banking) to:
- Steal sensitive information.
- Conduct fraudulent transactions.
- Impersonate you to your contacts.
- Spread malware or further phishing links.
- Dark Web Sales: Stolen credentials can be sold on the dark web, further increasing the risk of misuse.
What to Do If You Encounter the Scam:
- Do Not Open the Attachment: This is the most crucial step. Never open attachments from suspicious emails.
- Do Not Click Any Links: Avoid clicking any links within the email.
- Report as Phishing/Spam: Report the email to your email provider as phishing or spam.
- Delete the Email: Delete the email immediately.
If You’ve Already Fallen Victim:
- Change Your Passwords Immediately: Change the passwords for all your online accounts, especially email, banking, and social media.
- Contact Your Bank/Financial Institutions: If you provided any financial information, contact your bank or credit card companies immediately.
- Run a Full Malware Scan: Use a reputable antivirus or anti-malware program to scan your computer for any potential malware infections.
- Monitor Your Accounts: Keep a close eye on your financial accounts and credit reports for any unauthorized activity.
- Report the Incident: Report the phishing attempt to the appropriate authorities, such as the FTC (Federal Trade Commission) in the US.
Prevention Tips:
- Be Skeptical of Unexpected Emails: Exercise caution with all unsolicited emails.
- Verify Sender Information: Always check the sender’s email address and verify its legitimacy.
- Don’t Trust Attachments from Unknown Senders: Never open attachments from unknown or suspicious senders.
- Keep Software Updated: Regularly update your operating system, web browsers, and security software.
- Use Strong Passwords and Multi-Factor Authentication: Use strong, unique passwords for all your online accounts and enable multi-factor authentication whenever possible.
- Use Reputable Security Software: Install and maintain a reputable antivirus and anti-malware program.
By understanding the tactics used in the “Scan Contract” scam and following these preventive measures, you can significantly reduce your risk of becoming a victim of this type of phishing attack. Remember, vigilance is key to online safety.