Primitive hacking attempts you should be aware of, or else criminals will take your money.
An international hacking attack, bank fraud, scam, fake e-mail, phishing attempt, online piracy, stealing...whatever you may call them, they can cause painful damages to inattentive businesses.
Attack tactics and tools vary from case to case, but here's one that we experience most of the time and one of our client recently fell victim to.
International criminals somehow managed to send e-mail to our client, seemingly following up on our recent conversation.
Our mail system provider is Google (Gmail) and their investigation confirmed our e-mails are safe and couldn't be hacked.
We have activated all suggested e-mail authentication tools*, which makes it almost impossible to hijack our e-mails, but these attackers didn't even bother to do so.
They simply registered a new, similarly looking e-mail address: AirbrakeMarket@weibsvolk.org and used it for sending, imitating as if we have changed this as well.
The message, as you'd expect, was also a fake:
"Did you receive my update about audit in our banks? with regards to future payments we will update you."
Usually, our clients report to us when experiencing such issues.
You should be aware of this as well and always ask us before sending money to "our new bank account", especially if this is outside of our country of residence: Slovakia (EU).
Remember, our e-mail is email@example.com and in case of any doubts you can reach us at
+36 (1) 701 3005. Office hours: 8:00 - 16:00 CET (Mo - Fri).
Finally, you can find our banking details here.
* Sender Policy Framework (SPF), Domain Keys Identified Mail (DKIM) and DMARC, which stands for Domain-based Message Authentication, Reporting & Conformance is are email-validation systems designed to detect email spoofing by providing a mechanism to allow receiving mail exchangers to check that incoming mail from a domain comes from a host authorized by that domain's administrators.